" />
</div>
<?php
$Form->end_fieldset();
}
// ####################### PLUGIN FIELDSETS #########################
$Plugins->trigger_event('AdminDisplayItemFormFieldset', array('Form' => &$Form, 'Item' => &$edited_Item, 'edit_layout' => 'expert'));
if ($current_User->check_perm('meta_comment', 'view', false, $edited_Item)) {
// ####################### META COMMENTS #########################
$currentpage = param('currentpage', 'integer', 1);
$total_comments_number = generic_ctp_number($edited_Item->ID, 'metas', 'total');
param('comments_number', 'integer', $total_comments_number);
param('comment_type', 'string', 'meta');
$Form->begin_fieldset(T_('Meta comments') . get_manual_link('meta-comments-panel') . ($total_comments_number > 0 ? ' <span class="badge badge-important">' . $total_comments_number . '</span>' : ''), array('id' => 'itemform_meta_cmnt', 'fold' => true, 'deny_fold' => $total_comments_number > 0));
global $CommentList, $UserSettings;
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('meta'), 'statuses' => get_visibility_statuses('keys', array('redirected', 'trash')), 'order' => 'DESC', 'post_ID' => $edited_Item->ID, 'comments' => $UserSettings->get('results_per_page'), 'page' => $currentpage, 'expiry_statuses' => array('active')));
$CommentList->query();
// comments_container value shows, current Item ID
echo '<div class="evo_content_block">';
echo '<div id="comments_container" value="' . $edited_Item->ID . '">';
// display comments
$CommentList->display_if_empty(array('before' => '<div class="bComment"><p>', 'after' => '</p></div>', 'msg_empty' => T_('No feedback for this post yet...')));
require $inc_path . 'comments/views/_comment_list.inc.php';
echo '</div>';
// comments_container div
echo '</div>';
if ($current_User->check_perm('meta_comment', 'add', false, $edited_Item)) {
// Display a link to add new meta comment if current user has a permission
echo action_icon(T_('Add meta comment') . '...', 'new', $admin_url . '?ctrl=items&p=' . $edited_Item->ID . '&comment_type=meta&blog=' . $Blog->ID . '#comments', T_('Add meta comment') . ' »', 3, 4);
}
}
if ($params['disp_comments'] || $params['disp_trackbacks'] || $params['disp_pingbacks']) {
if (empty($disp_title)) {
// No title yet
if ($title = $Item->get_feedback_title('feedbacks', '', T_('Feedback awaiting moderation'), T_('Feedback awaiting moderation'), array('review', 'draft'), false)) {
// We have some feedback awaiting moderation: we'll want to show that in the title
$disp_title[] = $title;
}
}
if (empty($disp_title)) {
// Still no title
$disp_title[] = T_('No feedback yet');
}
$comments_per_page = !$Blog->get_setting('threaded_comments') ? $Blog->get_setting('comments_per_page') : 1000;
$CommentList = new CommentList2($Blog, $comments_per_page, 'CommentCache', 'c_');
// Filter list:
$CommentList->set_default_filters(array('types' => $type_list, 'statuses' => NULL, 'post_ID' => $Item->ID, 'order' => $Blog->get_setting('comments_orderdir'), 'threaded_comments' => $Blog->get_setting('threaded_comments')));
$CommentList->load_from_Request();
// Get ready for display (runs the query):
$CommentList->display_init();
// Set redir=no in order to open comment pages
memorize_param('redir', 'string', '', 'no');
if ($Blog->get_setting('paged_comments')) {
// Prev/Next page navigation
$CommentList->page_links(array('page_url' => url_add_tail($Item->get_permanent_url(), '#comments')));
}
if ($Blog->get_setting('threaded_comments')) {
// Array to store the comment replies
global $CommentReplies;
$CommentReplies = array();
/**
* Display CommentList with the given filters
*
* @param integer Blog ID
* @param integer Item ID
* @param array Status filters
* @param integer Limit
* @param array Comments IDs string to exclude from the list
* @param string Filterset name
* @param string Expiry status: 'all', 'active', 'expired'
*/
function echo_item_comments($blog_ID, $item_ID, $statuses = NULL, $currentpage = 1, $limit = 20, $comment_IDs = array(), $filterset_name = '', $expiry_status = 'active')
{
global $inc_path, $status_list, $Blog, $admin_url;
$BlogCache =& get_BlogCache();
$Blog =& $BlogCache->get_by_ID($blog_ID, false, false);
global $CommentList;
$CommentList = new CommentList2($Blog, $limit, 'CommentCache', '', $filterset_name);
$exlude_ID_list = NULL;
if (!empty($comment_IDs)) {
$exlude_ID_list = '-' . implode(",", $comment_IDs);
}
if (empty($statuses)) {
$statuses = get_visibility_statuses('keys', array('redirected', 'trash'));
}
if ($expiry_status == 'all') {
// Display all comments
$expiry_statuses = array('active', 'expired');
} else {
// Display active or expired comments
$expiry_statuses = array($expiry_status);
}
// if item_ID == -1 then don't use item filter! display all comments from current blog
if ($item_ID == -1) {
$item_ID = NULL;
}
// set redirect_to
if ($item_ID != null) {
// redirect to the items full view
param('redirect_to', 'url', url_add_param($admin_url, 'ctrl=items&blog=' . $blog_ID . '&p=' . $item_ID, '&'));
param('item_id', 'integer', $item_ID);
param('currentpage', 'integer', $currentpage);
if (count($statuses) == 1) {
$show_comments = $statuses[0];
} else {
$show_comments = 'all';
}
param('comments_number', 'integer', generic_ctp_number($item_ID, 'comments', $show_comments));
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => $statuses, 'expiry_statuses' => $expiry_statuses, 'comment_ID_list' => $exlude_ID_list, 'post_ID' => $item_ID, 'order' => 'ASC', 'comments' => $limit, 'page' => $currentpage));
} else {
// redirect to the comments full view
param('redirect_to', 'url', url_add_param($admin_url, 'ctrl=comments&blog=' . $blog_ID . '&filter=restore', '&'));
// this is an ajax call we always have to restore the filterst (we can set filters only without ajax call)
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback')));
$CommentList->restore_filterset();
}
// Get ready for display (runs the query):
$CommentList->display_init();
$CommentList->display_if_empty(array('before' => '<div class="bComment"><p>', 'after' => '</p></div>', 'msg_empty' => T_('No feedback for this post yet...')));
// display comments
require $inc_path . 'comments/views/_comment_list.inc.php';
}
if (!$Blog->get_setting('comments_latest')) {
// The latest comments are disabled for current blog
// Redirect to page with text/html mime type
header_redirect(get_dispctrl_url('comments'), 302);
// will have exited
}
if (isset($Item)) {
// Comments for a specific Item:
$post_ID = $Item->ID;
$selfurl = format_to_output($Item->get_feedback_feed_url('_rss2'), 'xmlattr');
} else {
// Comments for the blog:
$post_ID = NULL;
$selfurl = format_to_output($Blog->get_comment_feed_url('_rss2'), 'xmlattr');
}
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment'), 'statuses' => array('published'), 'post_ID' => $post_ID, 'order' => 'DESC', 'comments' => $Blog->get_setting('comments_per_feed')));
// Get ready for display (runs the query):
$CommentList->display_init();
headers_content_mightcache('application/xml');
// In most situations, you do NOT want to cache dynamic content!
// Add caching headers
// TODO: Last-Modified
header('Expires: ' . date('r', time() + 300));
// TODO: dh> should be a centralized setting. Maybe through the Skin class, if type is "feed"?
echo '<?xml version="1.0" encoding="' . $io_charset . '"?' . '>';
?>
<!-- generator="<?php
echo $app_name;
?>
/**
* Get array of latest comments
*
* @param array of params
* - Blog (object)
* - User (object)
* - limit (int) the number of comments to return
* - comment_ID (int) return specified comment or NULL to return all available
* - item_ID (int) return comments for specified item only
* @return xmlrpcmsg
*/
function xmlrpc_get_comments($params, &$Blog)
{
global $DB, $current_User;
$params = array_merge(array('limit' => 0, 'comment_ID' => 0, 'item_ID' => 0, 'statuses' => '', 'types' => array('comment', 'trackback', 'pingback')), $params);
$params['comment_ID'] = abs(intval($params['comment_ID']));
$params['item_ID'] = abs(intval($params['item_ID']));
if (empty($params['statuses'])) {
// Return all except 'trash'
$params['statuses'] = array('published', 'deprecated', 'draft');
}
if (!empty($params['comment_ID'])) {
logIO('Getting comment #' . $params['comment_ID']);
$filters = array('comment_ID' => $params['comment_ID'], 'types' => $params['types'], 'statuses' => $params['statuses']);
} elseif (!empty($params['item_ID'])) {
logIO('Getting comments to item #' . $params['item_ID']);
$ItemCache =& get_ItemCache();
$Item =& $ItemCache->get_by_ID($params['item_ID'], false, false);
if (empty($Item)) {
// Item not found
return xmlrpcs_resperror(5, 'Requested post/Item (' . $params['item_ID'] . ') does not exist.');
}
if (!$Item->can_see_comments()) {
// Cannot see comments
return xmlrpcs_resperror(5, 'You are not allowed to view comments for this post/Item (' . $params['item_ID'] . ').');
}
$filters = array('post_ID' => $Item->ID, 'types' => $params['types'], 'statuses' => $params['statuses'], 'comments' => $params['limit'], 'order' => 'DESC');
} else {
logIO(sprintf('Trying to get latest comments (%s)', $params['limit'] ? $params['limit'] : 'all'));
$filters = array('types' => $params['types'], 'statuses' => $params['statuses'], 'comments' => $params['limit'], 'order' => 'DESC');
}
//logIO( "Filters:\n".var_export($filters, true) );
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters($filters, false);
// Get ready for display (runs the query):
$CommentList->display_init();
logIO('Comments found: ' . $CommentList->result_num_rows);
$data = array();
if ($CommentList->result_num_rows) {
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
$Comment->get_Item();
$data[] = array('dateCreated' => new xmlrpcval(datetime_to_iso8601($Comment->date, true), 'dateTime.iso8601'), 'date_created_gmt' => new xmlrpcval(datetime_to_iso8601($Comment->date, true), 'dateTime.iso8601'), 'user_id' => new xmlrpcval(intval($Comment->author_user_ID)), 'comment_id' => new xmlrpcval($Comment->ID), 'parent' => new xmlrpcval(intval($Comment->in_reply_to_cmt_ID)), 'status' => new xmlrpcval(wp_or_b2evo_comment_status($Comment->status, 'wp')), 'content' => new xmlrpcval($Comment->content), 'link' => new xmlrpcval($Comment->get_permanent_url()), 'post_id' => new xmlrpcval($Comment->Item->ID), 'post_title' => new xmlrpcval($Comment->Item->title), 'author' => new xmlrpcval($Comment->get_author_name()), 'author_url' => new xmlrpcval($Comment->get_author_url()), 'author_email' => new xmlrpcval($Comment->get_author_email()), 'author_ip' => new xmlrpcval($Comment->author_IP), 'type' => new xmlrpcval($Comment->type == 'comment' ? '' : $Comment->type));
}
}
return $data;
}
* It is meant to be called by an include in the main.page.php template.
* To display a feedback, you should call a stub AND pass the right parameters
* For example: /blogs/index.php?disp=comments
*
* b2evolution - {@link http://b2evolution.net/}
* Released under GNU GPL License - {@link http://b2evolution.net/about/license.html}
* @copyright (c)2003-2013 by Francois Planque - {@link http://fplanque.com/}
*
* @package evoskins
*/
if (!defined('EVO_MAIN_INIT')) {
die('Please, do not access this page directly.');
}
// Default params:
$params = array_merge(array('author_link_text' => 'login', 'display_comment_avatar' => true), $params);
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => get_inskin_statuses(), 'order' => 'DESC', 'comments' => 50));
// Get ready for display (runs the query):
$CommentList->display_init();
$CommentList->display_if_empty();
echo '<div id="styled_content_block">';
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
// Load comment's Item object:
$Comment->get_Item();
?>
<!-- ========== START of a COMMENT ========== -->
<?php
$Comment->anchor();
?>
/**
* Display the widget!
