2007-05-26 17:00:01 +00:00
|
|
|
<?php
|
2007-06-14 19:43:11 +00:00
|
|
|
|
2007-05-26 17:00:01 +00:00
|
|
|
$cvs_version_tracker[]="\$Id$";
|
|
|
|
|
|
|
|
|
|
function pm_header() {
|
|
|
|
|
echo "<div>\n";
|
|
|
|
|
echo " <a href=\"forum_pm.php?action=inbox\">Inbox</a>\n";
|
|
|
|
|
echo " | <a href=\"forum_pm.php?action=new\">Write</a>\n";
|
|
|
|
|
echo " | <a href=\"forum_index.php\">Forum index</a>\n";
|
|
|
|
|
echo "</div>\n";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function pm_create_new($error = null) {
|
|
|
|
|
page_head("Private messages : Create new");
|
|
|
|
|
pm_header();
|
|
|
|
|
|
2007-08-20 17:59:24 +00:00
|
|
|
/**
|
|
|
|
|
* Preview
|
|
|
|
|
**/
|
|
|
|
|
if (post_str("preview", true) == "Preview") {
|
|
|
|
|
$options = new output_options;
|
|
|
|
|
echo "<div id=\"preview\">\n";
|
|
|
|
|
echo "<div class=\"header\">Preview</div>\n";
|
|
|
|
|
echo output_transform(post_str("content", true), $options);
|
|
|
|
|
echo "</div>\n";
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-26 17:00:01 +00:00
|
|
|
global $logged_in_user;
|
|
|
|
|
$replyto = get_int("replyto", true);
|
|
|
|
|
$userid = get_int("userid", true);
|
|
|
|
|
|
|
|
|
|
if ($replyto) {
|
|
|
|
|
$message = mysql_query("SELECT * FROM private_messages WHERE userid=".$logged_in_user->id." AND id=$replyto");
|
|
|
|
|
if ($message) {
|
|
|
|
|
$message = mysql_fetch_object($message);
|
|
|
|
|
$content = "[quote]".$message->content."[/quote]\n";
|
|
|
|
|
$userid = $message->senderid;
|
|
|
|
|
$user = get_user_from_id($userid);
|
|
|
|
|
if ($user != null) {
|
|
|
|
|
$writeto = $userid." (".$user->name.")";
|
|
|
|
|
}
|
|
|
|
|
$subject = $message->subject;
|
|
|
|
|
if (substr($subject, 0, 3) != "re:") {
|
|
|
|
|
$subject = "re: ".$subject;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} elseif ($userid) {
|
|
|
|
|
$user = get_user_from_id($userid);
|
|
|
|
|
if ($user != null) {
|
|
|
|
|
$writeto = $userid." (".$user->name.")";
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
$writeto = post_str("to", true);
|
|
|
|
|
$subject = post_str("subject", true);
|
|
|
|
|
$content = post_str("content", true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$subject = htmlspecialchars($subject);
|
|
|
|
|
|
|
|
|
|
if ($error != null) {
|
|
|
|
|
echo "<div class=\"error\">$error</div>\n";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
echo "<form action=\"forum_pm.php\" method=\"post\">\n";
|
|
|
|
|
echo "<input type=\"hidden\" name=\"action\" value=\"send\">\n";
|
|
|
|
|
echo form_tokens($logged_in_user->authenticator);
|
|
|
|
|
start_table();
|
|
|
|
|
echo "<tr><th>To<br /><span class=\"smalltext\">User IDs or unique usernames, separated with commas</span></th>\n";
|
|
|
|
|
echo "<td><input type=\"text\" name=\"to\" value=\"$writeto\" size=\"60\"></td></tr>\n";
|
|
|
|
|
echo "<tr><th>Subject</th><td><input type=\"text\" name=\"subject\" value=\"$subject\" size=\"60\"></td></tr>\n";
|
|
|
|
|
echo "<tr><th>Message<br /><span class=\"smalltext\">".html_info()."</span></th>\n";
|
|
|
|
|
echo "<td><textarea name=\"content\" rows=\"18\" cols=\"80\">$content</textarea></td></tr>\n";
|
2007-08-20 17:59:24 +00:00
|
|
|
echo "<tr><td></td><td><input type=\"submit\" name=\"preview\" value=\"Preview\"> <input type=\"submit\" value=\"Send message\"></td></tr>\n";
|
2007-05-26 17:00:01 +00:00
|
|
|
end_table();
|
|
|
|
|
|
|
|
|
|
page_tail();
|
|
|
|
|
exit();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function pm_send($to, $subject, $content) {
|
|
|
|
|
global $logged_in_user;
|
|
|
|
|
$userid = $to->id;
|
|
|
|
|
$senderid = $logged_in_user->id;
|
|
|
|
|
$sql_subject = mysql_real_escape_string($subject);
|
|
|
|
|
$sql_content = mysql_real_escape_string($content);
|
2007-06-04 19:35:11 +00:00
|
|
|
$result = mysql_query("SELECT pm_notification FROM forum_preferences WHERE userid=".$userid);
|
|
|
|
|
if ($result) {
|
|
|
|
|
$result = mysql_fetch_object($result);
|
|
|
|
|
if ($result->pm_notification == 1) {
|
|
|
|
|
$send_email = true;
|
|
|
|
|
} else {
|
|
|
|
|
$send_email = false;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
$send_email = false;
|
|
|
|
|
}
|
2007-05-26 17:00:01 +00:00
|
|
|
mysql_query("INSERT INTO private_messages (userid, senderid, date, subject, content) VALUES ($userid, $senderid, UNIX_TIMESTAMP(), '$sql_subject', '$sql_content')");
|
2007-06-04 19:35:11 +00:00
|
|
|
if ($send_email) { // Send email notification
|
2007-05-26 17:00:01 +00:00
|
|
|
$message = "Dear ".$to->name.",\n\n";
|
|
|
|
|
$message .= "You have received a new private message at ".PROJECT." from ".$logged_in_user->name.", entitled \"".$subject."\".\n\n";
|
|
|
|
|
$message .= "To read the original version, respond to, or delete this message, you must log in here:\n";
|
2007-07-05 19:37:33 +00:00
|
|
|
$message .= URL_BASE."/forum_pm.php\n\n";
|
2007-05-26 17:00:01 +00:00
|
|
|
$message .= "Do not reply to this message. To disable email notification, go to\n";
|
2007-07-05 19:37:33 +00:00
|
|
|
$message .= URL_BASE."/prefs.php?subset=project\n";
|
2007-05-26 17:00:01 +00:00
|
|
|
$message .= "and change email notification settings.\n";
|
|
|
|
|
|
|
|
|
|
send_email($to, "[".PROJECT."] Private message notification", $message);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2007-06-14 19:43:11 +00:00
|
|
|
function pm_count($userid, $duration) {
|
|
|
|
|
$time = time() - $duration;
|
|
|
|
|
$result = mysql_query("SELECT COUNT(*) AS total FROM private_messages WHERE senderid=".$userid." AND date>".$time);
|
|
|
|
|
if ($result) {
|
|
|
|
|
$result = mysql_fetch_object($result);
|
|
|
|
|
return $result->total;
|
|
|
|
|
}
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function check_pm_count($userid) {
|
|
|
|
|
if ((pm_count($userid, 60) >= 2) || (pm_count($userid, 600) >= 5) ||
|
|
|
|
|
(pm_count($userid, 3600) >= 15) || (pm_count($userid, 86400) >= 50)) {
|
|
|
|
|
error_page("You are not allowed to send privates messages so often. Please wait some time before sending more messages.");
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-26 17:00:01 +00:00
|
|
|
?>
|
