Blog Inlinemod

<?
php
/*======================================================================*\
|| #################################################################### ||
|| # vBulletin Blog 4.2.0
|| # ---------------------------------------------------------------- # ||
|| # Copyright 2000-2012 vBulletin Solutions Inc. All Rights Reserved. ||
|| # This file may not be redistributed in whole or significant part. # ||
|| # ---------------- VBULLETIN IS NOT FREE SOFTWARE ---------------- # ||
|| # http://www.vbulletin.com | http://www.vbulletin.com/license.html # ||
|| #################################################################### ||
\*======================================================================*/
// ####################### SET PHP ENVIRONMENT ###########################
error_reporting(E_ALL & ~E_NOTICE);
// #################### DEFINE IMPORTANT CONSTANTS #######################
define('VB_PRODUCT', 'vbblog');
define('THIS_SCRIPT', 'blog_inlinemod');
define('CSRF_PROTECTION', true);
define('VBBLOG_PERMS', true);
define('VBBLOG_STYLE', true);
define('VBBLOG_SCRIPT', true);
// ################### PRE-CACHE TEMPLATES AND DATA ######################
// get special phrase groups
$phrasegroups = array(
'vbblogglobal',
'vbblogcat',
'threadmanage',
'postbit',
);
// get special data templates from the datastore
$specialtemplates = array('blogcategorycache');
if (!$_REQUEST['userid'])
{
$specialtemplates[] = 'blogtagcloud';
}
// pre-cache templates used by all actions
$globaltemplates = array(
'BLOG',
'blog_css',
'blog_usercss',
'blog_header_custompage_link',
'ad_blogsidebar_start',
'ad_blogsidebar_middle',
'ad_blogsidebar_end',
);
// pre-cache templates used by specific actions
$actiontemplates = array(
'deletetrackback'
=> array(
'blog_inlinemod_delete_trackbacks',
'blog_sidebar_category_link',
'blog_sidebar_comment_link',
'blog_sidebar_custompage_link',
'blog_sidebar_entry_link',
'blog_sidebar_user',
'blog_sidebar_calendar',
'blog_sidebar_calendar_day',
'blog_sidebar_generic',
'blog_sidebar_user_block_archive',
'blog_sidebar_user_block_category',
'blog_sidebar_user_block_comments',
'blog_sidebar_user_block_entries',
'blog_sidebar_user_block_search',
'blog_sidebar_user_block_tagcloud',
'blog_sidebar_user_block_visitors',
'blog_sidebar_user_block_custom',
'blog_tag_cloud_link',
),
'deletecomment' => array(
'blog_inlinemod_delete_comments',
),
'deleteentry'
=> array(
'blog_inlinemod_delete_entries',
'blog_archive_link_li',
),
'deletepcomment' => array(
'blog_inlinemod_delete_profile_comments',
),
);
// ######################### REQUIRE BACK-END ############################
require_once('./global.php');
require_once(DIR . '/includes/blog_init.php');
require_once(DIR . '/includes/blog_functions.php');
verify_blog_url();
// #######################################################################
// ######################## START MAIN SCRIPT ############################
// #######################################################################
$itemlimit = 200;
// This is a list of ids that were checked on the page we submitted from
$vbulletin->input->clean_array_gpc('p', array(
'trackbacklist' => TYPE_ARRAY_KEYS_INT,
'commentlist' => TYPE_ARRAY_KEYS_INT,
'pcommentlist' => TYPE_ARRAY_KEYS_INT,
'bloglist'
=> TYPE_ARRAY_KEYS_INT,
'userid'
=> TYPE_UINT,
));
// If we have javascript, all ids should be in here
$vbulletin->input->clean_array_gpc('c', array(
'vbulletin_inlinetrackback' => TYPE_STR,
'vbulletin_inlinecomment' => TYPE_STR,
'vbulletin_inlineentry'
=> TYPE_STR,
'vbulletin_inlinepcomment' => TYPE_STR,
));
// Combine ids sent from the form and what we have in the cookie
if (!empty($vbulletin->GPC['vbulletin_inlinetrackback']))
{
$trackbacklist = explode('-', $vbulletin->GPC['vbulletin_inlinetrackback
']);
$trackbacklist = $vbulletin->input->clean($trackbacklist, TYPE_ARRAY_UIN
T);
$vbulletin->GPC['trackbacklist'] = array_unique(array_merge($trackbackli
st, $vbulletin->GPC['trackbacklist']));
}
if (!empty($vbulletin->GPC['vbulletin_inlinecomment']))
{
$commentlist = explode('-', $vbulletin->GPC['vbulletin_inlinecomment']);
$commentlist = $vbulletin->input->clean($commentlist, TYPE_ARRAY_UINT);
$vbulletin->GPC['commentlist'] = array_unique(array_merge($commentlist,
$vbulletin->GPC['commentlist']));
}
if (!empty($vbulletin->GPC['vbulletin_inlineentry']))
{
$bloglist = explode('-', $vbulletin->GPC['vbulletin_inlineentry']);
$bloglist = $vbulletin->input->clean($bloglist, TYPE_ARRAY_UINT);
$vbulletin->GPC['bloglist'] = array_unique(array_merge($bloglist, $vbull
etin->GPC['bloglist']));
}
if (!empty($vbulletin->GPC['vbulletin_inlinepcomment']))
{
$pcommentlist = explode('-', $vbulletin->GPC['vbulletin_inlinepcomment']
);
$pcommentlist = $vbulletin->input->clean($pcommentlist, TYPE_ARRAY_UINT)
;
$vbulletin->GPC['pcommentlist'] = array_unique(array_merge($pcommentlist
, $vbulletin->GPC['pcommentlist']));
}
if (!$vbulletin->userinfo['userid'])
{
print_no_permission();
}
switch ($_POST['do'])
{
// ######################### POSTS ############################
case 'deleteentry':
case 'approveentry':
case 'unapproveentry':
case 'undeleteentry':
if (empty($vbulletin->GPC['bloglist']))
{
standard_error(fetch_error('you_did_not_select_any_valid
_entries'));
}
if (count($vbulletin->GPC['bloglist']) > $itemlimit)
{
standard_error(fetch_error('you_are_limited_to_working_w
ith_x_entries', $itemlimit));
}
if ($vbulletin->GPC['userid'])
{
$userinfo = fetch_userinfo($vbulletin->GPC['userid'], 1)
;
}
$blogids = implode(', ', $vbulletin->GPC['bloglist']);
break;
case 'dodeleteentry':
'blogids' => TYPE_STR,
));
$blogids = explode(',', $vbulletin->GPC['blogids']);
$blogids = $vbulletin->input->clean($blogids, TYPE_ARRAY_UINT);
if (count($blogids) > $itemlimit)
{
ith_x_entries', $itemlimit));
}
break;
// ######################### COMMENTS ############################
case
case
case
case
'deletecomment':
'approvecomment':
'unapprovecomment':
'undeletecomment':
if (empty($vbulletin->GPC['commentlist']))
{
_comments'));
}
if (count($vbulletin->GPC['commentlist']) > $itemlimit)
{
ith_x_comments', $itemlimit));
}
{
;
}
$blogtextids = implode(', ', $vbulletin->GPC['commentlist']);
break;
case 'dodeletecomment':
'blogtextids' => TYPE_STR,
));
$blogtextids = explode(',', $vbulletin->GPC['blogtextids']);
$blogtextids = $vbulletin->input->clean($blogtextids, TYPE_ARRAY
_UINT);
if (count($blogtextids) > $itemlimit)
{
}
break;
// ######################### PROFILE COMMENTS ##########################
##
case
case
case
case
'deletepcomment':
'approvepcomment':
'unapprovepcomment':
'undeletepcomment':
if (empty($vbulletin->GPC['pcommentlist']))
{
_comments'));
}
if (count($vbulletin->GPC['pcommentlist']) > $itemlimit)
{
}
{
;
}
$commentids = implode(', ', $vbulletin->GPC['pcommentlist']);
break;
case 'dodeletepcomment':
'commentids' => TYPE_STR,
));
$commentids = explode(',', $vbulletin->GPC['commentids']);
$commentids = $vbulletin->input->clean($commentids, TYPE_ARRAY_U
INT);
if (count($commentids) > $itemlimit)
{
}
break;
// ######################### TRACKBACKS ############################
case 'deletetrackback':
case 'approvetrackback':
case 'unapprovetrackback':
if (empty($vbulletin->GPC['trackbacklist']))
{
_trackbacks'));
}
if (count($vbulletin->GPC['trackbacklist']) > $itemlimit)
{
ith_x_trackbacks', $itemlimit));
}
{
;
}
$trackbackids = implode(', ', $vbulletin->GPC['trackbacklist']);
break;
case 'dodeletetrackback':
'trackbackids' => TYPE_STR,
));
$trackbackids = explode(',', $vbulletin->GPC['trackbackids']);
$trackbackids = $vbulletin->input->clean($trackbackids, TYPE_ARR
AY_UINT);
if (count($trackbackids) > $itemlimit)