*
* @param array MUST contain at least the basic display params
*/
function display($params)
{
global $Blog;
$this->init_display($params);
$blog_ID = intval($this->disp_params['blog_ID']);
$blogCache =& get_BlogCache();
$listBlog = $blog_ID ? $blogCache->get_by_ID($blog_ID) : $Blog;
// Create ItemList
// Note: we pass a widget specific prefix in order to make sure to never interfere with the mainlist
$limit = intval($this->disp_params['limit']);
$order = $this->disp_params['disp_order'];
$CommentList = new CommentList2($listBlog, $limit, 'CommentCache', $this->code . '_');
$filters = array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => array('published'), 'order' => $order, 'comments' => $limit);
if (isset($this->disp_params['page'])) {
$filters['page'] = $this->disp_params['page'];
}
// Filter list:
$CommentList->set_filters($filters);
// Get ready for display (runs the query):
$CommentList->display_init();
echo $this->disp_params['block_start'];
// Display title if requested
$this->disp_title();
echo $this->disp_params['block_body_start'];
echo $this->disp_params['list_start'];
if (empty($this->disp_params['author_link_text'])) {
$this->disp_params['author_link_text'] = 'login';
}
/**
* @var Comment
*/
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
// Load comment's Item object:
$Comment->get_Item();
echo $this->disp_params['item_start'];
$Comment->author('', ' ', '', ' ', 'htmlbody', $this->disp_params['author_links'], $this->disp_params['author_link_text']);
echo T_('on ');
$Comment->permanent_link(array('text' => $Comment->Item->title, 'title' => $this->disp_params['hover_text']));
echo $this->disp_params['item_end'];
}
// End of comment loop.}
if (isset($this->disp_params['page'])) {
if (empty($this->disp_params['pagination'])) {
$this->disp_params['pagination'] = array();
}
$CommentList->page_links($this->disp_params['pagination']);
}
echo $this->disp_params['list_end'];
echo $this->disp_params['block_body_end'];
echo $this->disp_params['block_end'];
return true;
}
$show_comments = 'draft';
param('comments_number', 'integer', $draft_comments_number);
} else {
// show all comments
$statuses = get_visibility_statuses('keys', array('redirected', 'trash'));
$show_comments = 'all';
param('comments_number', 'integer', $total_comments_number);
}
$show_comments_expiry = param('show_comments_expiry', 'string', 'active', false, true);
$expiry_statuses = array('active');
if ($show_comments_expiry == 'all') {
// Display also the expired comments
$expiry_statuses[] = 'expired';
}
global $CommentList;
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => $statuses, 'order' => 'ASC', 'post_ID' => $Item->ID, 'comments' => 20, 'expiry_statuses' => $expiry_statuses));
$CommentList->query();
// We do not want to comment actions use new redirect
param('save_context', 'boolean', false);
param('redirect_to', 'url', url_add_param($admin_url, 'ctrl=items&blog=' . $blog . '&p=' . $Item->ID, '&'), false, true);
param('item_id', 'integer', $Item->ID);
param('currentpage', 'integer', 1);
param('show_comments', 'string', $show_comments, false, true);
// display status filter
?>
<div class="bFeedback">
<a id="comments"></a>
<h4>
<?php
$show_comments = 'draft';
param('comments_number', 'integer', $draft_comments_number);
} else {
// show all comments
$statuses = get_visibility_statuses('keys', array('redirected', 'trash'));
$show_comments = 'all';
param('comments_number', 'integer', $total_comments_number);
}
$show_comments_expiry = param('show_comments_expiry', 'string', 'active', false, true);
$expiry_statuses = array('active');
if ($show_comments_expiry == 'all') {
// Display also the expired comments
$expiry_statuses[] = 'expired';
}
global $CommentList, $UserSettings;
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => $comment_type == 'meta' ? array('meta') : array('comment', 'trackback', 'pingback'), 'statuses' => $statuses, 'order' => $comment_type == 'meta' ? 'DESC' : 'ASC', 'post_ID' => $Item->ID, 'comments' => $UserSettings->get('results_per_page'), 'page' => $currentpage, 'expiry_statuses' => $expiry_statuses));
$CommentList->query();
// We do not want to comment actions use new redirect
param('save_context', 'boolean', false);
param('redirect_to', 'url', url_add_param($admin_url, 'ctrl=items&blog=' . $blog . '&p=' . $Item->ID, '&'), false, true);
param('item_id', 'integer', $Item->ID);
param('show_comments', 'string', $show_comments, false, true);
// Display status filter
?>
<div class="bFeedback">
<a id="comments"></a>
<?php
if ($display_params['disp_rating_summary']) {
// Display a ratings summary
<?php
/**
* This file implements the recycled comments pruning Cron controller
*
* @author fplanque: Francois PLANQUE
*/
if (!defined('EVO_MAIN_INIT')) {
die('Please, do not access this page directly.');
}
load_class('comments/model/_commentlist.class.php', 'CommentList2');
$result_message = CommentList2::dbprune();
// will prune once per day, according to Settings
if (empty($result_message)) {
return 1;
/* ok */
}
return 100;
*/
attach_browse_tabs();
$AdminUI->append_path_level('comments');
if (empty($tab3)) {
$tab3 = 'fullview';
}
$AdminUI->set_path('collections', 'comments', $tab3);
$comments_list_param_prefix = 'cmnt_';
if (!empty($tab3)) {
// Use different param prefix for each tab
$comments_list_param_prefix .= $tab3 . '_';
}
/*
* List of comments to display:
*/
$CommentList = new CommentList2($Blog, NULL, 'CommentCache', $comments_list_param_prefix, $tab3);
// Filter list:
$CommentList->set_default_filters(array('statuses' => get_visibility_statuses('keys', array('redirected', 'trash')), 'order' => 'DESC'));
$CommentList->load_from_Request();
/**
* Mass delete comments
*/
param('mass_type', 'string', '');
if ($action == 'mass_delete' && !empty($mass_type)) {
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('comment');
// Init the comment list query, but don't execute it
$CommentList->query_init();
// Set sql query to get deletable comment ids
$deletable_comments_query = 'SELECT DISTINCT ' . $CommentList->Cache->dbIDname . ' ' . $CommentList->CommentQuery->get_from() . $CommentList->CommentQuery->get_where();
// Set an action param to display a correct template
$block_item_Widget = new Widget('dash_item');
$nb_blocks_displayed = 0;
$blog_moderation_statuses = explode(',', $Blog->get_setting('moderation_statuses'));
$highest_publish_status = get_highest_publish_status('comment', $Blog->ID, false);
$user_modeartion_statuses = array();
foreach ($blog_moderation_statuses as $status) {
if ($status !== $highest_publish_status && $current_User->check_perm('blog_comment!' . $status, 'edit', false, $blog)) {
$user_modeartion_statuses[] = $status;
}
}
$user_perm_moderate_cmt = count($user_modeartion_statuses);
if ($user_perm_moderate_cmt) {
/*
* COMMENTS:
*/
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => $user_modeartion_statuses, 'user_perm' => 'moderate', 'post_statuses' => array('published', 'community', 'protected'), 'order' => 'DESC', 'comments' => 5));
// Set param prefix for URLs
$param_prefix = 'cmnt_fullview_';
if (!empty($CommentList->param_prefix)) {
$param_prefix = $CommentList->param_prefix;
}
// Get ready for display (runs the query):
$CommentList->display_init();
}
if ($user_perm_moderate_cmt && $CommentList->result_num_rows) {
// We have comments awaiting moderation
global $htsrv_url;
?>
$meta_comments_count = generic_ctp_number($Item->ID, 'metas', 'total');
$meta_comments_url = $admin_url . '?ctrl=items&p=' . $Item->ID . '&comment_type=meta&blog=' . $Blog->ID . '#comments';
if ($meta_comments_count > 0) {
// Display a badge with meta comments count if at least one exists for this Item:
echo '<a href="' . $meta_comments_url . '" class="badge badge-meta">' . sprintf(T_('%d meta comments'), $meta_comments_count) . '</a>';
} elseif ($current_User->check_perm('meta_comment', 'add', false, $Item)) {
// No meta comments yet, Display a button to add new meta comment:
echo '<a href="' . $meta_comments_url . '" class="btn btn-default btn-sm">' . T_('Add meta comment') . '</a>';
}
echo '</div>';
}
echo '<div class="clearfix"></div>';
// Display rating summary:
echo $rating_summary;
$comments_per_page = !$Blog->get_setting('threaded_comments') ? $Blog->get_setting('comments_per_page') : 1000;
$CommentList = new CommentList2($Blog, $comments_per_page, 'CommentCache', 'c_');
// Filter list:
$CommentList->set_default_filters(array('types' => $type_list, 'statuses' => get_inskin_statuses($Blog->ID, 'comment'), 'post_ID' => $Item->ID, 'order' => $Blog->get_setting('comments_orderdir'), 'threaded_comments' => $Blog->get_setting('threaded_comments')));
$CommentList->load_from_Request();
// Get ready for display (runs the query):
$CommentList->display_init();
// Set redir=no in order to open comment pages
memorize_param('redir', 'string', '', 'no');
if ($params['nav_top_inside']) {
// To use comments page navigation inside list (Useful for table markup)
echo $params['comment_list_start'];
}
if ($params['disp_nav_top'] && $Blog->get_setting('paged_comments')) {
// Prev/Next page navigation
$CommentList->page_links(array_merge(array('page_url' => url_add_tail($Item->get_permanent_url(), '#comments'), 'block_start' => $params['nav_block_start'], 'block_end' => $params['nav_block_end'], 'prev_text' => $params['nav_prev_text'], 'next_text' => $params['nav_next_text'], 'prev_class' => $params['nav_prev_class'], 'next_class' => $params['nav_next_class']), $params['pagination']));
}
/**
* Template tag. Initializes internal states for the most common skin displays.
*
* For more specific skins, this function should not be called and
* equivalent code should be customized within the skin.
*
* @param string What are we going to display. Most of the time the global $disp should be passed.
*/
function skin_init($disp)
{
/**
* @var Blog
*/
global $Blog;
/**
* @var Item
*/
global $Item;
/**
* @var Skin
*/
global $Skin;
global $robots_index;
global $seo_page_type;
global $redir, $ReqURL, $ReqURI, $m, $w, $preview;
global $Chapter;
global $Debuglog;
/**
* @var ItemList2
*/
global $MainList;
/**
* This will give more detail when $disp == 'posts'; otherwise it will have the same content as $disp
* @var string
*/
global $disp_detail, $Settings;
global $Timer;
global $Messages, $PageCache;
$Timer->resume('skin_init');
if (empty($disp_detail)) {
$disp_detail = $disp;
}
$Debuglog->add('skin_init: ' . $disp, 'skins');
// This is the main template; it may be used to display very different things.
// Do inits depending on current $disp:
switch ($disp) {
case 'posts':
case 'single':
case 'page':
case 'feedback-popup':
case 'search':
// We need to load posts for this display:
// Note: even if we request the same post as $Item above, the following will do more restrictions (dates, etc.)
// Init the MainList object:
init_MainList($Blog->get_setting('posts_per_page'));
// Init post navigation
$post_navigation = $Skin->get_post_navigation();
if (empty($post_navigation)) {
$post_navigation = $Blog->get_setting('post_navigation');
}
break;
}
// SEO stuff & redirects if necessary:
$seo_page_type = NULL;
switch ($disp) {
// CONTENT PAGES:
case 'single':
case 'page':
init_ajax_forms();
// auto requires jQuery
init_ratings_js();
init_voting_comment_js();
init_scrollwide_js();
// Add jQuery Wide Scroll plugin
if ($disp == 'single') {
$seo_page_type = 'Single post page';
} else {
$seo_page_type = '"Page" page';
}
// Check if the post has 'redirected' status:
if (!$preview && $Item->status == 'redirected' && $redir == 'yes') {
// $redir=no here allows to force a 'single post' URL for commenting
// Redirect to the URL specified in the post:
$Debuglog->add('Redirecting to post URL [' . $Item->url . '].');
header_redirect($Item->url, true);
}
// Check if we want to redirect to a canonical URL for the post
// Please document encountered problems.
if (!$preview && ($Blog->get_setting('canonical_item_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_item_urls'))) {
// We want to redirect to the Item's canonical URL:
$canonical_url = $Item->get_permanent_url('', '', '&');
if (preg_match('|[&?](page=\\d+)|', $ReqURI, $page_param)) {
// A certain post page has been requested, keep only this param and discard all others:
$canonical_url = url_add_param($canonical_url, $page_param[1], '&');
}
if (preg_match('|[&?](mode=quote&[qcp]+=\\d+)|', $ReqURI, $page_param)) {
// A quote of comment/post, keep only these params and discard all others:
$canonical_url = url_add_param($canonical_url, $page_param[1], '&');
}
if (!is_same_url($ReqURL, $canonical_url)) {
// The requested URL does not look like the canonical URL for this post...
