<?php
$cvs_version_tracker[]="\$Id$";  //Generated automatically - do not edit

require_once('../inc/db.inc');
require_once('../inc/sanitize_html.inc');
require_once('../inc/time.inc');
require_once('../inc/forum_moderators.inc');

define('AVATAR_WIDTH', 100);
define('AVATAR_HEIGHT',100);

$special_user_bitfield[0]="Forum moderator";
$special_user_bitfield[1]="Project administrator";
$special_user_bitfield[2]="Project developer";
$special_user_bitfield[3]="Project tester";
$special_user_bitfield[4]="Volunteer developer";
$special_user_bitfield[5]="Volunteer tester";
$special_user_bitfield[6]="Project scientist";

define('ST_NEW_TIME', 1209600); //3600*24*14 - 14 days
define('ST_NEW', 'New member');

define('MAXIMUM_EDIT_TIME',3600); //Maximally allow edits of forums posts up till one hour after posting.

define('FORUM_OPEN_LINK_IN_NEW_WINDOW',1);
define('MAX_FORUM_LOGGING_TIME', 604800); //3600*24*7 - 7 days
define('NO_CONTROLS', 0);
define('FORUM_CONTROLS', 1);
define('HELPDESK_CONTROLS', 2);
define("EXCERPT_LENGTH", "120");

define('NEW_IMAGE', 'unread_post.png');
define('NEW_IMAGE_HEIGHT','15');
define('EMPHASIZE_IMAGE', 'emphasized_post.png');
define('EMPHASIZE_IMAGE_HEIGHT','15');
define('FILTER_IMAGE', 'filtered_post.png');
define('FILTER_IMAGE_HEIGHT','15');

define ('SOLUTION', 'This answered my question');
define ('SUFFERER', 'I also have this question');
define ('OFF_TOPIC', 'Off-topic');

define ('DEFAULT_LOW_RATING_THRESHOLD', -25);
define ('DEFAULT_HIGH_RATING_THRESHOLD', 5);

$forum_sort_styles['modified-new'] = "Most recent post first";
$forum_sort_styles['modified-old'] = "Least recent post first";
//$forum_sort_styles['activity-most'] = "Most recent activity first";
$forum_sort_styles['views-most'] = "Most views first";
$forum_sort_styles['replies-most'] = "Most posts first";

$thread_sort_styles['timestamp'] = "Newest first";
$thread_sort_styles['timestamp_asc'] = "Oldest first";
$thread_sort_styles['score'] = "Highest rated first";

$faq_sort_styles['create_time'] = "Most recent question first";
$faq_sort_styles['timestamp'] = "Most recent answer first";
$faq_sort_styles['activity'] = "Most frequently asked first";

$answer_sort_styles['score'] = "Highest score first";
$answer_sort_styles['timestamp'] = "Most recent first";
$answer_sort_styles['timestamp_asc'] = "Oldest first";

$thread_filter_styles['2'] = "\"Very helpful\"";
$thread_filter_styles['1'] = "At least \"helpful\"";
$thread_filter_styles['0'] = "At least \"neutral\"";
$thread_filter_styles['-1'] = "At least \"unhelpful\"";
$thread_filter_styles['-2'] = "All posts";

$post_ratings['2'] = "Very helpful (+2)";
$post_ratings['1'] = "Helpful (+1)";
$post_ratings['0'] = "Neutral";
$post_ratings['-1'] = "Not helpful (-1)";
$post_ratings['-2'] = "Off topic (-2)";

// process a user-supplied title to remove HTML stuff
//
function cleanup_title($title) {
    $x = trim(htmlspecialchars(strip_tags($title)));
    $x = stripslashes($x);      // clean up funky old titles in DB
    if (strlen($x)==0) return "(no title)";
    else return $x;
}

function getCategories() {
    $langID = (!empty($_SESSION['lang']['id']))?$_SESSION['lang']['id']:1;
    $sql = "SELECT * FROM category WHERE lang = ".$langID." AND is_helpdesk = 0 ORDER BY orderID ASC";
    return mysql_query($sql);
}

