<?

php
/*======================================================================*\
|| #################################################################### ||
|| # vBulletin 4.2.0
|| # ---------------------------------------------------------------- # ||
|| # Copyright 2000-2012 vBulletin Solutions Inc. All Rights Reserved. ||
|| # This file may not be redistributed in whole or significant part. # ||
|| # ---------------- VBULLETIN IS NOT FREE SOFTWARE ---------------- # ||
|| # http://www.vbulletin.com | http://www.vbulletin.com/license.html # ||
|| #################################################################### ||
\*======================================================================*/
// ######################## SET PHP ENVIRONMENT ###########################
error_reporting(E_ALL & ~E_NOTICE);
// ##################### DEFINE IMPORTANT CONSTANTS #######################
define('THIS_SCRIPT', 'announcement');
define('CSRF_PROTECTION', true);
// #################### PRE-CACHE TEMPLATES AND DATA ######################
// get special phrase groups
$phrasegroups = array(
'postbit',
'reputationlevel',
'posting',
);
// get special data templates from the datastore
$specialtemplates = array(
'smiliecache',
'bbcodecache'
);
// pre-cache templates used by all actions
$globaltemplates = array();
// pre-cache templates used by specific actions
$actiontemplates = array(
'view' => array(
'announcement',
'im_aim',
'im_icq',
'im_msn',
'im_yahoo',
'im_skype',
'postbit',
'postbit_wrapper',
'postbit_onlinestatus',
'bbcode_code',
'bbcode_html',
'bbcode_php',
'bbcode_quote',
'bbcode_video',
),
'edit' => array(
'announcement_edit',
),
);
if (empty($_REQUEST['do']))

{
$_REQUEST['do'] = 'view';
}
else if ($_REQUEST['do'] == 'edit')
{
define('GET_EDIT_TEMPLATES', true);
}
// ########################## REQUIRE BACK-END ############################
require_once('./global.php');
require_once(DIR . '/includes/functions_bigthree.php');
// ########################################################################
// ######################### START MAIN SCRIPT ############################
// ########################################################################
$vbulletin->input->clean_gpc('r', 'announcementid', TYPE_UINT);
($hook = vBulletinHook::fetch_hook('announcement_start')) ? eval($hook) : false;
// #############################################################################
// verify announcement id if specified
if ($vbulletin->GPC['announcementid'])
{
$announcementinfo = verify_id('announcement', $vbulletin->GPC['announcem
entid'], 1, 1);
if ($announcementinfo['forumid'] != -1 AND $_POST['do'] != 'update')
{
$vbulletin->GPC['forumid'] = $announcementinfo['forumid'];
}
$announcementinfo = array_merge($announcementinfo , convert_bits_to_arra
y($announcementinfo['announcementoptions'], $vbulletin->bf_misc_announcementopti
ons));
// verify that the visiting user has permission to view this announcemen
t
if (($announcementinfo['startdate'] > TIMENOW OR $announcementinfo['endd
ate'] < TIMENOW) AND !can_moderate($vbulletin->GPC['forumid'], 'canannounce'))
{
// announcement date is out of range and user is not a moderator
print_no_permission();
}
}
// #############################################################################
// delete an announcement
if ($_POST['do'] == 'delete')
{
if ($vbulletin->input->clean_gpc('p', 'delete', TYPE_STR) == 'delete' AN
D can_moderate($announcementinfo['forumid'], 'canannounce'))
{
$anncdata =& datamanager_init('Announcement', $vbulletin, ERRTYP
E_STANDARD);
$anncdata->set_existing($announcementinfo);
$anncdata->delete();
if ($announcementinfo['forumid'] == -1)
{
$vbulletin->url = fetch_seo_url('forumhome', array());
}