// url difference was resolved
$url_resolved = false;
// Check if the difference is because of an allowed post navigation param
if (preg_match('|[&?]cat=(\\d+)|', $ReqURI, $cat_param)) {
// A category post navigation param is set
$extended_url = '';
if ($post_navigation == 'same_category' && isset($cat_param[1])) {
// navigatie through posts from the same category
$category_ids = postcats_get_byID($Item->ID);
if (in_array($cat_param[1], $category_ids)) {
// cat param is one of this Item categories
$extended_url = $Item->add_navigation_param($canonical_url, $post_navigation, $cat_param[1], '&');
// Set MainList navigation target to the requested category
$MainList->nav_target = $cat_param[1];
}
}
$url_resolved = is_same_url($ReqURL, $extended_url);
}
if (!$url_resolved && $Blog->get_setting('canonical_item_urls') && $redir == 'yes' && !$Item->check_cross_post_nav('auto', $Blog->ID)) {
// REDIRECT TO THE CANONICAL URL:
$Debuglog->add('Redirecting to canonical URL [' . $canonical_url . '].');
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
// EXITED.
}
}
if (!$MainList->result_num_rows) {
// There is nothing to display for this page, don't index it!
$robots_index = false;
}
break;
case 'posts':
init_ajax_forms('blog');
// auto requires jQuery
init_scrollwide_js('blog');
// Add jQuery Wide Scroll plugin
// fp> if we add this here, we have to exetnd the inner if()
// init_ratings_js( 'blog' );
// Get list of active filters:
$active_filters = $MainList->get_active_filters();
if (!empty($active_filters)) {
// The current page is being filtered...
if (array_diff($active_filters, array('page')) == array()) {
// This is just a follow "paged" page
$disp_detail = 'posts-next';
$seo_page_type = 'Next page';
if ($Blog->get_setting('paged_noindex')) {
// We prefer robots not to index category pages:
$robots_index = false;
}
} elseif (array_diff($active_filters, array('cat_array', 'cat_modifier', 'cat_focus', 'posts', 'page')) == array()) {
// This is a category page
$disp_detail = 'posts-cat';
$seo_page_type = 'Category page';
if ($Blog->get_setting('chapter_noindex')) {
// We prefer robots not to index category pages:
$robots_index = false;
}
global $cat, $catsel;
if (empty($catsel) && preg_match('~[0-9]+~', $cat)) {
// We are on a single cat page:
// NOTE: we must have selected EXACTLY ONE CATEGORY through the cat parameter
// BUT: - this can resolve to including children
// - selecting exactly one cat through catsel[] is NOT OK since not equivalent (will exclude children)
// echo 'SINGLE CAT PAGE';
if ($Blog->get_setting('canonical_cat_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_cat_urls')) {
// Check if the URL was canonical:
if (!isset($Chapter)) {
$ChapterCache =& get_ChapterCache();
/**
* @var Chapter
*/
$Chapter =& $ChapterCache->get_by_ID($MainList->filters['cat_array'][0], false);
}
if ($Chapter) {
if ($Chapter->parent_ID) {
// This is a sub-category page (i-e: not a level 1 category)
$disp_detail = 'posts-subcat';
}
$canonical_url = $Chapter->get_permanent_url(NULL, NULL, $MainList->get_active_filter('page'), NULL, '&');
if (!is_same_url($ReqURL, $canonical_url)) {
// fp> TODO: we're going to lose the additional params, it would be better to keep them...
// fp> what additional params actually?
if ($Blog->get_setting('canonical_cat_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canonical":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
}
if ($post_navigation == 'same_category') {
// Category is set and post navigation should go through the same category, set navigation target param
$MainList->nav_target = $cat;
}
}
} elseif (array_diff($active_filters, array('tags', 'posts', 'page')) == array()) {
// This is a tag page
$disp_detail = 'posts-tag';
$seo_page_type = 'Tag page';
if ($Blog->get_setting('tag_noindex')) {
// We prefer robots not to index tag pages:
$robots_index = false;
}
if ($Blog->get_setting('canonical_tag_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_tag_urls')) {
// Check if the URL was canonical:
$canonical_url = $Blog->gen_tag_url($MainList->get_active_filter('tags'), $MainList->get_active_filter('page'), '&');
if (!is_same_url($ReqURL, $canonical_url)) {
if ($Blog->get_setting('canonical_tag_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
} elseif (array_diff($active_filters, array('ymdhms', 'week', 'posts', 'page')) == array()) {
// This is an archive page
// echo 'archive page';
$disp_detail = 'posts-date';
$seo_page_type = 'Date archive page';
if ($Blog->get_setting('canonical_archive_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_archive_urls')) {
// Check if the URL was canonical:
$canonical_url = $Blog->gen_archive_url(substr($m, 0, 4), substr($m, 4, 2), substr($m, 6, 2), $w, '&', $MainList->get_active_filter('page'));
if (!is_same_url($ReqURL, $canonical_url)) {
if ($Blog->get_setting('canonical_archive_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
if ($Blog->get_setting('archive_noindex')) {
// We prefer robots not to index archive pages:
$robots_index = false;
}
} else {
// Other filtered pages:
// pre_dump( $active_filters );
$disp_detail = 'posts-filtered';
$seo_page_type = 'Other filtered page';
if ($Blog->get_setting('filtered_noindex')) {
// We prefer robots not to index other filtered pages:
$robots_index = false;
}
}
} else {
// This is the default blog page
$disp_detail = 'posts-default';
$seo_page_type = 'Default page';
if ($Blog->get_setting('canonical_homepage') && $redir == 'yes' || $Blog->get_setting('relcanonical_homepage')) {
// Check if the URL was canonical:
$canonical_url = $Blog->gen_blogurl();
if (!is_same_url($ReqURL, $canonical_url)) {
if ($Blog->get_setting('canonical_homepage') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
if ($Blog->get_setting('default_noindex')) {
// We prefer robots not to index archive pages:
$robots_index = false;
}
}
break;
case 'search':
$seo_page_type = 'Search page';
if ($Blog->get_setting('filtered_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
// SPECIAL FEATURE PAGES:
// SPECIAL FEATURE PAGES:
case 'feedback-popup':
$seo_page_type = 'Comment popup';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'arcdir':
$seo_page_type = 'Date archive directory';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'catdir':
$seo_page_type = 'Category directory';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'msgform':
init_ajax_forms('blog');
// auto requires jQuery
$seo_page_type = 'Contact form';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'messages':
case 'contacts':
case 'threads':
init_results_js('blog');
// Add functions to work with Results tables
// just in case some robot would be logged in:
$seo_page_type = 'Messaging module';
$robots_index = false;
break;
case 'login':
global $Plugins, $transmit_hashed_password;
$seo_page_type = 'Login form';
$robots_index = false;
require_js('functions.js', 'blog');
$transmit_hashed_password = (bool) $Settings->get('js_passwd_hashing') && !(bool) $Plugins->trigger_event_first_true('LoginAttemptNeedsRawPassword');
if ($transmit_hashed_password) {
// Include JS for client-side password hashing:
require_js('sha1_md5.js', 'blog');
}
break;
case 'register':
if (is_logged_in()) {
// If user is logged in the register form should not be displayed. In this case redirect to the blog home page.
$Messages->add(T_('You are already logged in.'), 'note');
header_redirect($Blog->gen_blogurl(), false);
}
$seo_page_type = 'Register form';
$robots_index = false;
break;
case 'lostpassword':
if (is_logged_in()) {
// If user is logged in the lost password form should not be displayed. In this case redirect to the blog home page.
$Messages->add(T_('You are already logged in.'), 'note');
header_redirect($Blog->gen_blogurl(), false);
}
$seo_page_type = 'Lost password form';
$robots_index = false;
break;
case 'profile':
global $rsc_url;
require_css($rsc_url . 'css/jquery/smoothness/jquery-ui.css');
init_userfields_js('blog');
case 'avatar':
case 'pwdchange':
case 'userprefs':
case 'subs':
$seo_page_type = 'Special feature page';
if ($Blog->get_setting('special_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'users':
$seo_page_type = 'Users list';
$robots_index = false;
global $rsc_url;
require_css($rsc_url . 'css/jquery/smoothness/jquery-ui.css');
init_results_js('blog');
// Add functions to work with Results tables
break;
case 'user':
$seo_page_type = 'User display';
if (is_logged_in()) {
// Used for combo_box contacts groups
require_js('form_extensions.js', 'blog');
}
break;
case 'edit':
init_datepicker_js('blog');
require_js('admin.js', 'blog');
init_inskin_editing('blog');
init_plugins_js('blog');
break;
case 'edit_comment':
init_plugins_js('blog');
break;
case 'useritems':
case 'usercomments':
global $inc_path, $display_params, $viewed_User;
// get user_ID because we want it in redirect_to in case we need to ask for login.
$user_ID = param('user_ID', 'integer', true, true);
if (empty($user_ID)) {
bad_request_die(sprintf(T_('Parameter «%s» is required!'), 'user_ID'));
}
// set where to redirect in case of error
$error_redirect_to = empty($Blog) ? $baseurl : $Blog->gen_blogurl();
if (!is_logged_in()) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$Messages->add(T_('You must log in to view this user profile.'));
header_redirect(get_login_url('cannot see user'), 302);
// will have exited
}
if (is_logged_in() && !check_user_status('can_view_user', $user_ID)) {
// user is logged in, but his/her status doesn't permit to view user profile
if (check_user_status('can_be_validated')) {
// user is logged in but his/her account is not active yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can view this user profile. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
$Messages->add(T_('Your account status currently does not permit to view this user profile.'));
header_redirect($error_redirect_to, 302);
// will have exited
}
if (!empty($user_ID)) {
$UserCache =& get_UserCache();
$viewed_User = $UserCache->get_by_ID($user_ID, false);
if (empty($viewed_User)) {
$Messages->add(T_('The requested user does not exist!'));
header_redirect($error_redirect_to);
// will have exited
}
if ($viewed_User->check_status('is_closed')) {
$Messages->add(T_('The requested user account is closed!'));
header_redirect($error_redirect_to);
// will have exited
}
}
// Require results.css to display thread query results in a table
require_css('results.css');
// Results/tables styles
// Require functions.js to show/hide a panel with filters
require_js('functions.js', 'blog');
// Include this file to expand/collapse the filters panel when JavaScript is disabled
require_once $inc_path . '_filters.inc.php';
$display_params = !empty($Skin) ? $Skin->get_template('Results') : NULL;
if ($disp == 'useritems') {
// Init items list
global $user_ItemList;
$param_prefix = 'useritems_';
$page = param($param_prefix . 'paged', 'integer', 1);
$orderby = param($param_prefix . 'orderby', 'string', $Blog->get_setting('orderby'));
$order = param($param_prefix . 'order', 'string', $Blog->get_setting('orderdir'));
$useritems_Blog = NULL;
$user_ItemList = new ItemList2($useritems_Blog, NULL, NULL, NULL, 'ItemCache', $param_prefix);
$user_ItemList->load_from_Request();
$user_ItemList->set_filters(array('page' => $page, 'authors' => $user_ID, 'orderby' => str_replace($param_prefix, '', $orderby), 'order' => str_replace($param_prefix, '', $order)));
$user_ItemList->query();
} else {
// Init comments list
global $user_CommentList;
$param_prefix = 'usercmts_';
$page = param($param_prefix . 'paged', 'integer', 1);
$orderby = param($param_prefix . 'orderby', 'string', 'date');
$order = param($param_prefix . 'order', 'string', $Blog->get_setting('orderdir'));
$user_CommentList = new CommentList2(NULL, NULL, 'CommentCache', $param_prefix);
$user_CommentList->load_from_Request();
$user_CommentList->set_filters(array('page' => $page, 'author_IDs' => $user_ID, 'orderby' => str_replace($param_prefix, '', $orderby), 'order' => str_replace($param_prefix, '', $order)));
$user_CommentList->query();
}
break;
case 'comments':
if (!$Blog->get_setting('comments_latest')) {
// If latest comments page is disabled - Display 404 page with error message
$Messages->add(T_('This feature is disabled.'), 'error');
global $disp;
$disp = '404';
} else {
break;
}
case '404':
// We have a 404 unresolved content error
// How do we want do deal with it?
skin_404_header();
// This MAY or MAY not have exited -- will exit on 30x redirect, otherwise will return here.
