<br/> <a href="/photos.php?user=<?php echo $userData['userID']; ?> ">View All Photos (<?php echo BuckysPost::getNumberOfPhotosByUserID($userData['userID']); ?> )</a> <br/> <!-- Friend Links --> <?php if (buckys_not_null($userID) && $userID != $profileID) { //If this is not current logged user, Show Friends, Message Links //Show Friend Links if ($fid = BuckysFriend::isFriend($userID, $profileID)) { ?> <a href="/myfriends.php?action=unfriend&friendID=<?php echo $profileID; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******">Unfriend</a> <br/> <?php } else { //Check Friend Request if ($fid = BuckysFriend::isSentFriendRequest($userID, $profileID)) { ?>
} else { buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR); } } } else { if ($_REQUEST['action'] == 'request') { if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST]; render_result_xml($resultXML); } else { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } exit; } if (BuckysFriend::isFriend($userID, $friendID)) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => MSG_INVALID_REQUEST]; render_result_xml($resultXML); } else { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } exit; } if (BuckysFriend::isSentFriendRequest($userID, $friendID)) { if ($isAjax) { $resultXML = ['status' => 'error', 'message' => MSG_FRIEND_REQUEST_ALREADY_SENT]; render_result_xml($resultXML); } else { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); }
<p><?php echo $row['gender']; ?> </p> <p><?php echo $row['birthdate'] != '0000-00-00' ? date('F j, Y', strtotime($row['birthdate'])) : ""; ?> </p> </div> <div class="td td-friend-action"> <p> <?php if ($userID = buckys_is_logged_in()) { if ($fid = BuckysFriend::isFriend($userID, $row['userID'])) { ?> <a href="/myfriends.php?action=unfriend&friendID=<?php echo $row['userID']; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******" data-type="buckys-ajax-link">Unfriend</a> <br/> <?php } else { //Check Friend Request if ($fid = BuckysFriend::isSentFriendRequest($userID, $row['userID'])) {
echo $totalFriendsCount != 1 ? 's' : ''; ?> <a href="/friends.php?user=<?php echo $userData['userID']; ?> " class="view-all">(view all)</a></h3> <?php foreach ($friends as $row) { render_profile_link($row, 'friendThumbnails'); } ?> </div> <br/> <?php if ($userID == $profileID || BuckysFriend::isFriend($userID, $profileID)) { ?> <div class="info-box"> <h3> <?php if ($userID == $profileID) { ?> New Post <?php } else { ?> Posts on <?php echo $userData['firstName']; ?> 's Profile <?php
/** * Like Post * * @param int $userID * @param int $postID * @param $action * @param bool $checkToken * @return bool|int|null|string */ public static function likePost($userID, $postID, $action, $checkToken = true) { global $db; $post = BuckysPost::getPostById($postID); if ($checkToken && !buckys_check_form_token('request')) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } if (!$post || $post['poster'] == $userID) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } if ($post['visibility'] == 0 && !BuckysFriend::isFriend($userID, $post['poster'])) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } if (!BuckysUsersDailyActivity::checkUserDailyLimit($userID, 'likes')) { buckys_add_message(sprintf(MSG_DAILY_LIKES_LIMIT_EXCEED_ERROR, USER_DAILY_LIMIT_LIKES), MSG_TYPE_ERROR); return false; } //Check already like it or not $query = $db->prepare("SELECT likeID FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID); $likeId = $db->getVar($query); if ($action == 'likePost') { if ($likeId) { buckys_add_message(MSG_ALREADY_LIKED_POST, MSG_TYPE_ERROR); return false; } BuckysUsersDailyActivity::addLikes($userID); //Like This post $rs = $db->insertFromArray(TABLE_POSTS_LIKES, ['userID' => $userID, 'postID' => $postID]); //Update likes on the posts table $query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` + 1 WHERE postID=%d', $postID); $db->query($query); //Add Activity $activityId = BuckysActivity::addActivity($userID, $postID, 'post', 'like', $rs); //Add Notification BuckysActivity::addNotification($post['poster'], $activityId, BuckysActivity::NOTIFICATION_TYPE_LIKE_POST); //Increase Hits BuckysHit::addHit($postID, $userID); //Update User Stats BuckysUser::updateStats($post['poster'], 'likes', 1); return $rs; } else { if ($action == 'unlikePost') { if (!