{
ith_x_trackbacks', $itemlimit));
}
break;
case
case
case
case
'cleartrackback':
'clearpcomment':
'clearcomment':
'clearentry':
break;
default:
$handled_do = false;
($hook = vBulletinHook::fetch_hook('blog_inlinemod_action_switch
')) ? eval($hook) : false;
if (!$handled_do)
{
standard_error(fetch_error('invalid_action'));
}
}
// set forceredirect for IIS
$forceredirect = (strpos($_SERVER['SERVER_SOFTWARE'], 'Microsoft-IIS') !== false
);
// Init
$userarray = array();
$blogarray = array();
$trackbackarray = array();
$commentarray = array();
$bloglist = array();
$userlist = array();
if (!empty($vbulletin->userinfo['blogcategorypermissions']['cantview']))
{
$joinsql = "LEFT JOIN " . TABLE_PREFIX . "blog_categoryuser AS cu ON (cu
.blogid = blog.blogid AND cu.blogcategoryid IN (" . implode(", ", $vbulletin->us
erinfo['blogcategorypermissions']['cantview']) . "))";
$wheresql = "AND (cu.blogcategoryid IS NULL OR blog.userid = " . $vbulle
tin->userinfo['userid'] . ")";
}
else
{
$joinsql = $wheresql = '';
}
if ($_POST['do'] == 'clearcomment')
{
setcookie('vbulletin_inlinecomment', '', TIMENOW - 3600, '/');
($hook = vBulletinHook::fetch_hook('blog_inlinemod_clearcomment')) ? eva
l($hook) : false;
print_standard_redirect('redirect_inline_commentlist_cleared', true, $fo
rceredirect);
}
if ($_POST['do'] == 'clearpcomment')
{
setcookie('vbulletin_inlinepcomment', '', TIMENOW - 3600, '/');
($hook = vBulletinHook::fetch_hook('blog_inlinemod_clearpcomment')) ? ev
al($hook) : false;
print_standard_redirect('redirect_inline_commentlist_cleared', true, $fo
rceredirect);
}
if ($_POST['do'] == 'cleartrackback')
{
setcookie('vbulletin_inlinetrackback', '', TIMENOW - 3600, '/');
($hook = vBulletinHook::fetch_hook('blog_inlinemod_cleartrackback')) ? e
val($hook) : false;
print_standard_redirect('redirect_inline_trackbacklist_cleared', true, $
forceredirect);
}
if ($_POST['do'] == 'clearentry')
{
setcookie('vbulletin_inlineentry', '', TIMENOW - 3600, '/');
($hook = vBulletinHook::fetch_hook('blog_inlinemod_clearentry')) ? eval(
$hook) : false;
print_standard_redirect('redirect_inline_entrylist_cleared', true, $forc
eredirect);
}
if ($_POST['do'] == 'approvetrackback' OR $_POST['do'] == 'unapprovetrackback')
{
$insertrecords = array();
$approve = $_POST['do'] == 'approvetrackback' ? true : false;
// Validate Trackbacks
$trackbacks = $db->query_read_slave("
SELECT
bt.blogtrackbackid, bt.state, bt.blogid, bt.userid,
blog.state AS blog_state, blog.userid AS blog_userid, bl
og.categories, blog.pending, blog.postedby_userid, blog.postedby_username, blog.
options AS blogoptions,
bu.memberids, bu.memberblogids,
user.membergroupids, user.usergroupid, user.infractiongr
oupids,
user2.membergroupids AS blog_membergroupids, user2.userg
roupid AS blog_usergroupid, user2.infractiongroupids AS blog_infractiongroupids,
gm.permissions AS grouppermissions
FROM " . TABLE_PREFIX . "blog_trackback AS bt
LEFT JOIN " . TABLE_PREFIX . "blog AS blog USING (blogid)
LEFT JOIN " . TABLE_PREFIX . "blog_user AS bu ON (bu.bloguserid
= blog.userid)
LEFT JOIN " . TABLE_PREFIX . "user AS user ON (user.userid = bt.
userid)
LEFT JOIN " . TABLE_PREFIX . "user AS user2 ON (user2.userid = b