// Just in case some dumb robot needs extra directives on this:
$robots_index = false;
break;
}
if (!empty($_SERVER['HTTP_USER_AGENT'])) {
// Detect IE browser version
preg_match('/msie (\\d+)/i', $_SERVER['HTTP_USER_AGENT'], $browser_ie);
if (count($browser_ie) == 2 && $browser_ie[1] < 7) {
// IE < 7
require_css('ie6.css', 'relative');
$Messages->add(T_('Your web browser is too old. For this site to work correctly, we recommend you use a more recent browser.'), 'note');
}
}
// dummy var for backward compatibility with versions < 2.4.1 -- prevents "Undefined variable"
global $global_Cache, $credit_links;
$credit_links = $global_Cache->get('creds');
$Timer->pause('skin_init');
// Check if user is logged in with a not active account, and display an error message if required
check_allow_disp($disp);
// initialize Blog enabled widgets, before displaying anything
init_blog_widgets($Blog->ID);
// Initialize displaying....
$Timer->start('Skin:display_init');
$Skin->display_init();
$Timer->pause('Skin:display_init');
// Send default headers:
// See comments inside of this function:
headers_content_mightcache('text/html');
// In most situations, you do NOT want to cache dynamic content!
// Never allow Messages to be cached!
if ($Messages->count() && !empty($PageCache)) {
// Abort PageCache collect
$PageCache->abort_collect();
}
}
<?php
if ($disp_comments || $disp_trackbacks || $disp_pingbacks) {
if ($disp_comments) {
}
?>
<!-- Title for comments, tbs, pbs... -->
<h4><?php
echo implode(", ", $disp_title);
?>
:</h4>
<?php
$comments_per_page = !$Blog->get_setting('threaded_comments') ? $Blog->get_setting('comments_per_page') : 1000;
$CommentList = new CommentList2($Blog, $comments_per_page);
// Filter list:
$CommentList->set_filters(array('types' => $type_list, 'statuses' => get_inskin_statuses($Blog->ID, 'comment'), 'post_ID' => $Item->ID, 'order' => $Blog->get_setting('comments_orderdir'), 'threaded_comments' => $Blog->get_setting('threaded_comments')));
// Get ready for display (runs the query):
$CommentList->display_init();
$CommentList->display_if_empty(array('msg_empty' => sprintf(T_('No %s for this post yet...'), implode("/", $disp_title))));
if ($Blog->get_setting('threaded_comments')) {
// Array to store the comment replies
global $CommentReplies;
$CommentReplies = array();
}
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
if ($Blog->get_setting('threaded_comments') && $Comment->in_reply_to_cmt_ID > 0) {
// Store the replies in a special array
if (!isset($CommentReplies[$Comment->in_reply_to_cmt_ID])) {
*
* This file is not meant to be called directly.
* It is meant to be called by an include in the main.page.php template.
* To display a feedback, you should call a stub AND pass the right parameters
* For example: /blogs/index.php?disp=comments
*
* b2evolution - {@link http://b2evolution.net/}
* Released under GNU GPL License - {@link http://b2evolution.net/about/gnu-gpl-license}
* @copyright (c)2003-2015 by Francois Planque - {@link http://fplanque.com/}
*
* @package evoskins
*/
if (!defined('EVO_MAIN_INIT')) {
die('Please, do not access this page directly.');
}
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => get_inskin_statuses($Blog->ID, 'comment'), 'order' => 'DESC', 'comments' => $Blog->get_setting('latest_comments_num')));
// Get ready for display (runs the query):
$CommentList->display_init();
$CommentList->display_if_empty(array('msg_empty' => T_('No replies yet...')));
if ($CommentList->result_num_rows > 0) {
?>
<table class="bForums fixed_layout evo_content_block" width="100%" cellspacing="1" cellpadding="2" border="0">
<tr>
<th class="col1"><?php
echo T_('Author');
?>
</th>
<th><?php
echo T_('Message');
/**
* Search and score comments
*
* @param string original search term
* @param array all separated words from the search term
* @param array all quoted parts from the search term
* @param number max possible score
*/
function search_and_score_comments($search_term, $keywords, $quoted_parts)
{
global $DB, $Blog;
// Search between comments
$search_CommentList = new CommentList2($Blog, '', 'CommentCache', 'search_comment');
$search_CommentList->set_filters(array('keywords' => $search_term, 'phrase' => 'OR', 'order_by' => 'date', 'order' => 'DESC', 'comments' => 1000));
$search_CommentList->query_init();
$search_query = 'SELECT comment_ID, post_title, comment_content, comment_date,
IFNULL(comment_author, user_login) as author' . $search_CommentList->CommentQuery->get_from() . ' LEFT JOIN T_items__item ON comment_item_ID = post_ID' . ' LEFT JOIN T_users ON post_creator_user_ID = user_ID' . $search_CommentList->CommentQuery->get_where() . $search_CommentList->CommentQuery->get_group_by() . $search_CommentList->CommentQuery->get_order_by() . $search_CommentList->CommentQuery->get_limit();
$query_result = $DB->get_results($search_query, OBJECT, 'Search comments query');
$search_result = array();
foreach ($query_result as $row) {
$scores_map = array();
$scores_map['item_title'] = score_text($row->post_title, $search_term, $keywords, $quoted_parts);
$scores_map['content'] = score_text($row->comment_content, $search_term, $keywords, $quoted_parts);
if (!empty($row->author) && !empty($search_term) && strpos($row->author, $search_term) !== false) {
$scores_map['author_name'] = 5;
}
$scores_map['creation_date'] = score_date($row->comment_date);
$final_score = $scores_map['item_title']['score'] + $scores_map['content']['score'] + (isset($scores_map['author_name']) ? $scores_map['author_name'] : 0) + $scores_map['creation_date'];
$search_result[] = array('type' => 'comment', 'score' => $final_score, 'ID' => $row->comment_ID, 'scores_map' => $scores_map);
}
return $search_result;
}
$block_item_Widget = new Widget('dash_item');
$nb_blocks_displayed = 0;
$blog_moderation_statuses = explode(',', $Blog->get_setting('moderation_statuses'));
$highest_publish_status = get_highest_publish_status('comment', $Blog->ID, false);
$user_modeartion_statuses = array();
foreach ($blog_moderation_statuses as $status) {
if ($status !== $highest_publish_status && $current_User->check_perm('blog_comment!' . $status, 'edit', false, $blog)) {
$user_modeartion_statuses[] = $status;
}
}
$user_perm_moderate_cmt = count($user_modeartion_statuses);
if ($user_perm_moderate_cmt) {
/*
* COMMENTS:
*/
$CommentList = new CommentList2($Blog);
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => $user_modeartion_statuses, 'user_perm' => 'moderate', 'post_statuses' => array('published', 'community', 'protected'), 'order' => 'DESC', 'comments' => 30));
// Set param prefix for URLs
$param_prefix = 'cmnt_fullview_';
if (!empty($CommentList->param_prefix)) {
$param_prefix = $CommentList->param_prefix;
}
// Get ready for display (runs the query):
$CommentList->display_init();
}
if ($user_perm_moderate_cmt && $CommentList->result_num_rows) {
// We have comments awaiting moderation
load_funcs('comments/model/_comment_js.funcs.php');
$nb_blocks_displayed++;
$opentrash_link = get_opentrash_link(true, false, array('class' => 'btn btn-default'));
function disp_feedback_list($type = 'comment', $params = array())
{
global $Blog, $Item, $app_version;
$type_list = array($type);
if (version_compare($app_version, '4.0') < 0) {
// b2evo 3
//array_walk($type_list, function(&$v){ $v = "'$v'"; });
foreach ($type_list as $v) {
$type_list_fixed[] = "'{$v}'";
}
$CommentList = new CommentList(NULL, implode(',', $type_list_fixed), array('published'), $Item->ID, '', 'ASC');
} else {
// b2evo 4
$type = substr($type, 0, 1);
$CommentList = new CommentList2($Blog, $Blog->get_setting('comments_per_page'), 'CommentCache', $type . '_');
// Filter list:
$CommentList->set_default_filters(array('types' => $type_list, 'statuses' => array('published'), 'post_ID' => $Item->ID, 'order' => $Blog->get_setting('comments_orderdir')));
$CommentList->load_from_Request();
// Get ready for display (runs the query):
$CommentList->display_init();
}
if ($CommentList->result_num_rows < 1) {
return;
}
forget_param('c');
forget_param('tb');
forget_param('pb');
forget_param('disp');
forget_param('more');
forget_param('title');
if (method_exists($CommentList, 'page_links') && $Blog->get_setting('paged_comments')) {
// Navigation
$CommentList->page_links(array('page_url' => url_add_tail($Item->get_permanent_url(), '#post-tabs'), 'block_start' => '<div class="comment-navigation clearfix">', 'block_end' => '</div>', 'prev_text' => '«', 'next_text' => '»'));
$nav_displayed = 1;
}
echo $params['comment_list_start'];
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
// ------------------ COMMENT INCLUDED HERE ------------------
skin_include($params['comment_template'], array('Comment' => &$Comment, 'comment_start' => $params['comment_start'], 'comment_end' => $params['comment_end'], 'link_to' => $params['link_to']));
// ---------------------- END OF COMMENT ---------------------
}
// End of comment list loop.
echo $params['comment_list_end'];
if (!empty($nav_displayed)) {
// Navigation
$CommentList->page_links(array('page_url' => url_add_tail($Item->get_permanent_url(), '#post-tabs'), 'block_start' => '<div class="comment-navigation clearfix">', 'block_end' => '</div>', 'prev_text' => '«', 'next_text' => '»'));
}
}
/**
* Initialize internal states for the most common skin displays.
*
* For more specific skins, this function may not be called and
* equivalent code may be customized within the skin.
*
* @param string What are we going to display. Most of the time the global $disp should be passed.
*/
function skin_init($disp)
{
/**
* @var Blog
*/
global $Blog;
/**
* @var Item
*/
global $Item;
/**
* @var Skin
*/
global $Skin;
global $robots_index;
global $seo_page_type;
global $redir, $ReqURL, $ReqURI, $m, $w, $preview;
global $Chapter;
global $Debuglog;
/**
* @var ItemList2
*/
global $MainList;
/**
* This will give more detail when $disp == 'posts'; otherwise it will have the same content as $disp
* @var string
*/
global $disp_detail, $Settings;
global $Timer;
global $Messages, $PageCache;
global $Session, $current_User;
$Timer->resume('skin_init');
if (empty($disp_detail)) {
$disp_detail = $disp;
}
$Debuglog->add('skin_init: $disp=' . $disp, 'skins');
// This is the main template; it may be used to display very different things.
// Do inits depending on current $disp:
switch ($disp) {
case 'front':
case 'posts':
case 'single':
case 'page':
case 'terms':
case 'download':
case 'feedback-popup':
// We need to load posts for this display:
if ($disp == 'terms') {
// Initialize the redirect param to know what page redirect after accepting of terms:
param('redirect_to', 'url', '');
}
// Note: even if we request the same post as $Item above, the following will do more restrictions (dates, etc.)
// Init the MainList object:
init_MainList($Blog->get_setting('posts_per_page'));
// Init post navigation
$post_navigation = $Skin->get_post_navigation();
if (empty($post_navigation)) {
$post_navigation = $Blog->get_setting('post_navigation');
}
if (!empty($MainList) && $MainList->single_post && ($single_Item =& mainlist_get_item())) {
// If we are currently viewing a single post
// We assume the current user will have read the entire post and all its current comments:
$single_Item->update_read_timestamps(true, true);
// Restart the items list:
$MainList->restart();
}
break;
case 'search':
// Searching post, comments and categories
load_funcs('collections/_search.funcs.php');
// Check previous search keywords so it can be displayed in the search input box
param('s', 'string', '', true);
break;
}
// SEO stuff & redirects if necessary:
$seo_page_type = NULL;
switch ($disp) {
// CONTENT PAGES:
case 'single':
case 'page':
case 'terms':
if ($disp == 'terms' && !$Item) {
// Wrong post ID for terms page:
global $disp;
$disp = '404';
$Messages->add(sprintf(T_('Terms not found. (post ID #%s)'), get_param('p')), 'error');
break;
}
if (!$preview && empty($Item)) {
// No Item, incorrect request and incorrect state of the application, a 404 redirect should have already happened
//debug_die( 'Invalid page URL!' );
}
if ($disp == 'single') {
$seo_page_type = 'Single post page';
} else {
$seo_page_type = '"Page" page';
}
if (!$preview) {
// Check if item has a goal to insert a hit into DB
$Item->check_goal();
}
// Check if the post has 'redirected' status:
if (!$preview && $Item->status == 'redirected' && $redir == 'yes') {
// $redir=no here allows to force a 'single post' URL for commenting
// Redirect to the URL specified in the post:
$Debuglog->add('Redirecting to post URL [' . $Item->url . '].');
header_redirect($Item->url, true, true);
}
// Check if we want to redirect to a canonical URL for the post
// Please document encountered problems.
if (!$preview && ($Blog->get_setting('canonical_item_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_item_urls'))) {
// We want to redirect to the Item's canonical URL:
$canonical_url = $Item->get_permanent_url('', '', '&');
if (preg_match('|[&?](page=\\d+)|', $ReqURI, $page_param)) {
// A certain post page has been requested, keep only this param and discard all others:
$canonical_url = url_add_param($canonical_url, $page_param[1], '&');
}
if (preg_match('|[&?](mode=quote&[qcp]+=\\d+)|', $ReqURI, $page_param)) {
// A quote of comment/post, keep only these params and discard all others:
$canonical_url = url_add_param($canonical_url, $page_param[1], '&');
}
if (!is_same_url($ReqURL, $canonical_url)) {
// The requested URL does not look like the canonical URL for this post...