$likeId) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } BuckysUsersDailyActivity::addLikes($userID); $query = $db->prepare("DELETE FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID); $db->query($query); //Update likes on the posts table $query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` - 1 WHERE postID=%d', $postID); $db->query($query); //Increase Hits BuckysHit::removeHit($postID, $userID); //Update User Stats BuckysUser::updateStats($post['poster'], 'likes', -1); return true; } } }
//If the parameter is null, goto homepage if (!$profileID) { buckys_redirect('/index.php'); } //Getting UserData from Id $userData = BuckysUser::getUserData($profileID); //Goto Homepage if the userID is not correct if (!buckys_not_null($userData) || !BuckysUser::checkUserID($profileID, true)) { buckys_redirect('/index.php'); } $postType = isset($_GET['type']) ? $_GET['type'] : 'all'; if (!in_array($postType, ['all', 'user', 'friends'])) { $postType = 'all'; } //if logged user can see all resources of the current user $canViewPrivate = $userID == $profileID || BuckysFriend::isFriend($userID, $profileID) || BuckysFriend::isSentFriendRequest($profileID, $userID); $posts = BuckysPost::getPostsByUserID($profileID, $userID, BuckysPost::INDEPENDENT_POST_PAGE_ID, $canViewPrivate, $postID, null, $postType); /*if( !buckys_not_null($posts) ) { //Goto Index Page buckys_redirect('/index.php', MSG_INVALID_REQUEST, MSG_TYPE_ERROR); }*/ //Mark the notifications to read if ($postID) { BuckysActivity::markReadNotifications($userID, $postID); } buckys_enqueue_stylesheet('profile.css'); buckys_enqueue_stylesheet('posting.css'); buckys_enqueue_stylesheet('uploadify.css'); buckys_enqueue_stylesheet('jquery.Jcrop.css'); buckys_enqueue_stylesheet('publisher.css');
} else { if ($_REQUEST['action'] == 'delete') { if (BuckysFriend::delete($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_FRIEND_REQUEST_REMOVED); } else { buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR); } } else { if ($_REQUEST['action'] == 'request') { if (!isset($_REQUEST['friendID']) || !isset($_REQUEST['friendIDHash']) || !buckys_check_id_encrypted($_REQUEST['friendID'], $_REQUEST['friendIDHash'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (!BuckysUser::checkUserID($_REQUEST['friendID'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (BuckysFriend::isFriend($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_INVALID_REQUEST, MSG_TYPE_ERROR); } if (BuckysFriend::isSentFriendRequest($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); } if (BuckysFriend::isSentFriendRequest($_REQUEST['friendID'], $userID)) { buckys_redirect($return, MSG_FRIEND_REQUEST_ALREADY_SENT, MSG_TYPE_ERROR); } if (BuckysFriend::sendFriendRequest($userID, $_REQUEST['friendID'])) { buckys_redirect($return, MSG_FRIEND_REQUEST_SENT); } else { buckys_redirect($return, $db->getLastError(), MSG_TYPE_ERROR); } } }
public function addFriendAction() { $data = $_POST; $token = isset($data['TOKEN']) ? trim($data['TOKEN']) : null; $friendID = isset($data['friendID']) ? $data['friendID'] : null; if (!$token) { return ['STATUS_CODE' => STATUS_CODE_BAD_REQUEST, 'DATA' => buckys_api_get_error_result('Api token should not be blank')]; } if (!