log.userid)
LEFT JOIN " . TABLE_PREFIX . "blog_groupmembership AS gm ON (blo
g.userid = gm.bloguserid AND gm.userid = " . $vbulletin->userinfo['userid'] . ")
$joinsql
WHERE
bt.blogtrackbackid IN ($trackbackids)
AND
bt.state = '" . ($approve ? 'moderation' : 'visible') .
"'
$wheresql
");
while ($trackback = $db->fetch_array($trackbacks))
{
$trackback = array_merge($trackback, convert_bits_to_array($trac
kback['blogoptions'], $vbulletin->bf_misc_vbblogoptions));
$entryinfo = array(
'state'
=> $trackback['blog_state'],
'blogid'
=> $trackback['blogid'],
'userid'
=> $trackback['blog_userid'],
'usergroupid'
=> $trackback['blog_usergroupid'],
'infractiongroupids' => $trackback['blog_infractiongroup
ids'],
'membergroupids'
=> $trackback['blog_membergroupids'
],
'memberids'
=> $trackback['memberids'],
'memberblogids'
=> $trackback['memberblogids'],
'postedby_userid'
=> $trackback['postedby_userid'],
'postedby_username' => $trackback['postedby_username'],
'grouppermissions' => $trackback['grouppermissions'],
'membermoderate'
=> $trackback['membermoderate'],
);
cache_permissions($trackback, false);
cache_permissions($entryinfo, false);
// Check permissions.....
if (($entryinfo['userid'] != $vbulletin->userinfo['userid'] AND
!($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulletin
->bf_ugp_vbblog_general_permissions['blog_canviewothers'])) OR
($entryinfo['userid'] == $vbulletin->userinfo['userid']
AND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbull
etin->bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (!fetch_comment_perm('canmoderatecomments', $entryinfo, $trac
kback))
{
}
$trackbackarray["$trackback[blogtrackbackid]"] = $trackback;
$bloglist["$trackback[blogid]"] = true;
if (!$approve)
{
$insertrecords[] = "($trackback[blogtrackbackid], 'blogt
rackbackid', " . TIMENOW . ")";
}
}
if (empty($trackbackarray))
{
standard_error(fetch_error('you_did_not_select_any_valid_trackba
cks'));
}
// Set trackback state
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog_trackback
SET
state = '" . ($approve ? 'visible' : 'moderation') . "'
WHERE
blogtrackbackid IN (" . implode(',', array_keys($trackba
ckarray)) . ")
");
if ($approve)
{
$db->query_write("
DELETE FROM " . TABLE_PREFIX . "blog_moderation
WHERE
primaryid IN(" . implode(',', array_keys($trackb
ackarray)) . ")
AND
type = 'blogtrackback'
");
}
else
{
$db->query_write("
REPLACE INTO " . TABLE_PREFIX . "blog_moderation
(primaryid, type, dateline)
VALUES
" . implode(',', $insertrecords) . "
");
}
$modlog = array();
foreach(array_keys($trackbackarray) AS $blogtrackbackid)
{
$modlog[] = array(
'userid' =>& $vbulletin->userinfo['userid'],
'id1'
=>& $trackbackarray["$blogtrackbackid"]['blog
_userid'],
'id2'
=>& $trackbackarray["$blogtrackbackid"]['blog
id'],
'id5'
=> $blogtrackbackid,
);
}
require_once(DIR . '/includes/blog_functions_log_error.php');
blog_moderator_action($modlog, $approve ? 'trackback_approved' : 'trackb
ack_unapproved');
foreach (array_keys($bloglist) AS $blogid)
{
build_blog_entry_counters($blogid);
}
// hook
if ($approve)
{
print_standard_redirect('redirect_inline_approvedtrackbacks', tr
ue, $forceredirect);
}
else
{
print_standard_redirect('redirect_inline_unapprovedtrackbacks',
true, $forceredirect);
}
}
if ($_POST['do'] == 'approvecomment' OR $_POST['do'] == 'unapprovecomment')
{
$approve = $_POST['do'] == 'approvecomment' ? true : false;
// Validate records
$comments = $db->query_read_slave("
SELECT
bt.blogtextid, bt.state, bt.blogid, bt.userid, bt.dateli
ne,
og.pending, blog.categories, blog.postedby_userid, blog.postedby_username, blog.
bu.lastcomment, bu.lastblogtextid, bu.memberids, bu.memb
erblogids,
oupids,
FROM " . TABLE_PREFIX . "blog_text AS bt
LEFT JOIN " . TABLE_PREFIX . "blog AS blog ON (blog.blogid = bt.
blogid)
= blog.userid)
userid)
log.userid)
$joinsql
WHERE blogtextid IN ($blogtextids)
AND bt.state IN (" . ($approve ? "'moderation'" : "'visible', '
deleted'") . ")
AND blogtextid <> firstblogtextid
$wheresql
");
while ($comment = $db->fetch_array($comments))
{
$comment = array_merge($comment, convert_bits_to_array($comment[

