if (isset($_POST['submit']) && $_SESSION['member_id']) {
// post a comment
$_POST['body'] = $addslashes(trim($_POST['body']));
$_POST['private'] = abs($_POST['private']);
if ($_POST['body'] == '') {
$msg->addError(array('EMPTY_FIELDS', _AT('comments')));
}
if (!$msg->containsErrors()) {
$sql = "INSERT INTO %sblog_posts_comments VALUES (NULL, %d, %d, NOW(), %d, '%s')";
$result = queryDB($sql, array(TABLE_PREFIX, $id, $_SESSION['member_id'], $_POST['private'], $_POST['body']));
$comments_affected_rows = $result;
if (!isset($sub)) {
require_once AT_INCLUDE_PATH . 'classes/subscribe.class.php';
$sub = new subscription();
}
$sub->send_mail('blogcomment', $owner_id, at_insert_id());
if ($comments_affected_rows == 1) {
$sql = "UPDATE %sblog_posts SET num_comments=num_comments+1, date=date WHERE post_id=%d";
queryDB($sql, array(TABLE_PREFIX, $id));
}
$msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');
header('Location: ' . url_rewrite('mods/_standard/blogs/post.php?ot=' . $owner_type . SEP . 'oid=' . $owner_id . SEP . 'id=' . $id, AT_PRETTY_URL_IS_HEADER));
exit;
}
}
if (count($post_row) == 0) {
header('Location: ' . url_rewrite('mods/_standard/blogs/view.php?ot=' . $owner_type . SEP . 'oid=' . $owner_id));
exit;
}
$_pages['mods/_standard/blogs/post.php']['title'] = $post_row['title'] . ($post_row['private'] ? ' - ' . _AT('private') : '');
$_pages['mods/_standard/blogs/post.php']['parent'] = 'mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $owner_id;
} else {
if (isset($_POST['submit'])) {
$_POST['title'] = $addslashes(trim($_POST['title']));
$_POST['body'] = $addslashes(trim($_POST['body']));
if ($_POST['body'] == '') {
$msg->addError(array('EMPTY_FIELDS', _AT('body')));
}
if (!$msg->containsErrors()) {
$_POST['private'] = abs($_POST['private']);
$sql = "INSERT INTO " . TABLE_PREFIX . "blog_posts VALUES (NULL, {$_SESSION['member_id']}, " . BLOGS_GROUP . ", {$_POST['oid']}, {$_POST['private']}, NOW(), 0, '{$_POST['title']}', '{$_POST['body']}')";
mysql_query($sql, $db);
if (!isset($sub)) {
require_once AT_INCLUDE_PATH . 'classes/subscribe.class.php';
$sub = new subscription();
}
$sub->send_mail('blog', $_POST['oid'], mysql_insert_id());
$msg->addFeedback('POST_ADDED_SUCCESSFULLY');
header('Location: ' . url_rewrite('mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_POST['oid'], AT_PRETTY_URL_IS_HEADER));
exit;
}
}
}
// this will also be dynamic as the parent page changes
$_pages['mods/_standard/blogs/add_post.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid']]['title_var'] = 'add';
$_pages['mods/_standard/blogs/add_post.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid']]['parent'] = 'mods/_standard/blogs/view.php';
$_pages['mods/_standard/blogs/add_post.php']['title_var'] = 'add';
$_pages['mods/_standard/blogs/add_post.php']['parent'] = 'mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid'];
$_pages['mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid']]['title'] = blogs_get_blog_name(BLOGS_GROUP, $_REQUEST['oid']);
$_pages['mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid']]['parent'] = 'mods/_standard/blogs/index.php';
$_pages['mods/_standard/blogs/view.php?ot=' . BLOGS_GROUP . SEP . 'oid=' . $_REQUEST['oid']]['children'] = array('mods/_standard/blogs/add_post.php');
$onload = 'document.form.title.focus();';