($userID = BuckysUsersToken::checkTokenValidity($token, "api"))) { return ['STATUS_CODE' => STATUS_CODE_UNAUTHORIZED, 'DATA' => buckys_api_get_error_result('Api token is not valid.')]; } if (!isset($friendID) || !BuckysUser::checkUserID($friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)]; } if (BuckysFriend::isFriend($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_INVALID_REQUEST)]; } if (BuckysFriend::isSentFriendRequest($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_SENT)]; } if (BuckysFriend::isSentFriendRequest($friendID, $userID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result(MSG_FRIEND_REQUEST_ALREADY_RECEIVED)]; } if (BuckysFriend::sendFriendRequest($userID, $friendID)) { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => ["STATUS" => "SUCCESS", "MESSAGE" => MSG_FRIEND_REQUEST_SENT]]; } else { return ['STATUS_CODE' => STATUS_CODE_OK, 'DATA' => buckys_api_get_error_result($db->getLastError())]; } }
if (trim($comment) == '') { echo MSG_COMMENT_EMPTY; exit; } //if Post Id was not set, show error if (!$postID) { echo MSG_INVALID_REQUEST; exit; } //Check the post id is correct if (!BuckysPost::checkPostID($postID)) { echo MSG_POST_NOT_EXIST; exit; } $post = BuckysPost::getPostById($postID); if ($post['visibility'] == 0 && $userID != $post['poster'] && !BuckysFriend::isFriend($userID, $post['poster'])) { //Only Friends can leave comments to private post echo MSG_INVALID_REQUEST; exit; } //If error, show it if (!($commentID = BuckysComment::saveComments($userID, $postID, $comment))) { echo $db->getLastError(); exit; } else { //Show Results header('Content-type: application/xml'); $newComment = BuckysComment::getComment($commentID); $newCount = BuckysComment::getPostCommentsCount($postID); render_result_xml(array('newcomment' => render_single_comment($newComment, $userID, true), 'count' => $newCount > 1 ? $newCount . " comments" : $newCount . " comment")); exit;
?> <div class="imgWrap"> <img src="/images/badges/blue_wings.png" class="badge"/> <span class="imgDescription">500 page followers</span> </div> <?php } ?> </div> <div class="action"> <span class="friend-actions"> <?php if (($userID = buckys_is_logged_in()) && $userID != $userData['userID']) { if ($fid = BuckysFriend::isFriend($userID, $userData['userID'])) { ?> <a href="/myfriends.php?action=unfriend&friendID=<?php echo $userData['userID']; echo buckys_get_token_param(); ?> &return=<?php echo base64_encode("/profile.php?user="******" data-type="buckys-ajax-link">Unfriend</a> <br/> <?php } else { //Check Friend Request if ($fid = BuckysFriend::isSentFriendRequest($userID, $userData['userID'])) {
/** * Like Post * * * @param int $userID * @param int $postID */ public function likePost($userID, $postID, $action) { global $db; $post = BuckysPost::getPostById($postID); if (!$post || $post['poster'] == $userID) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } if ($post['visibility'] == 0 && !BuckysFriend::isFriend($userID, $post['poster'])) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } //Check already like it or not $query = $db->prepare("SELECT likeID FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID); $likeId = $db->getVar($query); if ($action == 'likePost') { if ($likeId) { buckys_add_message(MSG_ALREADY_LIKED_POST, MSG_TYPE_ERROR); return false; } //Like This post $rs = $db->insertFromArray(TABLE_POSTS_LIKES, array('userID' => $userID, 'postID' => $postID)); //Update likes on the posts table $query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` + 1 WHERE postID=%d', $postID); $db->query($query); //Add Activity BuckysActivity::addActivity($userID, $postID, 'post', 'like', $rs); //Increase Hits BuckysHit::addHit($postID, $userID); return $rs; } else { if ($action == 'unlikePost') { if (!$likeId) { buckys_add_message(MSG_INVALID_REQUEST, MSG_TYPE_ERROR); return false; } $query = $db->prepare("DELETE FROM " . TABLE_POSTS_LIKES . " WHERE userID=%s AND postID=%s", $userID, $postID); $db->query($query); //Update likes on the posts table $query = $db->prepare('UPDATE ' . TABLE_POSTS . ' SET `likes`=`likes` - 1 WHERE postID=%d', $postID); $db->query($query); //Increase Hits BuckysHit::removeHit($postID, $userID); return true; } } }