else
{
$vbulletin->url = fetch_seo_url('forum', array('forumid'
=> $announcementinfo['forumid'], 'title' => $vbulletin->forumcache["$announceme
ntinfo[forumid]"]));
}
print_standard_redirect(array('deleted_announcement',$announceme
ntinfo['title']));
}
else
{
exec_header_redirect('announcement.php?' . $vbulletin->session->
vars['sessionurl'] . "do=edit&a=$announcementinfo[announcementid]");
}
}
// #############################################################################
// insert or update an announcement
if ($_POST['do'] == 'update')
{
$vbulletin->input->clean_array_gpc('p', array(
'wysiwyg'
=> TYPE_BOOL,
'preview'
=> TYPE_STR,
'title'
=> TYPE_STR,
'message'
=> TYPE_STR,
'forumid'
=> TYPE_INT,
'startdate' => TYPE_ARRAY_UINT,
'enddate'
=> TYPE_ARRAY_UINT,
'options'
=> TYPE_ARRAY_BOOL,
'reset_views' => TYPE_BOOL
));
if (!can_moderate($vbulletin->GPC['forumid'], 'canannounce'))
{
// show no permission
print_no_permission();
}
// unwysiwygify the incoming data
if ($vbulletin->GPC['wysiwyg'])
{
require_once(DIR . '/includes/class_wysiwygparser.php');
$html_parser = new vB_WysiwygHtmlParser($vbulletin);
$vbulletin->GPC['message'] = $html_parser->parse_wysiwyg_html_to
_bbcode($vbulletin->GPC['message'], $vbulletin->GPC['options']['allowhtml']);
}
$anncdata =& datamanager_init('Announcement', $vbulletin, ERRTYPE_STANDA
RD);
if ($announcementinfo)
{
$anncdata->set_existing($announcementinfo);
if ($vbulletin->GPC['reset_views'])
{
define('RESET_VIEWS', true);
$anncdata->set('views', 0);
}
}

else
{
$anncdata->set('userid', $vbulletin->userinfo['userid']);
}
$vbulletin->GPC['enddate']['hour'] = 23;
$vbulletin->GPC['enddate']['minute'] = 59;
$vbulletin->GPC['enddate']['second'] = 59;
$anncdata->set('title', $vbulletin->GPC['title']);
$anncdata->set('pagetext', $vbulletin->GPC['message']);
$anncdata->set('forumid', $vbulletin->GPC['forumid']);
$anncdata->set('startdate', $vbulletin->GPC['startdate']);
$anncdata->set('enddate', $vbulletin->GPC['enddate']);
foreach ($vbulletin->bf_misc_announcementoptions AS $key => $val)
{
$anncdata->set_bitfield('announcementoptions', $key, $vbulletin>GPC['options']["$key"]);
}
$announcementid = $anncdata->save();
clear_autosave_text('vBForum_Announcement', $announcementinfo['announcem
entid'], 0, $vbulletin->userinfo['userid']);
if ($announcementinfo)
{
if ($vbulletin->GPC['reset_views'])
{
$db->query_write("DELETE FROM " . TABLE_PREFIX . "announ
cementread WHERE announcementid = $announcementinfo[announcementid]");
}
$announcementid = $announcementinfo['announcementid'];
}
$title = $anncdata->fetch_field('title');
$vbulletin->url = 'announcement.php?' . $vbulletin->session->vars['sessi
onurl'] . "a=$announcementid";
print_standard_redirect(array('saved_announcement',$title));
}
// #############################################################################
// edit an announcement
if ($_REQUEST['do'] == 'edit')
{
require_once(DIR . '/includes/functions_misc.php');
require_once(DIR . '/includes/functions_editor.php');
require_once(DIR . '/includes/functions_newpost.php');
require_once(DIR . '/includes/modfunctions.php');
if ($announcementinfo['announcementid'])
{
if (!can_moderate($announcementinfo['forumid'], 'canannounce'))
{
// show no permission
print_no_permission();
}