'blogoptions'], $vbulletin->bf_misc_vbblogoptions));
$entryinfo = array(
'blogid'
=> $comment['blogid'],
'userid'
=> $comment['blog_userid'],
'usergroupid'
=> $comment['blog_usergroupid'],
'infractiongroupids' => $comment['blog_infractiongroupid
s'],
'membergroupids'
=> $comment['blog_membergroupids'],
'memberids'
=> $comment['memberids'],
'memberblogids'
=> $comment['memberblogids'],
'postedby_userid'
=> $comment['postedby_userid'],
'postedby_username' => $comment['postedby_username'],
'grouppermissions' => $comment['grouppermissions'],
'membermoderate'
=> $comment['membermoderate'],
);
cache_permissions($comment, false);
if (($comment['blog_userid'] != $vbulletin->userinfo['userid'] A
ND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulle
tin->bf_ugp_vbblog_general_permissions['blog_canviewothers'])) OR
($comment['blog_userid'] == $vbulletin->userinfo['userid
'] AND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vb
ulletin->bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (!fetch_comment_perm('canmoderatecomments', $entryinfo, $comm
ent))
{
}
else if (!empty($vbulletin->userinfo['blogcategorypermissions'][
'cantview']) AND $entryinfo['userid'] != $vbulletin->userinfo['userid'])
{
$categories = explode(',', $comment['categories']);
if (array_intersect($vbulletin->userinfo['blogcategorype
rmissions']['cantview'], $categories))
{
standard_error(fetch_error('you_do_not_have_perm
ission_to_view_category'));
}
}
$commentarray["$comment[blogtextid]"] = $comment;
$bloglist["$comment[blogid]"] = true;
$userlist["$entryinfo[userid]"] = true;
if (!$approve)
{
$insertrecords[] = "($comment[blogtextid], 'blogtextid',
" . TIMENOW . ")";
}
}
if (empty($commentarray))
{
standard_error(fetch_error('you_did_not_select_any_valid_comment
s'));
}
// Set comment state
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog_text
SET state = '" . ($approve ? 'visible' : 'moderation') . "'
WHERE blogtextid IN (" . implode(',', array_keys($commentarray))
. ")
");
if ($approve)
{
$db->query_write("
WHERE primaryid IN(" . implode(',', array_keys($commenta
rray)) . ")
AND type = 'blogtextid'
");
}
else
// Unapprove
{
$db->query_write("
VALUES
");
$db->query_write("
DELETE FROM " . TABLE_PREFIX . "blog_deletionlog
WHERE type = 'blogtextid' AND
primaryid IN(" . implode(',', array_keys($commen
tarray)) . ")
");
}
// Logging?
foreach (array_keys($bloglist) AS $blogid)
{
}
foreach (array_keys($userlist) AS $userid)
{
build_blog_user_counters($userid);
}
// hook
if ($approve)
{
print_standard_redirect('redirect_inline_approvedcomments', true
, $forceredirect);
}
else
{
print_standard_redirect('redirect_inline_unapprovedcomments', tr
ue, $forceredirect);
}
}
if ($_POST['do'] == 'approveentry' OR $_POST['do'] == 'unapproveentry')
{
$approve = $_POST['do'] == 'approveentry' ? true : false;
$visibleposts = array();
$invisibleposts = array();
// Validate records
$posts = $db->query_read_slave("
SELECT
blog.blogid, blog.userid, blog.state, blog.pending, blog
.options AS blogoptions, blog.postedby_userid,
oupids,
FROM " . TABLE_PREFIX . "blog AS blog
= blog.userid)
LEFT JOIN " . TABLE_PREFIX . "user AS user ON (user.userid = blo
g.userid)
$joinsql
WHERE
blog.blogid IN ($blogids)
AND
blog.state IN (" . ($approve ? "'moderation'" : "'visibl
e', 'deleted'") . ")
$wheresql
");
while ($post = $db->fetch_array($posts))
{
$post = array_merge($post, convert_bits_to_array($post['blogopti
ons'], $vbulletin->bf_misc_vbblogoptions));
if (($post['userid'] != $vbulletin->userinfo['userid'] AND !($vb
ulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulletin->bf_
ugp_vbblog_general_permissions['blog_canviewothers'])) OR
($post['userid'] == $vbulletin->userinfo['userid'] AND !
($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulletin>bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
cache_permissions($post, false);
if (!fetch_entry_perm('moderate', $post))
{
standard_error(fetch_error('you_do_not_have_permission_t
o_manage_moderated_entries'));
}
$blogarray["$post[blogid]"] = $post;
if ($post['userid'])
{
if (!empty($userlist["$post[userid]"]))
{
$userlist["$post[userid]"]++;
}
else
{
$userlist["$post[userid]"] = 1;
}
}
if (!$approve)
{
$insertrecords[] = "($post[blogid], 'blogid', " . TIMENO
W . ")";
}
if ($post['state'] == 'visible')
{
$visibleposts[] = $post['blogid'];
}
else
{
$invisibleposts[] = $post['blogid'];
}
}
if (empty($blogarray))
{
standard_error(fetch_error('you_did_not_select_any_valid_entries
'));
}
if (!empty($userlist))
{
$bycount = array();
foreach ($userlist AS $userid => $total)
{
$bycount["$total"][] = $userid;
}
$casesql = array();
foreach ($bycount AS $total => $userids)
{
$casesql[] = " WHEN bloguserid IN (" . implode(',', $use
rids) . ") THEN $total";
}
if (!empty($casesql))
{
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog_user
SET entries = entries " . ($approve ? "+" : "-")
. "
CASE
" . implode("\n", $casesql) . "
ELSE 0
END
WHERE bloguserid IN (" . implode(',', array_keys
($userlist)) . ")
");
}
}
if ($approve)
{
// Set post state
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog AS blog
SET
blog.state = 'visible',
options = options & ~" . $vbulletin->bf_misc_vbb
logoptions['membermoderate'] . "
WHERE blog.blogid IN (" . implode(',', array_keys($bloga
rray)) . ")
");
$db->query_write("
WHERE primaryid IN(" . implode(',', array_keys($blogarra
y)) . ")
AND type = 'blogid'
");
}
else
{
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog AS blog
SET
blog.state = 'moderation',
options = options & ~" . $vbulletin->bf_misc_vbb
logoptions['membermoderate'] . "
WHERE blog.blogid IN (" . implode(',', array_keys($bloga
rray)) . ")
");
$db->query_write("
VALUES
");
$db->query_write("
WHERE type = 'blogid' AND
primaryid IN(" . implode(',', array_keys($blogar
ray)) . ")
");
}
foreach (array_keys($blogarray) AS $blogid)
{
$modlog[] = array(
'id1'
'id2'
=>& $blogarray["$blogid"]['userid'],
=> $blogid,
);
}
blog_moderator_action($modlog, $approve ? 'blogentry_approved' : 'blogen
try_unapproved');
foreach(array_keys($userlist) AS $userid)
{
}
build_blog_stats();
// hook
if ($approve)
{
print_standard_redirect('redirect_inline_approvedposts', true, $
forceredirect);
}
else
{
print_standard_redirect('redirect_inline_unapprovedposts', true,
$forceredirect);
}
}
if ($_POST['do'] == 'deletetrackback')
{
// Trackbacks might need a soft deletion option
SELECT
bt.blogtrackbackid, bt.state, bt.blogid, bt.userid, bt.u
rl,
oupids,
= blog.userid)
userid)
log.userid)
$joinsql
WHERE
bt.blogtrackbackid IN ($trackbackids)
$wheresql
");
{
$entryinfo = array(
'state'
=> $trackback['blog_state'],
'blogid'
=> $trackback['blogid'],
'userid'
=> $trackback['blog_userid'],
'usergroupid'
=> $trackback['blog_usergroupid'],
'infractiongroupids' => $trackback['blog_infractiongroup
ids'],
'membergroupids'
=> $trackback['blog_membergroupids'
],
'memberids'
=> $trackback['memberids'],
'memberblogids'
=> $trackback['memberblogids'],
'postedby_userid'
=> $trackback['postedby_userid'],
'postedby_username' => $trackback['postedby_username'],
'grouppermissions' => $trackback['grouppermissions'],
'membermoderate'
=> $trackback['membermoderate'],
);
($entryinfo['_userid'] == $vbulletin->userinfo['userid']
AND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbul
letin->bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (!fetch_comment_perm('canremovecomments', $entryinfo, $commen
t))
{
}
}
{
cks'));
}
$trackbackcount = count($trackbackarray);
$blogcount = count($bloglist);
// hook
// draw navbar
$navbits = array();
$navbits[fetch_seo_url('entry', $bloginfo)] = $bloginfo['title'];