function getHelpDeskCategories() {
    $sql = "SELECT * FROM category WHERE is_helpdesk = 1 ORDER BY orderID ASC";
    return mysql_query($sql);
}

function getForums($categoryID) {
    $sql = 'SELECT * FROM forum WHERE category = ' . $categoryID . ' ORDER BY orderID ASC';
  return mysql_query($sql);
}

function getThreads($forumID, $min=-1, $nRec=-1, $sort_style='modified-new', $show_hidden = 0) {
	/* Calling function:  Set $show_hidden to 1 if it is a moderator reading */
    $sql = 'SELECT * FROM thread WHERE forum = ' . $forumID;
    if (!$show_hidden) {
    	$sql .= ' AND hidden = 0';
    }
    switch($sort_style) {
    case 'modified-new':
        $sql .= ' ORDER BY timestamp DESC';
        break;
    case 'modified-old':
        $sql .= ' ORDER BY timestamp ASC';
        break;
    case 'views-most':
        $sql .= ' ORDER BY views DESC';
        break;
    case 'replies-most':
        $sql .= ' ORDER BY replies DESC';
        break;
    case 'create_time':
        $sql .= ' ORDER by create_time desc';
        break;
    case 'timestamp':
        $sql .= ' ORDER by timestamp desc';
        break;
    case 'sufferers':
        $sql .= ' ORDER by sufferers desc';
        break;
    case 'activity':
        $sql .= ' ORDER by activity desc';
        break;
    case 'score':
        $sql .= ' ORDER by score desc';
        break;
    }
    if ($min > -1) {
        $sql .= ' LIMIT '.$min;
        if ($nRec > -1) {
            $sql .= ', '.$nRec;
        }
    } else if ($nRec > -1) {
        $sql .= ' LIMIT '.$nRec;
    }

    return mysql_query($sql);
}

function getPosts($threadID, $min = -1, $nRec = -1, $sort_style="timestamp", $show_hidden = false) {
	/* Calling function: Set $show_hidden = true when it is a moderator reading */ 
    $sql = 'SELECT * FROM post WHERE thread = '. $threadID;
    if (!$show_hidden) {
    	$sql .= ' AND hidden = 0';
    }
    switch($sort_style) {
    case 'timestamp':
        $sql .= ' ORDER BY timestamp desc';
        break;
    case 'timestamp_asc':
        $sql .= ' ORDER BY timestamp asc';
        break;
    case 'score':
        $sql .= ' ORDER BY score DESC';
        break;
    }

    if ($min > -1) {
        $sql .= ' LIMIT '.$min;
        if ($nRec > -1) {
            $sql .= ', '.$nRec;
        }
    } elseif ($nRec > -1) {
        $sql .= ' LIMIT '.$nRec;
    }
    return mysql_query($sql);
}

/* specific database functions */

function getCategory($categoryID) {
    $sql = "SELECT * FROM category WHERE id = ".$categoryID;
    $result = mysql_query($sql);
    if ($result) {
      return mysql_fetch_object($result);
    } else {
      return NULL;
    }
}

function getForum($forumID) {
    $sql = "SELECT * FROM forum WHERE id = " . $forumID;
    $result = mysql_query($sql);
    if ($result) {
        return mysql_fetch_object($result);
    } else {
        return NULL;
    }
}

function getThread($threadID) {
    $sql = "SELECT * FROM thread WHERE id = ".$threadID;
    $result = mysql_query($sql);
    if ($result) {
        return mysql_fetch_object($result);
    } else {
        return NULL;
    }
}

function getPost($postID) {
    $sql = "SELECT * FROM post WHERE id = ".$postID;
    $result = mysql_query($sql);
    if ($result) {
        return mysql_fetch_object($result);
    } else {
        return NULL;
    }
}

// Returns the post that started the thread with id = $threadId
function getFirstPost($threadID) {
    $sql = "SELECT * FROM post WHERE thread = " . $threadID ." ORDER BY id ASC limit 1";
    $result = mysql_query($sql);
    if ($result) {
        return mysql_fetch_object($result);
    } else {
        return NULL;
    }
}

function getForumPreferences($user){
    $sql = "SELECT * FROM forum_preferences WHERE userid = '".$user->id."'";
    $result = mysql_query($sql);
    if (mysql_num_rows($result)>0) {
        $prefs=mysql_fetch_object($result);