$show['editing_mode'] = true;
$announcementinfo['title'] = fetch_censored_text($announcementin
fo['title']);
}
else
{
if (!can_moderate($vbulletin->GPC['forumid'], 'canannounce'))
{
// show no permission
print_no_permission();
}
$announcementinfo = array(
'forumid'
=> $vbulletin->GPC['forumid'],
'title'
=> '',
'pagetext'
=> '',
'startdate'
=> TIMENOW,
'enddate'
=> vbmktime(0, 0, 0, vbdate('n', T
IMENOW, false, false) + 1, vbdate('j', TIMENOW, false, false), vbdate('Y', TIMEN
OW, false, false)),
'announcementoptions' => 29
);
$show['editing_mode'] = false;
}
$announcementinfo['title_safe'] = htmlspecialchars($announcementinfo['ti
tle']);
// checkboxes
$checked = array();
foreach ($vbulletin->bf_misc_announcementoptions AS $key => $val)
{
$checked["$key"] = ($announcementinfo['announcementoptions'] & $
val ? ' checked="checked"' : '');
}
// date fields
foreach (array('start', 'end') AS $date_type)
{
$GLOBALS["{$date_type}_date_array"] = array(
'day' => vbdate('j', $announcementinfo["{$date_type}da
te"], false, false),
'month' => vbdate('n', $announcementinfo["{$date_type}da
te"], false, false),
'year' => vbdate('Y', $announcementinfo["{$date_type}da
te"], false, false)
);
$GLOBALS["{$date_type}_month_selected"] = array();
for ($i = 1; $i <= 12; $i++)
{
$GLOBALS["{$date_type}_month_selected"]["$i"] = ($i == $
GLOBALS["{$date_type}_date_array"]['month'] ? ' selected="selected"' : '');
}
for ($i = 1; $i <= 31; $i++)
{
$GLOBALS["{$date_type}_day_selected"]["$i"] = ($i == $GL
OBALS["{$date_type}_date_array"]['day'] ? ' selected="selected"' : '');

}
}
// forum choice
$forum_options_array = fetch_moderator_forum_options($vbphrase['all_foru
ms'], ($vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_
ugp_adminpermissions['ismoderator']), false, 'canannounce', '--', false);
$forum_options = '';
foreach ($forum_options_array AS $optionvalue => $optiontitle)
{
if ($optionvalue == $announcementinfo['forumid'])
{
$optionselected = ' selected="selected"';
$optionclass = 'fjsel';
}
else
{
$optionselected = '';
$optionclass = '';
}
$forum_options .= render_option_template($optiontitle, $optionva
lue, $optionselected, $optionclass);
}
$post =& $announcementinfo;
// build editor
$editorid = construct_edit_toolbar(
htmlspecialchars_uni($announcementinfo['pagetext']),
0, // is html?
'announcement', // forumid
true, // allow smilies
($announcementinfo['announcementoptions'] & $vbulletin->bf_misc_
announcementoptions['allowsmilies']) ? 1 : 0, // parse smilies
false,
'fe',
'',
array(),
'content',
'vBForum_Announcement',
$announcementinfo['announcementid'],
0,
false,
true,
'titlefield'
);
// build navbar
$navbits = array();
$navbits[fetch_seo_url('forumhome', array())] = $vbphrase['forum'];
if ($announcementinfo['forumid'] == -1)
{
$navbits["announcement.php?" . $vbulletin->session->vars['sessio
nurl'] . "do=view&amp;a=$announcementinfo[announcementid]"] = $vbphrase['global_
announcement'];
}
else
{
$foruminfo =& $vbulletin->forumcache["$announcementinfo[forumid]

"];
$parentlist = array_reverse(explode(',', substr($foruminfo['pare
ntlist'], 0, -3)));
foreach ($parentlist AS $forumID)
{
$forumTitle = $vbulletin->forumcache["$forumID"]['title'
];
$navbits[fetch_seo_url('forum', array('forumid' => $foru
mID, 'title' => $forumTitle))] = $forumTitle;
}
$navbits['announcement.php?' . $vbulletin->session->vars['sessio
nurl'] . "f=$announcementinfo[forumid]"] = $vbphrase['announcements'];
}
if ($announcementinfo['announcementid'])
{
$navbits['announcement.php?' . $vbulletin->session->vars['sessio
nurl'] . "a=$announcementinfo[announcementid]"] = $announcementinfo['title'];
$navbits[''] = $vbphrase['edit_announcement'];
}
else
{
$navbits[''] = $vbphrase['post_new_announcement'];
}
$navbits[''] = ($announcementinfo['announcementid'] ? $vbphrase['edit_an
nouncement'] : $vbphrase['post_new_announcement']);
$navbits = construct_navbits($navbits);
$show['signaturecheckbox'] = ($permissions['genericpermissions'] & $vbul
letin->bf_ugp_genericpermissions['canusesignature'] AND $vbulletin->userinfo['s
ignature']);
$navbar = render_navbar_template($navbits);
$templater = vB_Template::create('announcement_edit');
$templater->register_page_templates();
$templater->register('announcementinfo', $announcementinfo);
$templater->register('checked', $checked);
$templater->register('editorid', $editorid);
$templater->register('end_date_array', $end_date_array);
$templater->register('end_month_selected', $end_month_selected);
$templater->register('forum_options', $forum_options);
$templater->register('messagearea', $messagearea);
$templater->register('navbar', $navbar);
$templater->register('start_date_array', $start_date_array);
$templater->register('start_month_selected', $start_month_select
ed);
$templater->register('usernamecode', $usernamecode);
$templater->register('foruminfo', $foruminfo);
$templater->register('start_day_selected', $start_day_selected);
$templater->register('end_day_selected', $end_day_selected);
print_output($templater->render());
}
// #############################################################################
if ($_REQUEST['do'] == 'view')
{
$forumlist = '';
if ($announcementinfo['forumid'] > -1 OR $vbulletin->GPC['forumid'])
{
$foruminfo = verify_id('forum', $vbulletin->GPC['forumid'], 1, 1