$navbits[''] = $vbphrase['delete_trackbacks'];
$url =& $vbulletin->url;
$templater = vB_Template::create('blog_inlinemod_delete_trackbacks');
$templater->register('blogcount', $blogcount);
$templater->register('bloginfo', $bloginfo);
$templater->register('trackbackcount', $trackbackcount);
$templater->register('trackbackids', $trackbackids);
$templater->register('url', $url);
$content = $templater->render();
}
if ($_POST['do'] == 'dodeletetrackback')
{
'pinghistory' => TYPE_BOOL,
));
SELECT
bt.blogtrackbackid, bt.state, bt.blogid, bt.userid, bt.u
rl,
oupids,
= blog.userid)
userid)
log.userid)
$joinsql
WHERE
bt.blogtrackbackid IN (" . implode(',', $trackbackids) .
")
$wheresql
");
{
$entryinfo = array(
'blogid'
'userid'
'usergroupid'
s'],
'membergroupids'
'memberids'
'memberblogids'
'postedby_userid'
'postedby_username'
'grouppermissions'
'membermoderate'
=>
=>
=>
=>
=>
=>
$comment['memberids'],
$comment['memberblogids'],
$comment['postedby_userid'],
$comment['postedby_username'],
$comment['grouppermissions'],
$comment['membermoderate'],
);
($entryinfo['_userid'] == $vbulletin->userinfo['userid']
AND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbul
letin->bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (!fetch_comment_perm('canremovecomments', $entryinfo, $commen
t))
{
}
}
{
cks'));
}
foreach($trackbackarray AS $trackbackid => $trackback)
{
$dataman =& datamanager_init('Blog_Trackback', $vbulletin, ERRTY
PE_SILENT);
$dataman->set_existing($trackback);
$dataman->set_info('skip_build_blog_counters', true);
if ($vbulletin->GPC['pinghistory'])
{
$dataman->set_info('delete_ping_history', true);
}
$dataman->delete();
unset($dataman);
}
foreach(array_keys($bloglist) AS $blogid)
{
}
// empty cookie
($hook = vBulletinHook::fetch_hook('blog_inlinemod_dodeletetrackbacks'))
? eval($hook) : false;
print_standard_redirect('redirect_inline_deletedtrackbacks', true, $forc
eredirect);
}
if ($_POST['do'] == 'deletecomment')
{
$show['removecomments'] = false;
$show['deletecomments'] = false;
$show['deleteoption'] = false;
$checked = array('delete' => 'checked="checked"');
// Validate Comments
SELECT
bt.blogtextid, bt.state, bt.blogid, bt.userid,
oupids,
= blog.userid)
userid)
log.userid)
$joinsql
WHERE
bt.blogtextid IN ($blogtextids)
AND
bt.blogtextid <> blog.firstblogtextid
$wheresql
");
{
$entryinfo = array(
'blogid'
'userid'
'usergroupid'
s'],
'membergroupids'
'memberids'
'memberblogids'
'postedby_userid'
'membermoderate'
);
if (($comment['blog_userid'] != $vbulletin->userinfo['userid'] A
ND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulle
tin->bf_ugp_vbblog_general_permissions['blog_canviewothers'])) OR
($comment['blog_userid'] == $vbulletin->userinfo['userid
'] AND !($vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vb
ulletin->bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (!fetch_comment_perm('candeletecomments', $entryinfo, $commen
t) AND !fetch_comment_perm('canremovecomments', $entryinfo, $comment))
{
}
else
{
if (fetch_comment_perm('candeletecomments', $entryinfo,
$comment))
{
$show['deletecomments'] = true;
}
if (fetch_comment_perm('canremovecomments', $entryinfo,
$comment))
{
$show['removecomments'] = true;
if (!fetch_comment_perm('candeletecomments', $en
tryinfo, $comment))
{
$checked = array('remove' => 'checked="c
hecked"');
}
}
if (fetch_comment_perm('candeletecomments', $entryinfo,
$comment) AND fetch_comment_perm('canremovecomments', $entryinfo, $comment))
{
$show['deleteoption'] = true;
}
}
$bloglist["$entryinfo[blogid]"] = true;
}
{
s'));
}
$commentcount = count($commentarray);
$blogcount = count($bloglist);
// hook
// draw navbar
$navbits = array(
fetch_seo_url('entry', $bloginfo) => $bloginfo['title'],
'' => $vbphrase['delete_comments']
);
$templater = vB_Template::create('blog_inlinemod_delete_comments');
$templater->register('blogtextids', $blogtextids);
$templater->register('blogtextinfo', $blogtextinfo);
$templater->register('checked', $checked);
$templater->register('commentcount', $commentcount);
}
if ($_POST['do'] == 'dodeletecomment')
{
'deletetype' => TYPE_UINT, // 1 - Soft Deletion, 2 - Physicall
y Remove
'deletereason' => TYPE_NOHTMLCOND,
));
$physicaldel = ($vbulletin->GPC['deletetype'] == 2) ? true : false;
SELECT
og.categories, blog.pending,
blog.postedby_userid, blog.postedby_username, bl
og.options AS blogoptions,
oupids,
roupid AS blog_usergroupid,
user2.infractiongroupids AS blog_infractiongroup
ids,
= blog.userid)
userid)
log.userid)
$joinsql
WHERE
blogtextid IN (" . implode(',', $blogtextids) . ")
AND
bt.blogtextid <> blog.firstblogtextid

