ORDER BY date DESC
LIMIT ' . $conf['guestbook']['nb_comment_page'] . ' OFFSET ' . $page['start'] . '
;';
$result = pwg_query($query);
while ($row = pwg_db_fetch_assoc($result)) {
if (!empty($row['author'])) {
$author = $row['author'];
if ($author == 'guest') {
$author = l10n('guest');
}
} else {
$author = stripslashes($row['username']);
}
$tpl_comment = array('ID' => $row['id'], 'AUTHOR' => trigger_change('render_comment_author', $author), 'DATE' => format_date($row['date'], true), 'CONTENT' => trigger_change('render_comment_content', $row['content'], 'guestbook'), 'WEBSITE' => $row['website']);
if ($conf['guestbook']['activate_rating']) {
$tpl_comment['STARS'] = get_stars($row['rate'], get_root_url() . GUESTBOOK_PATH . 'template/jquery.raty/');
}
if (is_admin() and !empty($row['email'])) {
$tpl_comment['EMAIL'] = $row['email'];
}
if (can_manage_comment('delete', $row['author_id'])) {
$tpl_comment['U_DELETE'] = add_url_params($url_self, array('action' => 'delete_comment', 'comment_to_delete' => $row['id'], 'pwg_token' => get_pwg_token()));
}
if (can_manage_comment('edit', $row['author_id'])) {
$tpl_comment['U_EDIT'] = add_url_params($url_self, array('action' => 'edit_comment', 'comment_to_edit' => $row['id']));
if (isset($edit_comment) and $row['id'] == $edit_comment) {
$tpl_comment['IN_EDIT'] = true;
$tpl_comment['KEY'] = get_ephemeral_key(2);
$tpl_comment['CONTENT'] = $row['content'];
$tpl_comment['PWG_TOKEN'] = get_pwg_token();
$tpl_comment['U_CANCEL'] = $url_self;
/**
* holt alle sterne zu gegebenen constellationen
*
* @param $cids
* @return
*/
function get_svg_stars_of_cids($cids, &$fleet_symbols, &$fleet_routes, &$scans, &$systems)
{
global $uid;
global $map_info;
$closest_stars = get_stars($cids);
$system_user_type_defs = "<defs>";
$system_user_type = "<g pointer-events=\"none\">";
if (is_array($closest_stars)) {
$scans = "<g pointer-events=\"none\" id=\"scanradien\">";
$system_names = "<g style=\"font-size:7pt;fill:#A5D9FF;stroke:none;font-family:verdana,arial;letter-spacing:1pt;\" pointer-events=\"none\">";
$systems = "<g onclick=\"clickOnStar(evt);\" onmouseover=\"mouseoverStar(evt);\" onmouseout=\"mouseoutStar(evt);\">";
foreach ($closest_stars as $sid => $its_star) {
if ($its_star["userstypes"]) {
$system_user_type_defs .= $its_star["userstypes"];
$system_user_type .= "<use xlink:href=\"#user_in_system_" . $sid . "\" x=\"" . $its_star[x] . "\" y=\"" . ($its_star[y] + 25) . "\"/>";
// scanradien, wenn ein system ein system_user_type hat, ist jemand in dem system, können also scanradien vorhanden sein
if ($map_info->is_own_star($sid)) {
$scanrange = $map_info->get_systemscanradius($sid);
$scans .= draw_scancircles($its_star[x], $its_star[y], $scanrange);
}
}
$systems .= draw_star($its_star["x"], $its_star["y"], $sid, $its_star["scan"]);
$system_names .= draw_system_name($sid, $its_star["scan"], $its_star["name"], $its_star["x"], $its_star["y"]);
//___________________________ System Flotten
if ($its_star["scan"] == SYSTEM_VISIBLE) {
$system_fleets = $map_info->get_fids_by_sid($sid);
if (is_array($system_fleets)) {
$fleet_symbols .= draw_fleets($its_star[x], $its_star[y], $system_fleets, $sid);
$fleet_routes .= get_fleet_routes($system_fleets);
}
$fleet_scans .= draw_fleet_scancircles($its_star[x], $its_star[y], $sid);
}
//___________________________ Spezial Symbole
$special_symbols = $map_info->get_special_buildings_by_sid($sid, 1);
if (is_array($special_symbols)) {
$specials .= "<g id=\"specialSymbols_" . $sid . "\" pointer-events=\"none\">";
$specials .= draw_special_symbols($its_star[x], $its_star[y], $special_symbols, $sid);
$specials .= "<set attributeType=\"XML\" attributeName=\"display\" to=\"none\" begin=\"s" . $sid . ".mouseover\"/>";
$specials .= "<set attributeType=\"XML\" attributeName=\"display\" to=\"inherit\" begin=\"s" . $sid . ".mouseout\"/>";
$specials .= "</g>";
}
}
}
$system_user_type_defs .= "</defs>";
$system_user_type .= "</g>";
$system_names .= "</g>";
$systems .= "</g>";
$scans .= $fleet_scans;
$scans .= "</g>";
$systems = $system_user_type_defs . $system_user_type . $systems . $system_names . $specials;
}
function show_file($file_id, $user, $success = null)
{
global $LSP_URL, $DATA_DIR;
$dbh =& get_db();