);
$curforumid = $foruminfo['forumid'];
$forumperms = fetch_permissions($foruminfo['forumid']);
if (!($forumperms & $vbulletin->bf_ugp_forumpermissions['canview
']) OR !($forumperms & $vbulletin->bf_ugp_forumpermissions['canviewthreads']))
{
print_no_permission();
}
// check if there is a forum password and if so, ensure the user
has it set
verify_forum_password($foruminfo['forumid'], $foruminfo['passwor
d']);
$forumlist = fetch_forum_clause_sql($foruminfo['forumid'], 'anno
uncement.forumid');
}
else if (!$announcementinfo['announcementid'])
{
eval(standard_error(fetch_error('invalidid', $vbphrase['announce
ment'], $vbulletin->options['contactuslink'])));
}
$navpopup = array(
'id'
=> 'annoucements_navpopup',
'title' => $foruminfo['title_clean'],
'link' => fetch_seo_url('forum', $foruminfo),
);
construct_quick_nav($navpopup);
$hook_query_fields = $hook_query_joins = $hook_query_where = '';
($hook = vBulletinHook::fetch_hook('announcement_query')) ? eval($hook)
: false;
$announcements = $db->query_read_slave("
SELECT announcement.announcementid, announcement.announcementid
AS postid, startdate, enddate, announcement.title, pagetext, announcementoptions
, views,
user.*, userfield.*, usertextfield.*,
sigpic.userid AS sigpic, sigpic.dateline AS sigpicdateli
ne, sigpic.width AS sigpicwidth, sigpic.height AS sigpicheight,
IF(displaygroupid=0, user.usergroupid, displaygroupid) A
S displaygroupid, infractiongroupid
" . ($vbulletin->options['avatarenabled'] ? ",avatar.ava
tarpath, NOT ISNULL(customavatar.userid) AS hascustomavatar, customavatar.dateli
ne AS avatardateline,customavatar.width AS avwidth,customavatar.height AS avheig
ht" : "") . "
" . (($vbulletin->userinfo['userid']) ? ", NOT ISNULL(an
nouncementread.announcementid) AS readannouncement" : "") . "
$hook_query_fields
FROM " . TABLE_PREFIX . "announcement AS announcement
" . (($vbulletin->userinfo['userid']) ? "LEFT JOIN " . TABLE_PRE
FIX . "announcementread AS announcementread ON(announcementread.announcementid =
announcement.announcementid AND announcementread.userid = " . $vbulletin->useri
nfo['userid'] . ")" : "") . "
LEFT JOIN " . TABLE_PREFIX . "user AS user ON(user.userid=announ
cement.userid)
LEFT JOIN " . TABLE_PREFIX . "userfield AS userfield ON(userfiel
d.userid=announcement.userid)