$wheresql
");
{
$entryinfo = array(
'blogid'
'userid'
'usergroupid'
s'],
'membergroupids'
'memberids'
'memberblogids'
'postedby_userid'
'membermoderate'
);
if (
($physicaldel AND !fetch_comment_perm('canremovecomments
', $entryinfo, $comment)) OR
(!$physicaldel AND !fetch_comment_perm('candeletecomment
s', $entryinfo, $comment))
)
{
o_delete_comments'));
}
$userlist["$comment[blog_userid]"] = true;
}
{
s'));
}
$gotoblog = true;
foreach($commentarray AS $blogtextid => $comment)
{
$dataman =& datamanager_init('BlogText', $vbulletin, ERRTYPE_SIL
ENT, 'blog');
$dataman->set_existing($comment);
$dataman->set_info('hard_delete', $physicaldel);
$dataman->set_info('reason', $vbulletin->GPC['deletereason']);
$dataman->delete();
unset($dataman);
if ($vbulletin->GPC['blogid'] == $comment['blogid'] AND $comment
['blogtextid'] == $comment['firstblogtextid'])
{
$gotoblog = false;
}
//I can't find a place where we allow physical deletes of blog p
osts. This branch may not be
//possible to run.
else if ($comment['blogtextid'] == $blogtextinfo['blogtextid'] A
ND $physicaldel)
{
//if we have information for a specific blog entry, retu
rn there, otherwise return to blog home
//(the same as the previous behavior, but the latter is
possible erroneous -- there is was check
//to see if $vbulletin->GPC['blogid'] was actually set.
//$bloginfo (and $vbulletin->GPC['blogid']) are set up i
n the blog plugin code (if blogid is set)
if($bloginfo)
{
$vbulletin->url = fetch_seo_url('entry', $blogin
fo);
}
else
{
$vbulletin->url = fetch_seo_url('bloghome', arra
y());
}
}
}
{
}
{
}
// empty cookie
($hook = vBulletinHook::fetch_hook('blog_inlinemod_dodeletecomments')) ?
eval($hook) : false;
print_standard_redirect('redirect_inline_deletedcomments', true, $forcer
edirect);
}
if ($_POST['do'] == 'undeletecomment')
{
SELECT