        //Todo - find out how to simply merge two objects instead of specifying all the fields manually here
        $user->avatar=$prefs->avatar;
        $user->hide_avatars=$prefs->hide_avatars;
        $user->sorting=$prefs->sorting;
        $user->images_as_links=$prefs->images_as_links;
        $user->signature=$prefs->signature;
        $user->posts=$prefs->posts;
        $user->avatar_type=$prefs->avatar_type;
        $user->no_signature_by_default=$prefs->no_signature_by_default;
        $user->link_popup=$prefs->link_popup;
        $user->mark_as_read_timestamp=$prefs->mark_as_read_timestamp;
        $user->special_user=$prefs->special_user;
        $user->jump_to_unread=$prefs->jump_to_unread;
        $user->hide_signatures=$prefs->hide_signatures;
        $user->rated_posts=$prefs->rated_posts;
        $user->low_rating_threshold=$prefs->low_rating_threshold;
        $user->high_rating_threshold=$prefs->high_rating_threshold;
        $user->ignorelist=$prefs->ignorelist;
        $user->forum_preferences=1;

        //Set defaults in certain cases:
        if ($user->low_rating_threshold==0 and $user->high_rating_threshold==0){
            $user->low_rating_threshold=DEFAULT_LOW_RATING_THRESHOLD;
            $user->high_rating_threshold=DEFAULT_HIGH_RATING_THRESHOLD;
        }
    } else {
        mysql_query("insert into forum_preferences set userid='".$user->id."'");
        $user->forum_preferences=0;
    }
    return $user;
}

/* Check if user has special user bit enabled */
function isSpecialUser($user, $specialbit){
    return (substr($user->special_user, $specialbit,1)==1);
}

function getHasRated($user, $postid){
    return (strstr($user->rated_posts,"|".$postid));
}

function setHasRated($user, $postid){
    mysql_query("UPDATE forum_preferences SET rated_posts = concat('|$postid',rated_posts) WHERE userid = '".$user->id."'");
    return mysql_error();
}

function getSortStyle($user,$place){
    if ($user->id!=""){
        list($forum,$thread,$faq,$answer)=explode("|",$user->sorting);
    } else {
        list($forum,$thread,$faq,$answer)=explode("|",$_COOKIE['sorting']);
    }
    return $$place;
}

function setSortStyle($user,$place,$new_style){
    if ($user->id!=""){
        list($forum,$thread,$faq,$answer)=explode("|",$user->sorting);
        $$place=$new_style;
        $user->sorting=implode("|",array($forum,$thread,$faq,$answer));
        $sql = "UPDATE forum_preferences SET sorting = '".$user->sorting."' where userid = '".$user->id."'";
        mysql_query($sql);
    } else {
        list($forum,$thread,$faq,$answer)=explode("|",$_COOKIE['sorting']);
        $$place=$new_style;
        setcookie('sorting', implode("|",array($forum,$thread,$faq,$answer)), time()+3600*24*365);
    }
}

function getThreadLastVisited($user, $thread){
    if ($user->id==""){                                        //Disable read/unread stuff for users that are not logged in
        $user->thread_last_visited=time();                //Always display as visited
        return $user;
    }
    $sql = "SELECT timestamp from forum_logging where userid='".$user->id."' and threadid='".$thread->id."'";
    $result = mysql_query($sql);
    if ($result) {
        $data=mysql_fetch_object($result);
        $user->thread_last_visited=$data->timestamp;
    } else {
    }
    $user->thread_last_visited= max(time()-MAX_FORUM_LOGGING_TIME,$user->thread_last_visited,$user->mark_as_read_timestamp);
    //echo $user->thread_last_visited." - ".time();
    return $user;
}

function setThreadLastVisited($user, $thread, $timestamp=""){
    if ($timestamp==""){$timestamp=time();};
    $sql = "REPLACE DELAYED into forum_logging set userid='".$user->id."', threadid='".$thread->id."',  timestamp='$timestamp'";
    mysql_query($sql);
}


