if (!session::check_perm(USER_PERM_POST_EDIT | USER_PERM_POST_READ, $t_fid)) {
     html_draw_error(gettext("You cannot edit posts in this folder"), 'admin_post_approve.php', 'post', array('cancel' => gettext("Cancel")), array('ret' => $ret), '_self', 'center');
 }
 if (!session::check_perm(USER_PERM_FOLDER_MODERATE, $t_fid)) {
     html_draw_error(gettext("You cannot edit posts in this folder"), 'admin_post_approve.php', 'post', array('cancel' => gettext("Cancel")), array('ret' => $ret), '_self', 'center');
 }
 if (!($thread_data = thread_get($tid))) {
     html_draw_error(gettext("The requested thread could not be found or access was denied."), 'admin_post_approve.php', 'post', array('cancel' => gettext("Cancel")), array('ret' => $ret), '_self', 'center');
 }
 if ($preview_message = messages_get($tid, $pid, 1)) {
     if (isset($preview_message['APPROVED']) && $preview_message['APPROVED'] > 0) {
         html_draw_error(gettext("Post does not require approval"), 'admin_post_approve.php', 'post', array('cancel' => gettext("Cancel")), array('ret' => $ret), '_self', 'center');
     }
     $preview_message['CONTENT'] = message_get_content($tid, $pid);
     if (isset($_POST['approve']) && is_numeric($tid) && is_numeric($pid)) {
         if (post_approve($tid, $pid)) {
             admin_add_log_entry(APPROVED_POST, array($t_fid, $tid, $pid));
             if (preg_match("/^messages.php/u", basename($ret)) > 0) {
                 header_redirect("messages.php?webtag={$webtag}&msg={$msg}&post_approve_success={$msg}");
                 exit;
             } else {
                 html_draw_top(sprintf('title=%s', gettext("Approve Post")), 'class=window_title');
                 html_display_msg(gettext("Approve Post"), sprintf(gettext("Successfully approved post %s"), $msg), "admin_post_approve.php", 'get', array('back' => gettext("Back")), array('ret' => $ret), '_self', 'center');
                 html_draw_bottom();
                 exit;
             }
         } else {
             $error_msg_array[] = gettext("Post approval failed.");
         }
     } else {
         if (isset($_POST['delete'])) {
Exemplo n.º 2
0
         if ($process_valid && !session::check_perm(USER_PERM_POST_EDIT | USER_PERM_POST_READ, $approve_fid)) {
             $process_valid = false;
         }
         if ($process_valid && !session::check_perm(USER_PERM_FOLDER_MODERATE, $approve_fid)) {
             $process_valid = false;
         }
         if ($process_valid && !($thread_data = thread_get($approve_tid, false, false, true))) {
             $process_valid = false;
         }
         if ($process_valid && !($preview_message = messages_get($approve_tid, $approve_pid, 1))) {
             $process_valid = false;
         }
         if ($process_valid && isset($preview_message['APPROVED'])) {
             $process_valid = false;
         }
         if ($process_valid && post_approve($approve_tid, $approve_pid)) {
             admin_add_log_entry(APPROVED_POST, array($approve_fid, $approve_tid, $approve_pid));
         } else {
             $valid = false;
         }
     }
     if ($valid) {
         header_redirect("admin_post_approve.php?webtag={$webtag}&page={$page}&approve_success=true");
         exit;
     } else {
         $error_msg_array[] = gettext("Failed to approve some messages");
     }
 } else {
     html_draw_top(array('title' => gettext('Approve Message'), 'class' => 'window_title'));
     html_display_msg(gettext("Approve"), gettext("Are you sure you want to approve all of the selected messages?"), "admin_post_approve.php", 'post', array('approve_messages' => gettext("Yes"), 'back' => gettext("No")), array('page' => $page, 'process' => $process_messages, 'approve_confirm' => 'Y'), '_self', 'center');
     html_draw_bottom();