// url difference was resolved
$url_resolved = false;
// Check if the difference is because of an allowed post navigation param
if (preg_match('|[&?]cat=(\\d+)|', $ReqURI, $cat_param)) {
// A category post navigation param is set
$extended_url = '';
if ($post_navigation == 'same_category' && isset($cat_param[1])) {
// navigatie through posts from the same category
$category_ids = postcats_get_byID($Item->ID);
if (in_array($cat_param[1], $category_ids)) {
// cat param is one of this Item categories
$extended_url = $Item->add_navigation_param($canonical_url, $post_navigation, $cat_param[1], '&');
// Set MainList navigation target to the requested category
$MainList->nav_target = $cat_param[1];
}
}
$url_resolved = is_same_url($ReqURL, $extended_url);
}
if (preg_match('|[&?]tag=([^&A-Z]+)|', $ReqURI, $tag_param)) {
// A tag post navigation param is set
$extended_url = '';
if ($post_navigation == 'same_tag' && isset($tag_param[1])) {
// navigatie through posts from the same tag
$tag_names = $Item->get_tags();
if (in_array($tag_param[1], $tag_names)) {
// tag param is one of this Item tags
$extended_url = $Item->add_navigation_param($canonical_url, $post_navigation, $tag_param[1], '&');
// Set MainList navigation target to the requested tag
$MainList->nav_target = $tag_param[1];
}
}
$url_resolved = is_same_url($ReqURL, $extended_url);
}
if (!$url_resolved && $Blog->get_setting('canonical_item_urls') && $redir == 'yes' && !$Item->check_cross_post_nav('auto', $Blog->ID)) {
// REDIRECT TO THE CANONICAL URL:
$Debuglog->add('Redirecting to canonical URL [' . $canonical_url . '].');
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
// EXITED.
}
}
if (!$MainList->result_num_rows) {
// There is nothing to display for this page, don't index it!
$robots_index = false;
}
break;
case 'download':
if (empty($Item)) {
// No Item, incorrect request and incorrect state of the application, a 404 redirect should have already happened
debug_die('Invalid page URL!');
}
$download_link_ID = param('download', 'integer', 0);
// Check if we can allow to download the selected file
$LinkCache =& get_LinkCache();
if (!(($download_Link =& $LinkCache->get_by_ID($download_link_ID, false, false)) && ($LinkItem =& $download_Link->get_LinkOwner()) && ($LinkItem->Item && $LinkItem->Item->ID == $Item->ID) && ($download_File =& $download_Link->get_File()) && $download_File->exists())) {
// Bad request, Redirect to Item permanent url
$Messages->add(T_('The requested file is not available for download.'), 'error');
$canonical_url = $Item->get_permanent_url('', '', '&');
$Debuglog->add('Redirecting to canonical URL [' . $canonical_url . '].');
header_redirect($canonical_url, true);
}
// Save the downloading Link to the global vars
$GLOBALS['download_Link'] =& $download_Link;
// Save global $Item to $download_Item, because $Item can be rewritten by function get_featured_Item() in some skins
$GLOBALS['download_Item'] =& $Item;
init_ajax_forms('blog');
// auto requires jQuery
// Initialize JavaScript to download file after X seconds
add_js_headline('
jQuery( document ).ready( function ()
{
jQuery( "#download_timer_js" ).show();
} );
var b2evo_download_timer = ' . intval($Blog->get_setting('download_delay')) . ';
var downloadInterval = setInterval( function()
{
jQuery( "#download_timer" ).html( b2evo_download_timer );
if( b2evo_download_timer == 0 )
{ // Stop timer and download a file
clearInterval( downloadInterval );
jQuery( "#download_help_url" ).show();
}
b2evo_download_timer--;
}, 1000 );');
// Use meta tag to download file when JavaScript is NOT enabled
add_headline('<meta http-equiv="refresh" content="' . intval($Blog->get_setting('download_delay')) . '; url=' . $download_Link->get_download_url(array('type' => 'action')) . '" />');
$seo_page_type = 'Download page';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'posts':
init_ajax_forms('blog');
// auto requires jQuery
// fp> if we add this here, we have to exetnd the inner if()
// init_ratings_js( 'blog' );
// Get list of active filters:
$active_filters = $MainList->get_active_filters();
if (!empty($active_filters)) {
// The current page is being filtered...
if (array_diff($active_filters, array('page')) == array()) {
// This is just a follow "paged" page
$disp_detail = 'posts-next';
$seo_page_type = 'Next page';
if ($Blog->get_setting('paged_noindex')) {
// We prefer robots not to index category pages:
$robots_index = false;
}
} elseif (array_diff($active_filters, array('cat_array', 'cat_modifier', 'cat_focus', 'posts', 'page')) == array()) {
// This is a category page
$disp_detail = 'posts-cat';
$seo_page_type = 'Category page';
if ($Blog->get_setting('chapter_noindex')) {
// We prefer robots not to index category pages:
$robots_index = false;
}
global $cat, $catsel;
if (empty($catsel) && preg_match('~^[0-9]+$~', $cat)) {
// We are on a single cat page:
// NOTE: we must have selected EXACTLY ONE CATEGORY through the cat parameter
// BUT: - this can resolve to including children
// - selecting exactly one cat through catsel[] is NOT OK since not equivalent (will exclude children)
// echo 'SINGLE CAT PAGE';
if ($Blog->get_setting('canonical_cat_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_cat_urls')) {
// Check if the URL was canonical:
if (!isset($Chapter)) {
$ChapterCache =& get_ChapterCache();
/**
* @var Chapter
*/
$Chapter =& $ChapterCache->get_by_ID($MainList->filters['cat_array'][0], false);
}
if ($Chapter) {
if ($Chapter->parent_ID) {
// This is a sub-category page (i-e: not a level 1 category)
$disp_detail = 'posts-subcat';
}
$canonical_url = $Chapter->get_permanent_url(NULL, NULL, $MainList->get_active_filter('page'), NULL, '&');
if (!is_same_url($ReqURL, $canonical_url)) {
// fp> TODO: we're going to lose the additional params, it would be better to keep them...
// fp> what additional params actually?
if ($Blog->get_setting('canonical_cat_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canonical":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
} else {
// If the requested chapter was not found display 404 page
$Messages->add(T_('The requested chapter was not found'));
global $disp;
$disp = '404';
break;
}
}
if ($post_navigation == 'same_category') {
// Category is set and post navigation should go through the same category, set navigation target param
$MainList->nav_target = $cat;
}
}
} elseif (array_diff($active_filters, array('tags', 'posts', 'page')) == array()) {
// This is a tag page
$disp_detail = 'posts-tag';
$seo_page_type = 'Tag page';
if ($Blog->get_setting('tag_noindex')) {
// We prefer robots not to index tag pages:
$robots_index = false;
}
if ($Blog->get_setting('canonical_tag_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_tag_urls')) {
// Check if the URL was canonical:
$canonical_url = $Blog->gen_tag_url($MainList->get_active_filter('tags'), $MainList->get_active_filter('page'), '&');
if (!is_same_url($ReqURL, $canonical_url)) {
if ($Blog->get_setting('canonical_tag_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
$tag = $MainList->get_active_filter('tags');
if ($post_navigation == 'same_tag' && !empty($tag)) {
// Tag is set and post navigation should go through the same tag, set navigation target param
$MainList->nav_target = $tag;
}
} elseif (array_diff($active_filters, array('ymdhms', 'week', 'posts', 'page')) == array()) {
// This is an archive page
// echo 'archive page';
$disp_detail = 'posts-date';
$seo_page_type = 'Date archive page';
if ($Blog->get_setting('canonical_archive_urls') && $redir == 'yes' || $Blog->get_setting('relcanonical_archive_urls')) {
// Check if the URL was canonical:
$canonical_url = $Blog->gen_archive_url(substr($m, 0, 4), substr($m, 4, 2), substr($m, 6, 2), $w, '&', $MainList->get_active_filter('page'));
if (!is_same_url($ReqURL, $canonical_url)) {
if ($Blog->get_setting('canonical_archive_urls') && $redir == 'yes') {
// REDIRECT TO THE CANONICAL URL:
header_redirect($canonical_url, true);
} else {
// Use rel="canoncial":
add_headline('<link rel="canonical" href="' . $canonical_url . '" />');
}
}
}
if ($Blog->get_setting('archive_noindex')) {
// We prefer robots not to index archive pages:
$robots_index = false;
}
} else {
// Other filtered pages:
// pre_dump( $active_filters );
$disp_detail = 'posts-filtered';
$seo_page_type = 'Other filtered page';
if ($Blog->get_setting('filtered_noindex')) {
// We prefer robots not to index other filtered pages:
$robots_index = false;
}
}
} elseif ($Blog->get_setting('front_disp') == 'posts') {
// This is the default blog page only if the 'front_disp' is set to 'posts'
$disp_detail = 'posts-default';
$seo_page_type = 'Default page';
if ($Blog->get_setting('default_noindex')) {
// We prefer robots not to index archive pages:
$robots_index = false;
}
}
break;
case 'search':
$seo_page_type = 'Search page';
if ($Blog->get_setting('filtered_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
// SPECIAL FEATURE PAGES:
// SPECIAL FEATURE PAGES:
case 'feedback-popup':
$seo_page_type = 'Comment popup';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'arcdir':
$seo_page_type = 'Date archive directory';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'catdir':
$seo_page_type = 'Category directory';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'msgform':
global $disp;
// get expected message form type
$msg_type = param('msg_type', 'string', '');
// initialize
$recipient_User = NULL;
$Comment = NULL;
$allow_msgform = NULL;
// get possible params
$recipient_id = param('recipient_id', 'integer', 0, true);
$comment_id = param('comment_id', 'integer', 0, true);
$post_id = param('post_id', 'integer', 0, true);
$subject = param('subject', 'string', '');
// try to init recipient_User
if (!empty($recipient_id)) {
$UserCache =& get_UserCache();
$recipient_User =& $UserCache->get_by_ID($recipient_id);
} elseif (!empty($comment_id)) {
// comment id is set, try to get comment author user
$CommentCache =& get_CommentCache();
$Comment = $CommentCache->get_by_ID($comment_id, false);
if ($Comment = $CommentCache->get_by_ID($comment_id, false)) {
$recipient_User =& $Comment->get_author_User();
if (empty($recipient_User) && $Comment->allow_msgform && is_email($Comment->get_author_email())) {
// set allow message form to email because comment author (not registered) accepts email
$allow_msgform = 'email';
param('recipient_address', 'string', $Comment->get_author_email());
param('recipient_name', 'string', $Comment->get_author_name());
}
}
} else {
// Recipient was not defined, try set the blog owner as recipient
global $Blog;
if (empty($Blog)) {
// Blog is not set, this is an invalid request
debug_die('Invalid send message request!');
}
$recipient_User = $Blog->get_owner_User();
}
if ($recipient_User) {
// recipient User is set
// get_msgform_possibility returns NULL (false), only if there is no messaging option between current_User and recipient user
$allow_msgform = $recipient_User->get_msgform_possibility();
if ($msg_type == 'email' && $recipient_User->get_msgform_possibility(NULL, 'email') != 'email') {
// User doesn't want to receive email messages, Restrict if this was requested by wrong url:
$msg_type = '';
}
if ($allow_msgform == 'login') {
// user must login first to be able to send a message to this User
$disp = 'login';
param('action', 'string', 'req_login');
// override redirect to param
param('redirect_to', 'url', regenerate_url(), true, true);
if (($msg_Blog =& get_setting_Blog('msg_blog_ID')) && $Blog->ID != $msg_Blog->ID) {
// Redirect to special blog for messaging actions if it is defined in general settings
header_redirect(url_add_param($msg_Blog->get('msgformurl', array('glue' => '&')), 'redirect_to=' . rawurlencode($redirect_to), '&'));
}
$Messages->add(T_('You must log in before you can contact this user'));
} elseif ($allow_msgform == 'PM' && check_user_status('can_be_validated')) {
// user is not activated
if ($recipient_User->accepts_email()) {
// recipient User accepts email allow to send email
$allow_msgform = 'email';
$msg_type = 'email';
$activateinfo_link = 'href="' . get_activate_info_url(NULL, '&') . '"';
$Messages->add(sprintf(T_('You must activate your account before you can send a private message to %s. However you can send them an email if you\'d like. <a %s>More info »</a>'), $recipient_User->get('login'), $activateinfo_link), 'warning');
} else {
// Redirect to the activate info page for not activated users
$Messages->add(T_('You must activate your account before you can contact a user. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
} elseif ($msg_type == 'PM' && $allow_msgform == 'email') {
// only email is allowed but user expect private message form
if (!empty($current_User) && $recipient_id == $current_User->ID) {
$Messages->add(T_('You cannot send a private message to yourself. However you can send yourself an email if you\'d like.'), 'warning');
} else {
$Messages->add(sprintf(T_('You cannot send a private message to %s. However you can send them an email if you\'d like.'), $recipient_User->get('login')), 'warning');
}
} elseif ($msg_type != 'email' && $allow_msgform == 'PM') {
// private message form should be displayed, change display to create new individual thread with the given recipient user
// check if creating new PM is allowed
if (check_create_thread_limit(true)) {
// thread limit reached
header_redirect();
// exited here
}
global $edited_Thread, $edited_Message, $recipients_selected;
// Load classes
load_class('messaging/model/_thread.class.php', 'Thread');
load_class('messaging/model/_message.class.php', 'Message');
// Set global variable to auto define the FB autocomplete plugin field
$recipients_selected = array(array('id' => $recipient_User->ID, 'title' => $recipient_User->login));
init_tokeninput_js('blog');
$disp = 'threads';
$edited_Thread = new Thread();
$edited_Message = new Message();
$edited_Message->Thread =& $edited_Thread;
$edited_Thread->recipients = $recipient_User->login;
param('action', 'string', 'new', true);
param('thrdtype', 'string', 'individual', true);
}
if ($allow_msgform == 'email') {
// set recippient user param
set_param('recipient_id', $recipient_User->ID);
}
}
if ($allow_msgform == NULL) {
// should be Prevented by UI
if (!empty($recipient_User)) {
$Messages->add(sprintf(T_('The user "%s" does not want to be contacted through the message form.'), $recipient_User->get('login')), 'error');
} elseif (!empty($Comment)) {
$Messages->add(T_('This commentator does not want to get contacted through the message form.'), 'error');
}
$blogurl = $Blog->gen_blogurl();
// If it was a front page request or the front page is set to 'msgform' then we must not redirect to the front page because it is forbidden for the current User
$redirect_to = is_front_page() || $Blog->get_setting('front_disp') == 'msgform' ? url_add_param($blogurl, 'disp=403', '&') : $blogurl;
header_redirect($redirect_to, 302);
// exited here
}
if ($allow_msgform == 'PM' || $allow_msgform == 'email') {
// Some message form is available
// Get the suggested subject for the email:
if (empty($subject)) {
// no subject provided by param:
global $DB;
if (!empty($comment_id)) {
// fp>TODO there should be NO SQL in this file. Make a $ItemCache->get_by_comment_ID().
