/
getmessage.php
97 lines (69 loc) · 2.97 KB
/
getmessage.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
<?php
/**
* Created by PhpStorm.
* User: hze
* Date: 12/23/15
* Time: 11:50 PM
*/
session_start();
error_reporting(0);
include("connection.php");
include("DataRetrieval.php");
$success='';
$error='';
$getallmessage = "SELECT MessageId, Subject, Title, Name, PostTime, PostId, Data FROM Message,User WHERE User.UserId=Message.PostId";
$result = mysqli_query($link, $getallmessage);
if(isset($_POST['submit'])&&$_POST['submit']=='Hood'){
$success='';
$error='';
$result = showHoodMessage($link,$_SESSION['blockid']);
// $_SESSION['messagefilter']='hood';
}
if(isset($_POST['submit'])&&$_POST['submit']=='Block'){
$success='';
$error='';
//$_SESSION['messagefilter']='block';
$result = showBlockMessage($link,$_SESSION['blockid']);
}
if(isset($_POST['submit'])&&$_POST['submit']=='Friend'){
$success='';
$error='';
//$_SESSION['messagefilter']='friend';
$result = showFriendMessage($link,$_SESSION['id']);
}
if(isset($_POST['submit'])&&$_POST['submit']=="Search"){
$getallmessagesearch = "SELECT MessageId, Subject, Title, Name, PostTime, PostId, Data FROM Message,User WHERE User.UserId=Message.PostId and ( Title LIKE '%".$_POST['search']."%' OR Subject LIKE '%".$_POST['search']."%' OR Data LIKE '%".$_POST['search']."%')";
$result = mysqli_query($link, $getallmessagesearch);
}
if(isset($_POST['submit'])&& $_POST['submit']=="Post"){
date_default_timezone_set("America/New_York");
$timenow = date("Y-m-d H:i:s");
//
// $newmessage="INSERT INTO `Message`(`Subject`, `Title`,
// `Data`,`PostTime`,`PostId`) VALUES ('".$_POST['newsubject']."',
// '".$_POST['newtitle']."','".$_POST['newcontent']."','".$timenow."',
// '".$_SESSION['id']."')";
// $newmessage="INSERT INTO `ProjectTest`.`Message` (`Subject`, `Title`, `PostId`, `PostTime`) VALUES ('ww', 'ww', '1', '2015-12-11 23:34:20')";
if($_POST['sendto']=='hood'){
insertThread($link,$_POST['newcontent'],'hood', getHoodId($link,$_SESSION['blockid']));
replyThread($link,$_SESSION['id'],getMaxThread($link),$_POST['newtitle'],$_POST['newsubject'],$_POST['newcontent'],null,null);
}
if($_POST['sendto']=='block'){
insertThread($link,$_POST['newcontent'],'block', $_SESSION['blockid']);
replyThread($link,$_SESSION['id'],getMaxThread($link),$_POST['newtitle'],$_POST['newsubject'],$_POST['newcontent'],null,null);
}
}
if(isset($_POST['submit'])&& $_POST['submit']=="Reply"){
date_default_timezone_set("America/New_York");
$timenow = date("Y-m-d H:i:s");
$replymessage="INSERT INTO `Message`(`Subject`, `Title`,
`Data`,`PostTime`,`PostId`,`ReplyId`) VALUES ('".$_POST['replysubject']."',
'".$_POST['replytitle']."','".$_POST['replycontent']."','".$timenow."',
'".$_SESSION['id']."',".$_POST['sendto'].")";
if(mysqli_query($link,$replymessage)){
$success = "Success";
}else{
$error = "Failed";
}
}
?>