/**
*
* @return mixed
*/
public function actionCreate()
{
global $API_CODE;
if (isset($_POST['user'])) {
//Validation
$new_data_error_msg = '';
if (!strlen(trim($_POST['user'])) || !strlen(trim($_POST['content']))) {
$new_data_error_msg = t('FILL_NOT_COMPLETE');
} elseif (strlen($_POST['content'] > 580)) {
$new_data_error_msg = t('WORDS_TOO_LONG');
} elseif (ZFramework::app()->valid_code_open == 1 && gd_loaded() && !$this->_verifyCode->check($_POST['valid_code'])) {
$new_data_error_msg = t('CAPTCHA_WRONG');
}
if ($new_data_error_msg) {
if (defined('API_MODE')) {
$error_array = array('error_code' => '400', 'error' => $API_CODE['400'], 'error_detail' => $new_data_error_msg);
die(function_exists('json_encode') ? json_encode($error_array) : CJSON::encode($error_array));
}
if (!empty($_POST['ajax'])) {
die($new_data_error_msg);
} else {
show_message($new_data_error_msg, true, 'index.php');
}
}
// Ready to send query to database
$user = $this->_model->escape_string($_POST['user']);
if (!isset($_SESSION['admin']) && $_POST['user'] == ZFramework::app()->admin) {
$user = '******';
}
$userExists = $this->_model->queryAll(sprintf(parse_tbprefix("SELECT * FROM <sysuser> WHERE username='******'"), $this->_model->escape_string($_POST['user'])));
if ($userExists && @$_SESSION['user'] != $_POST['user']) {
$user = '******';
}
$content = $this->_model->escape_string($_POST['content']);
if (isset($_SESSION['uid'])) {
$sql_insert = sprintf(parse_tbprefix("INSERT INTO <post> ( uid , content , post_time , ip ) VALUES ( %d , '%s' , %d , '%s' )"), $_SESSION['uid'], $content, time(), getIp());
} else {
$sql_insert = sprintf(parse_tbprefix("INSERT INTO <post> ( uname , content , post_time , ip ) VALUES ( '%s' ,'%s' , %d , '%s')"), $user, $content, time(), getIp());
}
// Send query to database
if (!$this->_model->query($sql_insert)) {
die($this->_model->error());
}
performEvent('PostController/actionCreate', array($user, $content, time() + ZFramework::app()->timezone * 60 * 60));
if (defined('API_MODE')) {
$json_array = array('insert_id' => $this->_model->insert_id());
die(function_exists('json_encode') ? json_encode($json_array) : CJSON::encode($json_array));
}
if (isset($_POST['ajax'])) {
echo 'OK';
return TRUE;
}
}
if (defined('API_MODE')) {
$error_array = array('error_code' => '400', 'error' => $API_CODE['400'], 'error_detail' => t('ONLY_POST'));
die(function_exists('json_encode') ? json_encode($error_array) : CJSON::encode($error_array));
}
header("Location:index.php");
}
<td><?php
echo t('FILTER_WORDS');
?>
:</td><td><textarea class="span-9" name="filter_words" cols="20" rows="3"><?php
echo ZFramework::app()->filter_words;
?>
</textarea></td>
</tr>
<tr>
<td><?php
echo t('ENABLE_CAPTCHA');
?>
:</td>
<td>
<?php
if (gd_loaded()) {
?>
<input name="valid_code_open" type="radio" value="1" <?php
if (ZFramework::app()->valid_code_open == 1) {
?>
checked='checked' <?php
}
?>
/><?php
echo t('YES');
?>
<input name="valid_code_open" type="radio" value="0" <?php
if (ZFramework::app()->valid_code_open == 0) {
?>
checked='checked' <?php
}
require APPROOT . '/includes/database/YDB.php';
//载入配置文件,若尚未安装则载入默认的配置文件
if (file_exists(conf_path() . '/config.php')) {
include_once conf_path() . '/config.php';
} else {
include './sites/default/default.config.php';
}
//定义常量
define('CONFIGFILE', conf_path() . '/config.php');
define('MP_VERSION', '2.0 alpha');
define('THEMEDIR', 'themes/');
define('SMILEYDIR', 'http://mapleleaf.googlecode.com/files/');
if (!function_exists('json_encode')) {
include 'CJSON.php';
}
include_once 'Imgcode.php';
//载入框架类
require 'ZFramework.php';
//检查服务器支持情况
$gd_exist = gd_loaded();
$zip_support = class_exists('ZipArchive') ? 'On' : 'Off';
if (is_installed()) {
//若已经安装,执行IP检查
if (is_baned(getIP())) {
die('Access denied!');
}
is_closedMode();
} elseif ($_GET['action'] != 'install') {
header("Location:index.php?action=install");
exit;
}
function get_chart_markup($data_type, $chart_type, $chart_param1, $chart_param2)
{
global $PHP_SELF;
$result = '';
$alt_title = '';
if (gd_loaded()) {
$alt_title = get_chart_title($data_type);
if ($alt_title == '') {
return '';
}
if ($chart_type == BAR_CHART) {
$alt_title .= ' hit and miss percentage chart';
} elseif ($chart_type == PIE_CHART) {
$alt_title .= ' memory usage percentage chart';
} else {
return '';
}
$result = '<img src="' . $PHP_SELF;
$result .= '?img=' . $data_type . '&type=' . $chart_type;
$result .= '&p1=' . $chart_param1 . '&p2=' . $chart_param2 . '" ';
$result .= 'alt="' . $alt_title . '" width="' . IMG_WIDTH . '" height="' . IMG_HEIGHT . '" />';
} else {
$result = '<p class="notice">Enable GD library (<em>php_gd2.dll</em>) in order to see the charts.</p>';
}
return $result;
}
echo t('CONTENT');
?>
</td>
<td><textarea class="span-10" id="content" name="content" cols="45" rows="8" ></textarea></td>
<td><div id='smileys'><?php
echo $smileys;
?>
</div> <br /><?php
if (ConfigController::FILTER_TRIPTAGS == ZFramework::app()->filter_type) {
echo t('ALLOWED_TAGS', array('{allowed_tags}' => htmlentities(ZFramework::app()->allowed_tags)));
}
?>
</td>
</tr>
<?php
if (ZFramework::app()->valid_code_open && gd_loaded()) {
?>
<tr>
<td class="l"><?php
echo t('VALIDATE_CODE');
?>
</td>
<td class="left"><input id="valid_code" type="text" name="valid_code" size="4" maxlength="4" /> <img id="captcha_img" src="index.php?action=captcha" title="<?php
echo t('CLICK_TO_REFRESH');
?>
" alt="<?php
echo t('CAPTCHA');
?>
" /></td>
<td class="left"> </td>
</tr>