$row = $DB->get_row('
SELECT post_title
FROM T_items__item, T_comments
WHERE comment_ID = ' . $DB->quote($comment_id) . '
AND post_ID = comment_item_ID');
if ($row) {
$subject = T_('Re:') . ' ' . sprintf(T_('Comment on %s'), $row->post_title);
}
}
if (empty($subject) && !empty($post_id)) {
// fp>TODO there should be NO SQL in this file. Use $ItemCache->get_by_ID.
$row = $DB->get_row('
SELECT post_title
FROM T_items__item
WHERE post_ID = ' . $post_id);
if ($row) {
$subject = T_('Re:') . ' ' . $row->post_title;
}
}
}
if ($allow_msgform == 'PM' && isset($edited_Thread)) {
$edited_Thread->title = $subject;
} else {
param('subject', 'string', $subject, true);
}
}
if (($msg_Blog =& get_setting_Blog('msg_blog_ID')) && $Blog->ID != $msg_Blog->ID) {
// Redirect to special blog for messaging actions if it is defined in general settings
header_redirect($msg_Blog->get('msgformurl', array('glue' => '&')));
}
$seo_page_type = 'Contact form';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
case 'messages':
case 'contacts':
case 'threads':
switch ($disp) {
case 'messages':
// Actions ONLY for disp=messages
// fp> The correct place to get thrd_ID is here, because we want it in redirect_to in case we need to ask for login.
$thrd_ID = param('thrd_ID', 'integer', '', true);
if (!is_logged_in()) {
// Redirect to the login page for anonymous users
$Messages->add(T_('You must log in to read your messages.'));
header_redirect(get_login_url('cannot see messages'), 302);
// will have exited
}
// check if user status allow to view messages
if (!$current_User->check_status('can_view_messages')) {
// user status does not allow to view messages
if ($current_User->check_status('can_be_validated')) {
// user is logged in but his/her account is not activate yet
$Messages->add(T_('You must activate your account before you can read & send messages. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
$Messages->add('You are not allowed to view Messages!');
header_redirect($Blog->gen_blogurl(), 302);
// will have exited
}
// check if user permissions allow to view messages
if (!$current_User->check_perm('perm_messaging', 'reply')) {
// Redirect to the blog url for users without messaging permission
$Messages->add('You are not allowed to view Messages!');
header_redirect($Blog->gen_blogurl(), 302);
// will have exited
}
if (!empty($thrd_ID)) {
// if this thread exists and current user is part of this thread update status because won't be any unread messages on this conversation
// we need to mark this early to make sure the unread message count will be correct in the evobar
mark_as_read_by_user($thrd_ID, $current_User->ID);
}
if (($unsaved_message_params = get_message_params_from_session()) !== NULL) {
// set Message and Thread saved params from Session
global $edited_Message, $action;
load_class('messaging/model/_message.class.php', 'Message');
$edited_Message = new Message();
$edited_Message->text = $unsaved_message_params['message'];
$edited_Message->original_text = $unsaved_message_params['message_original'];
$edited_Message->set_renderers($unsaved_message_params['renderers']);
$edited_Message->thread_ID = $thrd_ID;
$action = $unsaved_message_params['action'];
}
break;
case 'contacts':
// Actions ONLY for disp=contacts
if (!is_logged_in()) {
// Redirect to the login page for anonymous users
$Messages->add(T_('You must log in to manage your contacts.'));
header_redirect(get_login_url('cannot see contacts'), 302);
// will have exited
}
if (!$current_User->check_status('can_view_contacts')) {
// user is logged in, but his status doesn't allow to view contacts
if ($current_User->check_status('can_be_validated')) {
// user is logged in but his/her account was not activated yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can manage your contacts. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
// Redirect to the blog url for users without messaging permission
$Messages->add('You are not allowed to view Contacts!');
$blogurl = $Blog->gen_blogurl();
// If it was a front page request or the front page is set to display 'contacts' then we must not redirect to the front page because it is forbidden for the current User
$redirect_to = is_front_page() || $Blog->get_setting('front_disp') == 'contacts' ? url_add_param($blogurl, 'disp=403', '&') : $blogurl;
header_redirect($redirect_to, 302);
}
if (has_cross_country_restriction('any') && empty($current_User->ctry_ID)) {
// User may browse/contact other users only from the same country
$Messages->add(T_('Please specify your country before attempting to contact other users.'));
header_redirect(get_user_profile_url());
}
// Get action parameter from request:
$action = param_action();
if (!$current_User->check_perm('perm_messaging', 'reply')) {
// Redirect to the blog url for users without messaging permission
$Messages->add('You are not allowed to view Contacts!');
$blogurl = $Blog->gen_blogurl();
// If it was a front page request or the front page is set to display 'contacts' then we must not redirect to the front page because it is forbidden for the current User
$redirect_to = is_front_page() || $Blog->get_setting('front_disp') == 'contacts' ? url_add_param($blogurl, 'disp=403', '&') : $blogurl;
header_redirect($redirect_to, 302);
// will have exited
}
switch ($action) {
case 'add_user':
// Add user to contacts list
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$user_ID = param('user_ID', 'integer', 0);
if ($user_ID > 0) {
// Add user to contacts
if (create_contacts_user($user_ID)) {
// Add user to the group
$group_ID = param('group_ID', 'string', '');
if ($result = create_contacts_group_users($group_ID, $user_ID, 'group_ID_combo')) {
// User has been added to the group
$Messages->add(sprintf(T_('User has been added to the «%s» group.'), $result['group_name']), 'success');
} else {
// User has been added ONLY to the contacts list
$Messages->add('User has been added to your contacts.', 'success');
}
}
header_redirect($Blog->get('userurl', array('url_suffix' => 'user_ID=' . $user_ID, 'glue' => '&')));
}
break;
case 'unblock':
// Unblock user
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$user_ID = param('user_ID', 'integer', 0);
if ($user_ID > 0) {
set_contact_blocked($user_ID, 0);
$Messages->add(T_('Contact was unblocked.'), 'success');
}
break;
case 'remove_user':
// Remove user from contacts group
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$view = param('view', 'string', 'profile');
$user_ID = param('user_ID', 'integer', 0);
$group_ID = param('group_ID', 'integer', 0);
if ($user_ID > 0 && $group_ID > 0) {
// Remove user from selected group
if (remove_contacts_group_user($group_ID, $user_ID)) {
// User has been removed from the group
if ($view == 'contacts') {
// Redirect to the contacts list
header_redirect($Blog->get('contactsurl', array('glue' => '&')));
} else {
// Redirect to the user profile page
header_redirect($Blog->get('userurl', array('url_suffix' => 'user_ID=' . $user_ID, 'glue' => '&')));
}
}
}
break;
case 'add_group':
// Add users to the group
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$group = param('group', 'string', '');
$users = param('users', 'string', '');
if ($result = create_contacts_group_users($group, $users)) {
// Users have been added to the group
$Messages->add(sprintf(T_('%d contacts have been added to the «%s» group.'), $result['count_users'], $result['group_name']), 'success');
$redirect_to = $Blog->get('contactsurl', array('glue' => '&'));
$item_ID = param('item_ID', 'integer', 0);
if ($item_ID > 0) {
$redirect_to = url_add_param($redirect_to, 'item_ID=' . $item_ID, '&');
}
header_redirect($redirect_to);
}
break;
case 'rename_group':
// Rename the group
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$group_ID = param('group_ID', 'integer', true);
if (rename_contacts_group($group_ID)) {
$item_ID = param('item_ID', 'integer', 0);
$redirect_to = url_add_param($Blog->get('contactsurl', array('glue' => '&')), 'g=' . $group_ID, '&');
if ($item_ID > 0) {
$redirect_to = url_add_param($redirect_to, 'item_ID=' . $item_ID, '&');
}
$Messages->add(T_('The group has been renamed.'), 'success');
header_redirect($redirect_to);
}
break;
case 'delete_group':
// Delete the group
// Check that this action request is not a CSRF hacked request:
$Session->assert_received_crumb('messaging_contacts');
$group_ID = param('group_ID', 'integer', true);
if (delete_contacts_group($group_ID)) {
$item_ID = param('item_ID', 'integer', 0);
$redirect_to = $Blog->get('contactsurl', array('glue' => '&'));
if ($item_ID > 0) {
$redirect_to = url_add_param($redirect_to, 'item_ID=' . $item_ID, '&');
}
$Messages->add(T_('The group has been deleted.'), 'success');
header_redirect($redirect_to);
}
break;
}
modules_call_method('switch_contacts_actions', array('action' => $action));
break;
case 'threads':
// Actions ONLY for disp=threads
if (!is_logged_in()) {
// Redirect to the login page for anonymous users
$Messages->add(T_('You must log in to read your messages.'));
header_redirect(get_login_url('cannot see messages'), 302);
// will have exited
}
if (!$current_User->check_status('can_view_threads')) {
// user status does not allow to view threads
if ($current_User->check_status('can_be_validated')) {
// user is logged in but his/her account is not activate yet
$Messages->add(T_('You must activate your account before you can read & send messages. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
$Messages->add('You are not allowed to view Messages!');
$blogurl = $Blog->gen_blogurl();
// If it was a front page request or the front page is set to display 'threads' then we must not redirect to the front page because it is forbidden for the current User
$redirect_to = is_front_page() || $Blog->get_setting('front_disp') == 'threads' ? url_add_param($blogurl, 'disp=404', '&') : $blogurl;
header_redirect($redirect_to, 302);
// will have exited
}
if (!$current_User->check_perm('perm_messaging', 'reply')) {
// Redirect to the blog url for users without messaging permission
$Messages->add('You are not allowed to view Messages!');
$blogurl = $Blog->gen_blogurl();
// If it was a front page request or the front page is set to display 'threads' then we must not redirect to the front page because it is forbidden for the current User
$redirect_to = is_front_page() || $Blog->get_setting('front_disp') == 'threads' ? url_add_param($blogurl, 'disp=403', '&') : $blogurl;
header_redirect($redirect_to, 302);
// will have exited
}
$action = param('action', 'string', 'view');
if ($action == 'new') {
// Before new message form is displayed ...