oupids,
= blog.userid)
userid)
log.userid)
$joinsql
WHERE
blogtextid IN ($blogtextids)
AND
blogtextid <> firstblogtextid
AND
bt.state = 'deleted'
$wheresql
");
{
$entryinfo = array(
'blogid'
'userid'
'usergroupid'
s'],
'membergroupids'
'memberids'
'memberblogids'
'postedby_userid'
'membermoderate'
);
if (!fetch_comment_perm('canundeletecomments', $entryinfo, $comm
ent))
{
o_manage_deleted_comments'));
}
if ($comment['dateline'] >= $comment['lastcomment'])
{
$userlist["$entryinfo[userid]"] = true;
}
}
{
s'));
}
$db->query_write("
WHERE type = 'blogtextid' AND
primaryid IN(" . implode(',', array_keys($commentarray))
. ")
");
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog_text
SET state = 'visible'
WHERE blogtextid IN(" . implode(',', array_keys($commentarray))
. ")
");
{
}
{
}
$modlog = array();
foreach(array_keys($commentarray) AS $blogtextid)
{
$modlog[] = array(
'id1'
=>& $commentarray["$blogtextid"]['blog_userid
'],
'id2'
=>& $commentarray["$blogtextid"]['blogid'],
'id3'
=> $blogtextid,
'username' =>& $commentarray["$blogtextid"]['username'],
);
}
blog_moderator_action($modlog, 'comment_x_by_y_undeleted');
// empty cookie
($hook = vBulletinHook::fetch_hook('blog_inlinemod_undeletecomments')) ?
print_standard_redirect('redirect_inline_undeletedcomments', true, $forc
eredirect);
}
if ($_POST['do'] == 'deleteentry')
{
$show['removeentries'] = false;
$show['deleteentries'] = false;
$show['deleteoption'] = false;
$checked = array('delete' => 'checked="checked"');
// Validate Posts
SELECT
oupids,
= blog.userid)
g.userid)
$joinsql
WHERE
$wheresql
");
{
{
}
if (fetch_entry_perm('delete', $post) OR fetch_entry_perm('remov
e', $post))
{
$show['deleteentries'] = (fetch_entry_perm('delete', $po
st));
if (fetch_entry_perm('remove', $post))
{
$show['removeentries'] = true;
if (!fetch_entry_perm('delete', $post))
{
$checked = array('remove' => 'checked="c
hecked"');
}
}
$show['deleteoption'] = (fetch_entry_perm('delete', $pos
t) AND fetch_entry_perm('remove', $post));
$show['delete'] = true;
}
else
{
}
$userarray["$post[userid]"] = true;
}
{
'));
}
$blogcount = count($blogarray);
$usercount = count($userarray);
// hook
// draw navbar
$navbits = array(
//This doesn't actually work. There is not $bloginfo array defi
ned for this action.
//Its not entirely clear what should be here since we are potent
ially deleting entries across multiple user
//blogs, so a specific blog would require some dancing to determ
ine if there is a single user blog to
//link to. We could link to blog home, but in the end its not t
hat important. This produces the same
//immediate html as we get without it (items with blank labels m
ust get filtered out) and there haven't
//been any complaints with that behavior.
//'blog.php?' . $vbulletin->session->vars['sessionurl'] . "b=$bl
oginfo[blogid]" => $bloginfo['title'],
'' => $vbphrase['delete_blog_entries']
);
$templater = vB_Template::create('blog_inlinemod_delete_entries');
$templater->register('blogids', $blogids);
$templater->register('checked', $checked);
$templater->register('usercount', $usercount);
}
if ($_POST['do'] == 'dodeleteentry')
{
'deletetype' => TYPE_UINT, // 1 - Soft Deletion, 2 - Physicall
y Remove
'deletereason' => TYPE_NOHTMLCOND,
));
$physicaldel = ($vbulletin->GPC['deletetype'] == 2) ? true : false;
$visibleposts = array();
$visibleuserlist = array();
$invisibleuserlist = array();
// Validate Posts
SELECT
oupids,
= blog.userid)
g.userid)
$joinsql
WHERE
blog.blogid IN (" . implode(',', $blogids) . ")
$wheresql
");
{
($post['userid'] == !($vbulletin->userinfo['userid'] AND
$vbulletin->userinfo['permissions']['vbblog_general_permissions'] & $vbulletin>bf_ugp_vbblog_general_permissions['blog_canviewown'])))
{
}
if (fetch_entry_perm('remove', $post) OR fetch_entry_perm('delet
e', $post))
{
if (($physicaldel AND !fetch_entry_perm('remove', $post)
) OR (!$physicaldel AND !fetch_entry_perm('delete', $post)))
{
standard_error(fetch_error('you_do_not_have_perm
ission_to_remove_blog_entries'));
}
}
else
{
o_remove_blog_entries'));
}
if ($post['state'] == 'visible')
{
if (empty($visibleuserlist["$post[userid]"]))
{
$visibleuserlist["$post[userid]"] = 1;
}
else
{
$visibleuserlist["$post[userid]"]++;
}
}
else
{
if (empty($invisibleuserlist["$post[userid]"]))
{
$invisibleuserlist["$post[userid]"] = 1;
}
else
{
$invisibleuserlist["$post[userid]"]++;
}
}
}
{
'));
}
foreach($blogarray AS $blogid => $blog)
{