function incThreadViews($threadID) {
    $sql = "UPDATE thread SET views = views + 1 WHERE id = " . $threadID . " LIMIT 1";
    mysql_query($sql);
}

function cleanup_forum_log(){
    $sql = "SELECT timestamp FROM forum_logging where userid=0 and threadid=0";
    $result=mysql_query($sql);
    if (mysql_num_rows($result)>0) {
        $data=mysql_fetch_object($result);
        if ($data->timestamp<time()-MAX_FORUM_LOGGING_TIME){
            $sql = "DELETE FROM forum_logging where timestamp<'".(time()-MAX_FORUM_LOGGING_TIME)."' and userid != 0";
            mysql_query($sql);
            echo mysql_error();
            $sql = "REPLACE INTO forum_logging set userid=0, threadid=0, timestamp='".time()."'";
            mysql_query($sql);
        }
    } else {
        //No cleanup timestamp found, make one:
        $sql = "INSERT INTO forum_logging set userid=0, threadid=0, timestamp=0";
        mysql_query($sql);
        echo mysql_error();
    }
}

// Forum modifying functions.

function createThread($forumID, $ownerID, $title, $content, $add_signature=false) {

    $content = addslashes(sanitize_html(stripslashes($content)));

    $title = strip_tags(trim($title));
    if (strlen($title) == 0) {
        echo "empty title\n";
        return 0;
    }

    $sql = "insert into thread (forum, owner, title, create_time, timestamp) VALUES (" . $forumID . ", " . $ownerID . ", '" . $title . "', UNIX_TIMESTAMP(), UNIX_TIMESTAMP())";
    $result = mysql_query($sql);
    if (!$result) return false;
    $threadID = mysql_insert_id();

    addPost($threadID, $ownerID, NULL, $content, $add_signature);

    $sql = "UPDATE forum_preferences SET posts = posts + 1 WHERE userid = " . $ownerID . " LIMIT 1";
    mysql_query($sql);

    $sql = "UPDATE forum SET threads = threads + 1, posts = posts + 1, timestamp = UNIX_TIMESTAMP() WHERE id = " . $forumID . " LIMIT 1";
    mysql_query($sql);

    return $threadID;
}

function replyToThread($threadID, $userID, $content, $parent_post=NULL, $add_signature=false) {
    $thread = getThread($threadID);

    $content = addslashes(sanitize_html(stripslashes($content)));

    addPost($threadID, $userID, $parent_post, $content, $add_signature);

    $sql = "UPDATE forum_preferences SET posts = posts + 1 WHERE userid = " . $userID . " LIMIT 1";
    mysql_query($sql);

    $sql = "UPDATE thread SET replies = replies + 1, timestamp = UNIX_TIMESTAMP() WHERE id = " . $threadID . " LIMIT 1";
    mysql_query($sql);

    $sql = "UPDATE forum SET posts = posts + 1, timestamp = UNIX_TIMESTAMP() WHERE id = " . $thread->forum . " LIMIT 1";
    mysql_query($sql);
}

function addPost($threadID, $userID, $parentID, $content, $add_signature=false) {
    if ($add_signature){$sig=1;} else {$sig=0;};
    if ($parentID) {
        $sql = "INSERT INTO post (thread, user, timestamp, content, parent_post, signature) VALUES (" . $threadID . ", " . $userID . ", UNIX_TIMESTAMP(), '" . $content . "', " . $parentID . ", ".$sig.")";
    } else {
        $sql = "INSERT INTO post (thread, user, timestamp, content, signature) VALUES (" . $threadID . ", " . $userID . ", UNIX_TIMESTAMP(), '" . $content . "', ".$sig.")";
    }
    $result = mysql_query($sql);
    if (!$result) return false;
    return true;
}

function updatePost($postID, $content) {
    $x = addslashes(sanitize_html(stripslashes($content)));
    $sql = "UPDATE post SET content = \"$x\", modified = UNIX_TIMESTAMP() WHERE id = " . $postID;
    $result = mysql_query($sql);
    if (!$result) return false;
    return true;
}

function updateThread($threadID, $title) {
   $title = addslashes(sanitize_html(stripslashes($title)));
    $title = trim($title);
    if (strlen($title) == 0) {
        return false;
    }
   $sql = "UPDATE thread SET title = \"$title\" WHERE id = " . $threadID;
   $result = mysql_query($sql);
   if (!$result) return false;
   return true;
}