if (has_cross_country_restriction('contact') && empty($current_User->ctry_ID)) {
// Cross country contact restriction is enabled, but user country is not set yet
$Messages->add(T_('Please specify your country before attempting to contact other users.'));
header_redirect(get_user_profile_url());
} elseif (check_create_thread_limit(true)) {
// don't allow to create new thread, because the new thread limit was already reached
set_param('action', 'view');
}
}
// Load classes
load_class('messaging/model/_thread.class.php', 'Thread');
load_class('messaging/model/_message.class.php', 'Message');
// Get action parameter from request:
$action = param_action('view');
switch ($action) {
case 'new':
// Check permission:
$current_User->check_perm('perm_messaging', 'reply', true);
global $edited_Thread, $edited_Message;
$edited_Thread = new Thread();
$edited_Message = new Message();
$edited_Message->Thread =& $edited_Thread;
modules_call_method('update_new_thread', array('Thread' => &$edited_Thread));
if (($unsaved_message_params = get_message_params_from_session()) !== NULL) {
// set Message and Thread saved params from Session
$edited_Message->text = $unsaved_message_params['message'];
$edited_Message->original_text = $unsaved_message_params['message_original'];
$edited_Message->set_renderers($unsaved_message_params['renderers']);
$edited_Thread->title = $unsaved_message_params['subject'];
$edited_Thread->recipients = $unsaved_message_params['thrd_recipients'];
$edited_Message->Thread = $edited_Thread;
global $thrd_recipients_array, $thrdtype, $action, $creating_success;
$thrd_recipients_array = $unsaved_message_params['thrd_recipients_array'];
$thrdtype = $unsaved_message_params['thrdtype'];
$action = $unsaved_message_params['action'];
$creating_success = !empty($unsaved_message_params['creating_success']) ? $unsaved_message_params['creating_success'] : false;
} else {
if (empty($edited_Thread->recipients)) {
$edited_Thread->recipients = param('thrd_recipients', 'string', '');
}
if (empty($edited_Thread->title)) {
$edited_Thread->title = param('subject', 'string', '');
}
}
break;
default:
// Check permission:
$current_User->check_perm('perm_messaging', 'reply', true);
break;
}
break;
}
// Actions for disp = messages, contacts, threads:
if (($msg_Blog =& get_setting_Blog('msg_blog_ID')) && $Blog->ID != $msg_Blog->ID) {
// Redirect to special blog for messaging actions if it is defined in general settings
$blog_url_params = array('glue' => '&');
if (!empty($thrd_ID)) {
// Don't forget the important param on redirect
$blog_url_params['url_suffix'] = 'thrd_ID=' . $thrd_ID;
}
header_redirect($msg_Blog->get($disp . 'url', $blog_url_params));
}
// just in case some robot would be logged in:
$seo_page_type = 'Messaging module';
$robots_index = false;
// Display messages depending on user email status
display_user_email_status_message();
break;
case 'login':
global $Plugins, $transmit_hashed_password;
if (is_logged_in()) {
// User is already logged in
if ($current_User->check_status('can_be_validated')) {
// account is not active yet, redirect to the account activation page
$Messages->add(T_('You are logged in but your account is not activated. You will find instructions about activating your account below:'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
// User is already logged in, redirect to "redirect_to" page
$Messages->add(T_('You are already logged in.'), 'note');
$redirect_to = param('redirect_to', 'url', NULL);
if (empty($redirect_to)) {
// If empty redirect to referer page
$redirect_to = '';
}
header_redirect($redirect_to, 302);
// will have exited
}
if (($login_Blog =& get_setting_Blog('login_blog_ID')) && $Blog->ID != $login_Blog->ID) {
// Redirect to special blog for login/register actions if it is defined in general settings
header_redirect($login_Blog->get('loginurl', array('glue' => '&')));
}
$seo_page_type = 'Login form';
$robots_index = false;
break;
case 'register':
if (is_logged_in()) {
// If user is logged in the register form should not be displayed. In this case redirect to the blog home page.
$Messages->add(T_('You are already logged in.'), 'note');
header_redirect($Blog->gen_blogurl(), false);
}
if (($login_Blog =& get_setting_Blog('login_blog_ID')) && $Blog->ID != $login_Blog->ID) {
// Redirect to special blog for login/register actions if it is defined in general settings
header_redirect($login_Blog->get('registerurl', array('glue' => '&')));
}
$seo_page_type = 'Register form';
$robots_index = false;
// Check invitation code if it exists and registration is enabled
global $display_invitation;
$display_invitation = check_invitation_code();
break;
case 'lostpassword':
if (is_logged_in()) {
// If user is logged in the lost password form should not be displayed. In this case redirect to the blog home page.
$Messages->add(T_('You are already logged in.'), 'note');
header_redirect($Blog->gen_blogurl(), false);
}
if (($login_Blog =& get_setting_Blog('login_blog_ID')) && $Blog->ID != $login_Blog->ID) {
// Redirect to special blog for login/register actions if it is defined in general settings
header_redirect($login_Blog->get('lostpasswordurl', array('glue' => '&')));
}
$seo_page_type = 'Lost password form';
$robots_index = false;
break;
case 'activateinfo':
if (!is_logged_in()) {
// Redirect to the login page for anonymous users
$Messages->add(T_('You must log in before you can activate your account.'));
header_redirect(get_login_url('cannot see messages'), 302);
// will have exited
}
if (!$current_User->check_status('can_be_validated')) {
// don't display activateinfo screen
$after_email_validation = $Settings->get('after_email_validation');
if ($after_email_validation == 'return_to_original') {
// we want to return to original page after account activation
// check if Session 'validatemail.redirect_to' param is still set
$redirect_to = $Session->get('core.validatemail.redirect_to');
if (empty($redirect_to)) {
// Session param is empty try to get general redirect_to param
$redirect_to = param('redirect_to', 'url', '');
} else {
// cleanup validateemail.redirect_to param from session
$Session->delete('core.validatemail.redirect_to');
}
} else {
// go to after email validation url which is set in the user general settings form
$redirect_to = $after_email_validation;
}
if (empty($redirect_to) || preg_match('#disp=activateinfo#', $redirect_to)) {
// redirect_to is pointing to the activate info display or is empty
// redirect to referer page
$redirect_to = '';
}
if ($current_User->check_status('is_validated')) {
$Messages->add(T_('Your account has already been activated.'));
}
header_redirect($redirect_to, 302);
// will have exited
}
if (($login_Blog =& get_setting_Blog('login_blog_ID')) && $Blog->ID != $login_Blog->ID) {
// Redirect to special blog for login/register actions if it is defined in general settings
header_redirect($login_Blog->get('activateinfourl', array('glue' => '&')));
}
break;
case 'profile':
case 'avatar':
$action = param_action();
if ($action == 'crop' && is_logged_in()) {
// Check data for crop action:
global $current_User, $cropped_File;
$file_ID = param('file_ID', 'integer');
if (!($cropped_File = $current_User->get_File_by_ID($file_ID, $error_code))) {
// Current user cannot crop this file
set_param('action', '');
}
}
case 'pwdchange':
case 'userprefs':
case 'subs':
$seo_page_type = 'Special feature page';
if ($Blog->get_setting('special_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
// Display messages depending on user email status
display_user_email_status_message();
break;
case 'users':
if (!is_logged_in() && !$Settings->get('allow_anonymous_user_list')) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$Messages->add(T_('You must log in to view the user directory.'));
header_redirect(get_login_url('cannot see user'), 302);
// will have exited
}
if (is_logged_in() && !check_user_status('can_view_users')) {
// user status doesn't permit to view users list
if (check_user_status('can_be_validated')) {
// user is logged in but his/her account is not active yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can view the user directory. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
// set where to redirect
$error_redirect_to = empty($Blog) ? $baseurl : $Blog->gen_blogurl();
$Messages->add(T_('Your account status currently does not permit to view the user directory.'));
header_redirect($error_redirect_to, 302);
// will have exited
}
if (has_cross_country_restriction('users', 'list') && empty($current_User->ctry_ID)) {
// User may browse other users only from the same country
$Messages->add(T_('Please specify your country before attempting to contact other users.'));
header_redirect(get_user_profile_url());
}
$seo_page_type = 'Users list';
$robots_index = false;
break;
case 'user':
// get user_ID because we want it in redirect_to in case we need to ask for login.
$user_ID = param('user_ID', 'integer', '', true);
// set where to redirect in case of error
$error_redirect_to = empty($Blog) ? $baseurl : $Blog->gen_blogurl();
if (!is_logged_in()) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$user_available_by_group_level = true;
if (!empty($user_ID)) {
$UserCache =& get_UserCache();
if ($User =& $UserCache->get_by_ID($user_ID, false)) {
// If user exists we can check if the anonymous users have an access to view the user by group level limitation
$User->get_Group();
$user_available_by_group_level = $User->Group->level >= $Settings->get('allow_anonymous_user_level_min') && $User->Group->level <= $Settings->get('allow_anonymous_user_level_max');
}
}
if (!$Settings->get('allow_anonymous_user_profiles') || !$user_available_by_group_level || empty($user_ID)) {
// If this user is not available for anonymous users
$Messages->add(T_('You must log in to view this user profile.'));
header_redirect(get_login_url('cannot see user'), 302);
// will have exited
}
}
if (is_logged_in() && !check_user_status('can_view_user', $user_ID)) {
// user is logged in, but his/her status doesn't permit to view user profile
if (check_user_status('can_be_validated')) {
// user is logged in but his/her account is not active yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can view this user profile. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
$Messages->add(T_('Your account status currently does not permit to view this user profile.'));
header_redirect($error_redirect_to, 302);
// will have exited
}
if (!empty($user_ID)) {
$UserCache =& get_UserCache();
$User =& $UserCache->get_by_ID($user_ID, false);
if (empty($User)) {
$Messages->add(T_('The requested user does not exist!'));
header_redirect($error_redirect_to);
// will have exited
}
if ($User->check_status('is_closed')) {
$Messages->add(T_('The requested user account is closed!'));
header_redirect($error_redirect_to);
// will have exited
}
if (has_cross_country_restriction('any')) {
if (empty($current_User->ctry_ID)) {
// Current User country is not set
$Messages->add(T_('Please specify your country before attempting to contact other users.'));
header_redirect(get_user_profile_url());
// will have exited
}
if (has_cross_country_restriction('users', 'profile') && $current_User->ctry_ID !== $User->ctry_ID) {
// Current user country is different then edited user country and cross country user browsing is not enabled.