$dataman =& datamanager_init('Blog', $vbulletin, ERRTYPE_SILENT,
'blog');
$dataman->set_existing($blog);
$dataman->set_info('skip_build_category_counters', true);
if ($blog['state'] == 'draft' OR $blog['pending'])
{
// Always perm delete drafts - only the owner can do thi
s
$dataman->set_info('hard_delete', true);
}
else
{
$dataman->set_info('hard_delete', $physicaldel);
}
$dataman->set_info('reason', $vbulletin->GPC['deletereason']);
$dataman->delete();
unset($dataman);
}
if (!empty($visibleuserlist))
{
$bycount = array();
foreach ($visibleuserlist AS $userid => $total)
{
}
$casesql = array();
{
}
{
$db->query_write("
SET entries = entries CASE
ELSE 0
END
($visibleuserlist)) . ")
");
}
}
foreach (array_unique(array_merge(array_keys($invisibleuserlist), array
_keys($visibleuserlist))) AS $userid)
{
}
build_blog_stats();
// empty cookie
($hook = vBulletinHook::fetch_hook('blog_inlinemod_dodeleteentries')) ?
print_standard_redirect('redirect_inline_deletedentries', true, $forcere
direct);
}
if ($_POST['do'] == 'undeleteentry')
{
// Validate Entries
SELECT
_deletionlog.userid AS del_userid, blog.options AS blogoptions, blog.postedby_us
erid,
oupids,
= blog.userid)
g.userid)
LEFT JOIN " . TABLE_PREFIX . "blog_deletionlog AS blog_deletionl
og ON (blog.blogid = blog_deletionlog.primaryid AND blog_deletionlog.type = 'blo
gid')
$joinsql
WHERE
AND
blog.state = 'deleted'
$wheresql
");
{
{
}
if (!fetch_entry_perm('undelete', $post))
{
o_manage_deleted_entries'));
}
if (empty($userlist["$post[userid]"]))
{
$userlist["$post[userid]"] = 1;
}
else
{
$userlist["$post[userid]"]++;
}
}
{
'));
}
$db->query_write("
WHERE type = 'blogid' AND
primaryid IN(" . implode(',', array_keys($blogarray)) .
")
");
$db->query_write("
UPDATE " . TABLE_PREFIX . "blog
SET state = 'visible'
WHERE blogid IN(" . implode(',', array_keys($blogarray)) . ")
");
if (!empty($userlist))
{
$bycount = array();
foreach ($userlist AS $userid => $total)
{
}
$casesql = array();
{
}
{
$db->query_write("
SET entries = entries +
CASE
ELSE 0
END
($userlist)) . ")
");
}
}
$modlog = array();
foreach(array_keys($blogarray) AS $blogid)
{
$modlog[] = array(
'id1'
=>& $blogarray["$blogid"]['userid'],
'id2'
=> $blogid,
);
}
blog_moderator_action($modlog, 'blogentry_undeleted');
foreach (array_keys($userlist) AS $userid)
{
}
build_blog_stats();
// empty cookie
($hook = vBulletinHook::fetch_hook('blog_inlinemod_undeleteentries')) ?
print_standard_redirect('redirect_inline_undeletedentries', true, $force
redirect);
}
if ($userinfo)
{
$sidebar =& build_user_sidebar($userinfo);
}
else
{
$sidebar =& build_overview_sidebar();
}
$navbits = construct_navbits($navbits);
$navbar = render_navbar_template($navbits);
($hook = vBulletinHook::fetch_hook('blog_inlinemod_complete')) ? eval($hook) : f
alse;
$headinclude .= vB_Template::create('blog_css')->render();
$templater = vB_Template::create('BLOG');
$templater->register_page_templates();
$templater->register('abouturl', $abouturl);
$templater->register('blogheader', $blogheader);
$templater->register('blogrssinfo', $blogrssinfo);
$templater->register('bloguserid', $bloguserid);
$templater->register('content', $content);
$templater->register('navbar', $navbar);
$templater->register('onload', $onload);
$templater->register('pagetitle', $pagetitle);
$templater->register('pingbackurl', $pingbackurl);
$templater->register('sidebar', $sidebar);
$templater->register('trackbackurl', $trackbackurl);
$templater->register('usercss_profile_preview', $usercss_profile_preview
);
print_output($templater->render());
/*======================================================================*\
|| ####################################################################
|| #
|| # SVN: $Revision: 53471 $
|| ####################################################################
\*======================================================================*/
?>

Blog Inlinemod

Enviado por

Dados do documento

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

Blog Inlinemod

Enviado por

Direitos autorais:

Formatos disponíveis

<?

if (count($trackbackids) > $itemlimit)

LEFT JOIN " . TABLE_PREFIX . "user AS user2 ON (user2.userid = b

$comment = array_merge($comment, convert_bits_to_array($comment[

$navbits[fetch_seo_url('entry', $bloginfo)] = $bloginfo['title'];

bt.blogtextid <> blog.firstblogtextid

user.membergroupids, user.usergroupid, user.infractiongr

Você também pode gostar