// display functions

function show_posts($thread, $sort_style, $filter, $show_controls=true, $do_coloring=true, $is_helpdesk=false) {
    global $logged_in_user;
    $n = 1;

    if ($show_controls && !$is_helpdesk) {
        $controls = FORUM_CONTROLS;
    } else if ($show_controls && $is_helpdesk) {
        $controls = HELPDESK_CONTROLS;
    } else {
        $controls = NO_CONTROLS;
    }

    if (isSpecialUser($logged_in_user,0)){		// If logged in user is moderator
	$show_hidden_posts = true;			// let him see all posts - including hidden ones
    } else {
	$show_hidden_posts = false;
    }

    $posts = getPosts($thread->id, -1, -1, $sort_style, $show_hidden_posts);
    $logged_in_user = getThreadLastVisited($logged_in_user,$thread);
    setThreadLastVisited($logged_in_user,$thread);

    $firstPost = getFirstPost($thread->id);

    if ($is_helpdesk) {
        if ($firstPost) {
            show_post($firstPost, $thread, $logged_in_user, $n, $controls, true,$filter);
            if ($firstPost->timestamp>$logged_in_user->thread_last_visited){
                $first_unread_post=$firstPost;
            }
        }
    }

    while ($post = mysql_fetch_object($posts)) {
        if (!$is_helpdesk || ($is_helpdesk && $post->id != $firstPost->id)) {
            show_post($post, $thread, $logged_in_user, $n, $controls, false, $filter);
            if ($do_coloring) $n = ($n+1)%2;
            if (($post->timestamp>$logged_in_user->thread_last_visited) && (($post->timestamp<$first_unread_post->timestamp) || $first_unread_post->timestamp==0)){
                $first_unread_post=$post;
            }
        }
    }

    if ($logged_in_user->jump_to_unread){
        if ($first_unread_post->id!=""){
            echo "<script>function jumpToUnread(){location.href='#".$first_unread_post->id."';}</script>";
        } else {
            echo "<script>function jumpToUnread(){};</script>";
        }
    }
}

function show_post($post, $thread, $logged_in_user, $n, $controls=FORUM_CONTROLS, $separate=false, $filter=true) {
    global $post_ratings;   // <------ Old obsolete rating method (remove someday)

    $user = lookup_user_id($post->user);
    $user = getForumPreferences($user);
    $data = mysql_query("SELECT userid FROM profile WHERE userid = " . $user->id);                //Lookup existance of profile for user
    $user->has_profile = (mysql_numrows($data) > 0);                                                //and store this info in the user object
    $user->has_avatar = ($user->avatar != "");                                                        //for later access

    //If the user that made this post is on the list of people to ignore, change thresholds to be more strict

    if (in_array($user->id,explode("|",$logged_in_user->ignorelist))){
        $user_is_on_ignorelist=true;
        $rated_below_threshold = ($logged_in_user->high_rating_threshold>($post->score*$post->votes));
        $rated_above_threshold = ($logged_in_user->high_rating_threshold+abs($logged_in_user->low_rating_threshold)<($post->score*$post->votes));
    } else {                //Use normal threshold values
        $rated_below_threshold = ($logged_in_user->low_rating_threshold>($post->score*$post->votes));
        $rated_above_threshold = ($logged_in_user->high_rating_threshold<($post->score*$post->votes));
    }