$Messages->add(T_('You don\'t have permission to view this user profile.'));
header_redirect(url_add_param($error_redirect_to, 'disp=403', '&'));
// will have exited
}
}
}
// Initialize users list from session cache in order to display prev/next links:
// It is used to navigate between users
load_class('users/model/_userlist.class.php', 'UserList');
global $UserList;
$UserList = new UserList();
$UserList->memorize = false;
$UserList->load_from_Request();
$seo_page_type = 'User display';
break;
case 'edit':
global $current_User, $post_ID;
// Post ID, go from $_GET when we edit a post from Front-office
// or from $_POST when we switch from Back-office
$post_ID = param('p', 'integer', empty($post_ID) ? 0 : $post_ID, true);
if (!is_logged_in()) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$redirect_to = url_add_param($Blog->gen_blogurl(), 'disp=edit');
$Messages->add(T_('You must log in to create & edit posts.'));
header_redirect(get_login_url('cannot edit posts', $redirect_to), 302);
// will have exited
}
if (!$current_User->check_status('can_edit_post')) {
if ($current_User->check_status('can_be_validated')) {
// user is logged in but his/her account was not activated yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can create & edit posts. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
// Redirect to the blog url for users without messaging permission
$Messages->add(T_('You are not allowed to create & edit posts!'));
header_redirect($Blog->gen_blogurl(), 302);
}
// user logged in and the account was activated
check_item_perm_edit($post_ID);
if (!blog_has_cats($Blog->ID)) {
// No categories are in this blog
$error_message = T_('Since this blog has no categories, you cannot post into it.');
if ($current_User->check_perm('blog_cats', 'edit', false, $Blog->ID)) {
// If current user has a permission to create a category
global $admin_url;
$error_message .= ' ' . sprintf(T_('You must <a %s>create categories</a> first.'), 'href="' . $admin_url . '?ctrl=chapters&blog=' . $Blog->ID . '"');
}
$Messages->add($error_message, 'error');
header_redirect($Blog->gen_blogurl(), 302);
}
// Prepare the 'In-skin editing':
init_inskin_editing();
break;
case 'edit_comment':
global $current_User, $edited_Comment, $comment_Item, $Item, $comment_title, $comment_content, $display_params;
// comment ID
$comment_ID = param('c', 'integer', 0, true);
if (!is_logged_in()) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$redirect_to = url_add_param($Blog->gen_blogurl(), 'disp=edit_comment');
$Messages->add(T_('You must log in to edit comments.'));
header_redirect(get_login_url('cannot edit comments', $redirect_to), 302);
// will have exited
}
if (!$current_User->check_status('can_edit_comment')) {
if ($current_User->check_status('can_be_validated')) {
// user is logged in but his/her account was not activated yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can edit comments. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
// Redirect to the blog url for users without messaging permission
$Messages->add('You are not allowed to edit comments!');
header_redirect($Blog->gen_blogurl(), 302);
}
if (empty($comment_ID)) {
// Can't edit a not exisiting comment
$Messages->add('Invalid comment edit URL!');
global $disp;
$disp = 404;
break;
}
$CommentCache =& get_CommentCache();
$edited_Comment = $CommentCache->get_by_ID($comment_ID);
$comment_Item = $edited_Comment->get_Item();
if (!$current_User->check_perm('comment!CURSTATUS', 'edit', false, $edited_Comment)) {
// If User has no permission to edit comments with this comment status:
$Messages->add('You are not allowed to edit the previously selected comment!');
header_redirect($Blog->gen_blogurl(), 302);
}
$comment_title = '';
$comment_content = htmlspecialchars_decode($edited_Comment->content);
// Format content for editing, if we were not already in editing...
$Plugins_admin =& get_Plugins_admin();
$comment_Item->load_Blog();
$params = array('object_type' => 'Comment', 'object_Blog' => &$comment_Item->Blog);
$Plugins_admin->unfilter_contents($comment_title, $comment_content, $edited_Comment->get_renderers_validated(), $params);
$Item = $comment_Item;
$display_params = array();
break;
case 'useritems':
case 'usercomments':
global $display_params, $viewed_User;
// get user_ID because we want it in redirect_to in case we need to ask for login.
$user_ID = param('user_ID', 'integer', true, true);
if (empty($user_ID)) {
bad_request_die(sprintf(T_('Parameter «%s» is required!'), 'user_ID'));
}
// set where to redirect in case of error
$error_redirect_to = empty($Blog) ? $baseurl : $Blog->gen_blogurl();
if (!is_logged_in()) {
// Redirect to the login page if not logged in and allow anonymous user setting is OFF
$Messages->add(T_('You must log in to view this user profile.'));
header_redirect(get_login_url('cannot see user'), 302);
// will have exited
}
if (is_logged_in() && !check_user_status('can_view_user', $user_ID)) {
// user is logged in, but his/her status doesn't permit to view user profile
if (check_user_status('can_be_validated')) {
// user is logged in but his/her account is not active yet
// Redirect to the account activation page
$Messages->add(T_('You must activate your account before you can view this user profile. <b>See below:</b>'));
header_redirect(get_activate_info_url(), 302);
// will have exited
}
$Messages->add(T_('Your account status currently does not permit to view this user profile.'));
header_redirect($error_redirect_to, 302);
// will have exited
}
if (!empty($user_ID)) {
$UserCache =& get_UserCache();
$viewed_User = $UserCache->get_by_ID($user_ID, false);
if (empty($viewed_User)) {
$Messages->add(T_('The requested user does not exist!'));
header_redirect($error_redirect_to);
// will have exited
}
if ($viewed_User->check_status('is_closed')) {
$Messages->add(T_('The requested user account is closed!'));
header_redirect($error_redirect_to);
// will have exited
}
}
$display_params = !empty($Skin) ? $Skin->get_template('Results') : NULL;
if ($disp == 'useritems') {
// Init items list
global $user_ItemList;
$useritems_Blog = NULL;
$user_ItemList = new ItemList2($useritems_Blog, NULL, NULL, NULL, 'ItemCache', 'useritems_');
$user_ItemList->load_from_Request();
$user_ItemList->set_filters(array('authors' => $user_ID), true, true);
$user_ItemList->query();
} else {
// Init comments list
global $user_CommentList;
$user_CommentList = new CommentList2(NULL, NULL, 'CommentCache', 'usercmts_');
$user_CommentList->load_from_Request();
$user_CommentList->set_filters(array('author_IDs' => $user_ID), true, true);
$user_CommentList->query();
}
break;
case 'comments':
if (!$Blog->get_setting('comments_latest')) {
// If latest comments page is disabled - Display 404 page with error message
$Messages->add(T_('This feature is disabled.'), 'error');
global $disp;
$disp = '404';
}
break;
case 'closeaccount':
global $current_User;
if (!$Settings->get('account_close_enabled') || is_logged_in() && $current_User->check_perm('users', 'edit', false) || !is_logged_in() && !$Session->get('account_closing_success')) {
// If an account closing page is disabled - Display 404 page with error message
// Don't allow admins close own accounts from front office
// Don't display this message for not logged in users, except of one case to display a bye message after account closing
global $disp;
$disp = '404';
} elseif ($Session->get('account_closing_success')) {
// User has closed the account
global $account_closing_success;
$account_closing_success = $Session->get('account_closing_success');
// Unset this temp session var to don't display the message twice
$Session->delete('account_closing_success');
if (is_logged_in()) {
// log out current User
logout();
}
}
break;
case 'tags':
$seo_page_type = 'Tags';
if ($Blog->get_setting($disp . '_noindex')) {
// We prefer robots not to index these pages:
$robots_index = false;
}
break;
}
$Debuglog->add('skin_init: $disp=' . $disp . ' / $disp_detail=' . $disp_detail . ' / $seo_page_type=' . $seo_page_type, 'skins');
// Make this switch block special only for 404 page
switch ($disp) {
case '404':
// We have a 404 unresolved content error
// How do we want do deal with it?
skin_404_header();
// This MAY or MAY not have exited -- will exit on 30x redirect, otherwise will return here.
// Just in case some dumb robot needs extra directives on this:
$robots_index = false;
break;
}
global $Hit, $check_browser_version;
if ($check_browser_version && $Hit->get_browser_version() > 0 && $Hit->is_IE(9, '<')) {
// Display info message if browser IE < 9 version and it is allowed by config var:
global $debug;
$Messages->add(T_('Your web browser is too old. For this site to work correctly, we recommend you use a more recent browser.'), 'note');
if ($debug) {
$Messages->add('User Agent: ' . $Hit->get_user_agent(), 'note');
}
}
// dummy var for backward compatibility with versions < 2.4.1 -- prevents "Undefined variable"
global $global_Cache, $credit_links;
$credit_links = $global_Cache->get('creds');
$Timer->pause('skin_init');
// Check if user is logged in with a not active account, and display an error message if required
check_allow_disp($disp);
// initialize Blog enabled widgets, before displaying anything
init_blog_widgets($Blog->ID);
// Initialize displaying....
$Timer->start('Skin:display_init');
$Skin->display_init();
$Timer->pause('Skin:display_init');
// Send default headers:
// See comments inside of this function:
headers_content_mightcache('text/html');
// In most situations, you do NOT want to cache dynamic content!
// Never allow Messages to be cached!
if ($Messages->count() && !empty($PageCache)) {
// Abort PageCache collect
$PageCache->abort_collect();
}
}
/**
* Show comments awaiting moderation
*
* @todo fp> move this to a more appropriate place
*
* @param integer blog ID
* @param object CommentList
* @param integer limit
* @param array comment IDs to exclude
* @param boolean TRUE - for script
*/
function show_comments_awaiting_moderation($blog_ID, $CommentList = NULL, $limit = 5, $comment_IDs = array(), $script = true)
{
global $current_User, $dispatcher;
if (is_null($CommentList)) {
// Inititalize CommentList
$BlogCache =& get_BlogCache();
$Blog =& $BlogCache->get_by_ID($blog_ID, false, false);
$CommentList = new CommentList2($Blog, NULL, 'CommentCache', 'cmnt_fullview_', 'fullview');
$exlude_ID_list = NULL;
if (!empty($comment_IDs)) {
$exlude_ID_list = '-' . implode(",", $comment_IDs);
}
$moderation_statuses = explode(',', $Blog->get_setting('moderation_statuses'));
// Filter list:
$CommentList->set_filters(array('types' => array('comment', 'trackback', 'pingback'), 'statuses' => $moderation_statuses, 'comment_ID_list' => $exlude_ID_list, 'post_statuses' => array('published', 'community', 'protected'), 'order' => 'DESC', 'comments' => $limit));
// Get ready for display (runs the query):
$CommentList->display_init();
}
$new_comment_IDs = array();
while ($Comment =& $CommentList->get_next()) {
// Loop through comments:
$new_comment_IDs[] = $Comment->ID;
echo '<div id="comment_' . $Comment->ID . '" class="dashboard_post dashboard_post_' . ($CommentList->current_idx % 2 ? 'even' : 'odd') . '">';
echo '<div class="floatright"><span class="note status_' . $Comment->status . '"><span>';
$Comment->status();
echo '</span></span></div>';
if ($Comment->status !== 'draft' || $Comment->author_user_ID == $current_User->ID) {
// Display Comment permalink icon
echo '<span style="float: left; padding-right: 5px; margin-top: 4px">' . $Comment->get_permanent_link('#icon#') . '</span>';
}
echo '<h3 class="dashboard_post_title">';
echo $Comment->get_title(array('author_format' => '<strong>%s</strong>', 'link_text' => 'avatar', 'thumb_size' => 'crop-top-15x15'));
$comment_Item =& $Comment->get_Item();
echo ' ' . T_('in response to') . ' <a href="?ctrl=items&blog=' . $comment_Item->get_blog_ID() . '&p=' . $comment_Item->ID . '"><strong>' . $comment_Item->dget('title') . '</strong></a>';
echo '</h3>';
echo '<div class="notes">';
$Comment->rating(array('before' => '<div class="dashboard_rating">', 'after' => '</div> • '));
$Comment->date();
$Comment->author_url_with_actions('', true);
$Comment->author_email('', ' • Email: <span class="bEmail">', '</span> • ');
$Comment->author_ip('IP: <span class="bIP">', '</span> ', true);
$Comment->ip_country();
$Comment->spam_karma(' • ' . T_('Spam Karma') . ': %s%', ' • ' . T_('No Spam Karma'));
echo '</div>';
echo '<div class="small">';
$Comment->content('htmlbody', true);
echo '</div>';
echo '<div class="dashboard_action_area">';
// Display edit button if current user has the rights:
$redirect_to = NULL;
if (!$script) {
// Set page, where to redirect, because the function is called from async.php (regenerate_url gives => async.php)
global $admin_url;
$redirect_to = $admin_url . '?ctrl=dashboard&blog=' . $blog_ID;
}
echo '<div class="floatleft">';
$Comment->edit_link(' ', ' ', get_icon('edit'), '#', 'roundbutton', '&', true, $redirect_to);
echo '<span class="roundbutton_group">';
// Display publish NOW button if current user has the rights:
$Comment->publish_link('', '', '#', '#', 'roundbutton_text', '&', true, true);
// Display deprecate button if current user has the rights:
$Comment->deprecate_link('', '', '#', '#', 'roundbutton_text', '&', true, true);
// Display delete button if current user has the rights:
$Comment->delete_link('', '', '#', '#', 'roundbutton_text', false, '&', true, true);
echo '</span>';
echo '</div>';
// Display Spam Voting system
$Comment->vote_spam('', '', '&', true, true);
echo '<div class="clear"></div>';
echo '</div>';
echo '</div>';
}
if (!$script) {
echo '<input type="hidden" id="new_badge" value="' . $CommentList->total_rows . '"/>';
}
}