$stmt = $dbh->prepare('SELECT licenses.name AS license, size, realname, filename, users.login, ' . 'categories.name AS category, subcategories.name AS subcategory,' . 'insert_date, update_date, description, downloads, files.id FROM files ' . 'INNER JOIN categories ON categories.id=files.category ' . 'INNER JOIN subcategories ON subcategories.id=files.subcategory ' . 'INNER JOIN users ON users.id=files.user_id ' . 'INNER JOIN licenses ON licenses.id=files.license_id ' . 'WHERE files.id=:file_id');
$stmt->bindParam(':file_id', $file_id);
$found = false;
if ($stmt->execute()) {
while ($object = $stmt->fetch(PDO::FETCH_ASSOC)) {
$title = array($object['category'], $object['subcategory'], get_file_url($file_id));
if ($success == null) {
echo '<div class="col-md-9">';
create_title($title);
} else {
if ($success === true) {
display_success("Updated successfully", $title);
echo '<div class="col-md-9">';
} else {
if ($success === false) {
display_error("Update failed.", $title);
echo '<div class="col-md-9">';
} else {
display_success("{$success}", $title);
}
}
}
echo '<table class="table table-striped">';
show_basic_file_info($object, false);
// Bump the download button under details block
$url = htmlentities('download_file.php?file=' . $object['id'] . '&name=' . $object['filename']);
echo '<tr><td><strong>Name:</strong> ' . $object['filename'];
if (is_image($url)) {
echo '<br><br><a href="' . $url . '"><img class="thumbnail" src="' . scale_image($DATA_DIR . $file_id, 300, parse_extension($url)) . '" alt=""></a>';
}
echo '</td><td class="lsp-file-info">';
echo '<a href="' . $url . '" id="downloadbtn" class="lsp-dl-btn btn btn-primary">';
echo '<span class="fa fa-download lsp-download"></span> Download</a>';
echo '</td></tr>';
echo '<tr><td colspan="2"><div class="well"><strong>Description:</strong><p>';
echo $object['description'] != '' ? parse_links(newline_to_br($object['description'], true)) : 'No description available.';
echo '</p></div></td></tr>';
echo '<tr><td colspan="2">';
echo '<nav id="lspnav" class="navbar navbar-default"><ul class="nav navbar-nav">';
$can_edit = $object['login'] == $user || is_admin(get_user_id($user));
$can_rate = !SESSION_EMPTY();
$rate_self = $object['login'] == $user;
global $LSP_URL;
create_toolbar_item('Comment', "{$LSP_URL}?comment=add&file={$file_id}", 'fa-comment', $can_rate);
create_toolbar_item('Edit', "{$LSP_URL}?content=update&file={$file_id}", 'fa-pencil', $can_edit);
create_toolbar_item('Delete', "{$LSP_URL}?content=delete&file={$file_id}", 'fa-trash', $can_edit);
$star_url = $LSP_URL . '?' . file_show_query_string() . '&rate=';
create_toolbar_item(get_stars($file_id, $star_url, $rate_self ? false : $can_rate), '', null, $can_rate, $rate_self);
echo '</ul></nav>';
echo '<strong>Comments:</strong>';
echo '</td></tr>';
get_comments($file_id);
echo '</table></div>';
$found = true;
break;
}
}
if (!$found) {
display_error('Invalid file: "' . sanitize($file_id) . '"');
}
$stmt = null;
$dbh = null;
}
// +-----------------------------------------------------------------------+
include GUESTBOOK_PATH . 'include/functions.inc.php';
$list = array();
$query = '
SELECT
c.id,
c.date,
c.author,
' . $conf['user_fields']['username'] . ' AS username,
c.content,
c.website,
c.email,
c.rate
FROM ' . GUESTBOOK_TABLE . ' AS c
LEFT JOIN ' . USERS_TABLE . ' AS u
ON u.' . $conf['user_fields']['id'] . ' = c.author_id
WHERE validated = \'false\'
ORDER BY c.date DESC
;';
$result = pwg_query($query);
while ($row = pwg_db_fetch_assoc($result)) {
if (empty($row['author_id'])) {
$author_name = $row['author'];
} else {
$author_name = stripslashes($row['username']);
}
$template->append('comments', array('ID' => $row['id'], 'AUTHOR' => trigger_change('render_comment_author', $author_name), 'DATE' => format_date($row['date'], true), 'CONTENT' => trigger_change('render_comment_content', $row['content'], 'guestbook'), 'EMAIL' => $row['email'], 'WEBSITE' => $row['website'], 'WEBSITE_NAME' => preg_replace('#^(https?:\\/\\/)#i', null, $row['website']), 'STARS' => get_stars($row['rate'], GUESTBOOK_PATH . 'template/jquery.raty/'), 'RATE' => $row['rate']));
$list[] = $row['id'];
}
$template->assign(array('LIST' => implode(',', $list), 'F_ACTION' => GUESTBOOK_ADMIN . '-pending'));
$template->set_filename('guestbook', realpath(GUESTBOOK_PATH . 'admin/template/pending.tpl'));