    $can_edit = $logged_in_user && $user->id == $logged_in_user->id;

    echo "
        <tr class=\"row$n\" valign=\"top\">
        <td>
        <a name=\"$post->id\"></a>
    ";

    echo user_links($user, URL_BASE);

    global $special_user_bitfield; 
    if ($user->special_user) {                                                                        //If this user is somehow special
	for ($i=0; $i<sizeof($special_user_bitfield);$i++){
	    if (isSpecialUser($user,$i)) $fstatus.=$special_user_bitfield[$i]."<br>";
	}
    } else {
        if ($user->create_time>time()-ST_NEW_TIME) $fstatus=ST_NEW."<br>";
        /*...*/
    }
    if ($fstatus) echo "<br><font size=\"-2\">$fstatus</font>";

    echo "<font size=-2>";
    if (!$filter || !$rated_below_threshold){
        if ($user->has_avatar and $logged_in_user->hide_avatars!=1) {
            echo "<img width=\"".AVATAR_WIDTH."\" height=\"".AVATAR_HEIGHT."\" src=\"".$user->avatar."\" alt=\"Avatar\"><br>";
        }
        echo "Joined: ", gmdate('M j, Y', $user->create_time), "<br>Posts: $user->posts<br>";
    }

    // circumvent various forms of identity spoofing
    // by displaying the  user id of the poster.
    // its cheap, easy, and doesn't require any additional database calls.
    echo "ID: $user->id<br>";

    echo "</font></td><td>
    ";

    if ($controls == FORUM_CONTROLS || $controls == HELPDESK_CONTROLS) {
        echo "<form action=\"forum_rate.php?post=", $post->id, "\" method=\"post\">";
    }

    echo "
        <table width=\"100%\" cellpadding=0 cellspacing=0 border=0>
        <tr valign=top>
        <td align=left style=\"border:0px\"><font size=-2>";

    if ($post->timestamp>$logged_in_user->thread_last_visited){
        echo "<img src=\"".NEW_IMAGE."\" alt=\"Unread post\" height=\"".NEW_IMAGE_HEIGHT."\">";
    }
    if ($rated_above_threshold){
        echo "<img src=\"".EMPHASIZE_IMAGE."\" alt=\"!\" height=\"".EMPHASIZE_IMAGE_HEIGHT."\">";
    }

    if ($post->hidden) echo "<font color=red>[deleted] </font>";
    echo "
        Posted: ", pretty_time_str($post->timestamp);
    ;

    if ($post->parent_post) echo " - in response to <a href=\"#$post->parent_post\">Message ID $post->parent_post</a>.";
    if ($can_edit && $controls != NO_CONTROLS) echo "&nbsp;<a href=\"forum_edit.php?id=$post->id\">[Edit this post]</a>";
    if (isSpecialUser($logged_in_user,0)) show_post_moderation_links($post); //If user is moderator, show links
    if ($post->modified) echo "<br>Last modified: ", pretty_time_Str($post->modified);
    if ($rated_below_threshold && $filter){
        if ($user_is_on_ignorelist) $andtext=" and the user is on your ignore list";
        echo "<br>This post has been filtered (rating: ".($post->score * $post->votes).")$andtext, press <a href=\"?id=".$thread->id."&amp;filter=false#".$post->id."\">here</a> to view this thread without filtering";
    }
    echo "\n</font></td>\n";

    if ($controls == FORUM_CONTROLS) {
        //no special controls in forum
    } else if ($controls == HELPDESK_CONTROLS && $separate) {
        echo "
            <td align=right style=\"border:0px\">
            <input type=submit name=submit value=\"", SUFFERER, "\">
            </td>
        ";
    } else if ($controls == HELPDESK_CONTROLS && !$separate) {
        echo "
            <td align=right style=\"border:0px\">
            <input type=submit name=submit value=\"", SOLUTION, "\">
            <input type=submit name=submit value=\"", OFF_TOPIC, "\">
            </td>
        ";
    }

    echo "</tr>\n</table>\n";

    if ($controls == FORUM_CONTROLS || $controls == HELPDESK_CONTROLS) {
        echo "</form>";
    }