LEFT JOIN " . TABLE_PREFIX . "usertextfield AS usertextfield ON(

usertextfield.userid=announcement.userid)
LEFT JOIN " . TABLE_PREFIX . "sigpic AS sigpic ON(sigpic.userid
= announcement.userid)
" . ($vbulletin->options['avatarenabled'] ? "LEFT JOIN " . TABLE
_PREFIX . "avatar AS avatar ON(avatar.avatarid=user.avatarid)
LEFT JOIN " . TABLE_PREFIX . "customavatar AS customavatar ON(cu
stomavatar.userid=announcement.userid)" : "") . "
$hook_query_joins
WHERE
" . ($vbulletin->GPC['announcementid'] ?
"announcement.announcementid = " . $vbulletin->G
PC['announcementid'] :
"startdate <= " . TIMENOW . " AND enddate >= " .
TIMENOW . " " . (!empty($forumlist) ? "AND $forumlist" : "")
) . "
$hook_query_where
ORDER BY startdate DESC, announcementid DESC
");
if ($db->num_rows($announcements) == 0)
{ // no announcements
eval(standard_error(fetch_error('invalidid', $vbphrase['announce
ment'], $vbulletin->options['contactuslink'])));
}
if (!$vbulletin->options['oneannounce'] AND $vbulletin->GPC['announcemen
tid'] AND !empty($forumlist))
{
$anncount = $db->query_first_slave("
SELECT COUNT(*) AS total
FROM " . TABLE_PREFIX . "announcement AS announcement
WHERE startdate <= " . TIMENOW . "
AND enddate >= " . TIMENOW . "
AND $forumlist
");
$anncount['total'] = intval($anncount['total']);
$show['viewall'] = $anncount['total'] > 1 ? true : false;
}
else
{
$show['viewall'] = false;
}
require_once(DIR . '/includes/class_postbit.php');
$show['announcement'] = true;
$counter = 0;
$anncids = array();
$announcebits = '';
$announceread = array();
$postbit_factory = new vB_Postbit_Factory();
$postbit_factory->registry =& $vbulletin;
$postbit_factory->forum =& $foruminfo;
$postbit_factory->cache = array();
$postbit_factory->bbcode_parser = new vB_BbCodeParser($vbulletin, fetch_
tag_list());

while ($post = $db->fetch_array($announcements))

{
$postbit_obj =& $postbit_factory->fetch_postbit('announcement');
$post['counter'] = ++$counter;
$announcebits .= $postbit_obj->construct_postbit($post);
$anncids[] = $post['announcementid'];
$announceread[] = "($post[announcementid], " . $vbulletin->useri
nfo['userid'] . ")";
}
if (!empty($anncids))
{
$db->shutdown_query("
UPDATE " . TABLE_PREFIX . "announcement
SET views = views + 1
WHERE announcementid IN (" . implode(', ', $anncids) . "
)
");
if ($vbulletin->userinfo['userid'])
{
$db->shutdown_query("
REPLACE INTO " . TABLE_PREFIX . "announcementrea
d
(announcementid, userid)
VALUES
" . implode(', ', $announceread) . "
");
}
}
// show add/edit link?
$show['post_new_announcement'] = can_moderate($foruminfo['forumid'], 'ca
nannounce');
$show['signaturecheckbox'] = ($permissions['genericpermissions'] & $vbul
letin->bf_ugp_genericpermissions['canusesignature'] AND $vbulletin->userinfo['si
gnature']);
// build navbar
$navbits = array();
$navbits[fetch_seo_url('forumhome', array())] = $vbphrase['forum'];
if ($announcementinfo['forumid'] == -1)
{
$navbits["announcement.php?" . $vbulletin->session->vars['sessio
nurl'] . "a=$announcementinfo[announcementid]"] = $vbphrase['announcements'];
$navbits[''] = $announcementinfo['title'];
$show['global'] = true;
}
else
{
$parentlist = array_reverse(explode(',', substr($foruminfo['pare
ntlist'], 0, -3)));
foreach ($parentlist AS $forumID)
{
$forumTitle = $vbulletin->forumcache["$forumID"]['title'
];
$navbits[fetch_seo_url('forum', array('forumid' => $foru

mID, 'title' => $forumTitle))] = $forumTitle;

}
$navbits[''] = $vbphrase['announcements'];
}
$navbits = construct_navbits($navbits);
($hook = vBulletinHook::fetch_hook('announcement_complete')) ? eval($hoo
k) : false;
$navbar = render_navbar_template($navbits);
$templater = vB_Template::create('announcement');
$templater->register_page_templates();
$templater->register('anncount', $anncount);
$templater->register('announcebits', $announcebits);
$templater->register('foruminfo', $foruminfo);
$templater->register('forumjump', $forumjump);
$templater->register('navbar', $navbar);
$templater->register('spacer_close', $spacer_close);
$templater->register('spacer_open', $spacer_open);
print_output($templater->render());
}
/*======================================================================*\
|| ####################################################################
|| #
|| # CVS: $RCSfile$ - $Revision: 57655 $
|| ####################################################################
\*======================================================================*/
?>