    //If either filtering is turned off of this post is not below the threshold
    if (!$filter || !$rated_below_threshold){
        $posttext=nl2br(stripslashes($post->content));
        if ($post->signature && !$logged_in_user->hide_signatures){                                //If the creator of this post has a signature and
            $posttext.=nl2br("\n".stripslashes($user->signature));                                //wants it to be shown for this post AND the logged in
        }                                                                                        //user has signatures enabled: show it

        if ($logged_in_user->images_as_links==1){
            $posttext=image_as_link($posttext);
        }
        if ($logged_in_user->link_popup==1){
            $posttext=externalize_links($posttext);
        }
        echo "<p>", $posttext, "</p>";
        echo "<table width=\"100%\" cellspacing=0 cellpadding=0>
            <tr valign=\"bottom\">
            <td style=\"border:0px;\"><font size=-2><i>ID: ", $post->id;
        if ($controls == HELPDESK_CONTROLS && $separate) {
            echo "</i></font></td>";
        } else if ($controls == HELPDESK_CONTROLS && !$separate) {
            echo " / Score: ", round(($post->score * $post->votes),0), "</i></font></td>";
        } else {
            echo " / Rating: ", round(intval(($post->score * $post->votes)+0.01),0), "</i> - rate: <a href=\"forum_rate.php?post=".$post->id."&amp;choice=p\">+</a> / <a href=\"forum_rate.php?post=".$post->id."&amp;choice=n\">-</a></font></td>";
        }

        if ($controls == FORUM_CONTROLS) {
            echo "<td align=right style=\"border:0px\">[<a href=\"forum_reply.php?thread=" . $thread->id . "&amp;post=" . $post->id . "#input\">Reply to this post</a>]</td>";
        } else if ($controls == HELPDESK_CONTROLS && !$separate) {
            echo "<td align=right style=\"border:0px\">[<a href=\"forum_reply.php?thread=" . $thread->id . "&amp;post=" . $post->id . "&helpdesk=1#input\">Reply to this answer</a>]</td>";
        }
        echo "</tr></table>";
    }
    echo "</td></tr>";
    if ($separate) {
        echo "
            </table>
            <br><br>
            <table border=0 cellpadding=5 cellspacing=0 width=100%>
            <tr>
            <th>Author</th>
            <th>Answers</th>
        ";
    }
}

// utility functions

function externalize_links($text){
    $i=0;$linkpos=true;
    while (true){                                //Find a link
        $linkpos=strpos($text,"<a ",$i);
        if ($linkpos===false) break;
        $out.= substr($text,$i,$linkpos-$i)."<a target=\"_new\" ";        //Replace with target='_new'
        $i=$linkpos+3;
    }
    $out.=substr($text,$i);
    return $out;
}

function image_as_link($text){
/* This function depends on sanitized HTML - always use KSES or equivalent before using this */
    $i=0;
    while (true){                                      //Find an image
        $imgpos=strpos($text,"<img ",$i);
        if ($imgpos===false) break;
        $out.= substr($text,$i,$imgpos-$i)."<a href="; //Replace with link start
        $temp1=strpos($text,"src=",$imgpos)+5;         //Find the image source
        $temp2=strpos($text,">",$imgpos)+1;            //Or the end of the tag
        if ($temp1<$temp2){                            //If source was found within tag
            $temp3=strpos($text,"\"",$temp1);         //Find the end of source
            $out.=substr($text,$temp1,$temp3-$temp1);    //output the source
        }
        $out.=">[Image link]</a>";
        $i=$temp2;                        //Now move to end of tag to continue
    }
    $out.=substr($text,$i);                            //Output the rest
    return $out;
}


function start_forum_table($headings) {
    start_table();
    echo "<tr>";

    for ($i=0; $i<count($headings); $i++) {
        $title = $headings[$i];
        echo "<th class=heading>$title</th>";
    }
    echo "</tr>\n";
}

function end_forum_table() {
    echo "</table>\n";
}

// generate a "select" element from an array of values
//
function select_from_array($name, $array, $selection) {
    $out= "<select name=\"$name\">";

    foreach ($array as $key => $value) {
        $out.= "<option ";
        if ($key == $selection) {
            $out.= "selected ";
        }
        $out.= "value=\"". $key. "\">". $value. "</option>";
    }
    $out.= "</select>";
    return $out;
}

function show_select_from_array($name, $array, $selection) {
    echo select_from_array($name,$array,$selection);
}

function show_forum_title($forum=NULL, $thread=NULL, $helpdesk=false) {
    echo "<p>\n";
    if (!$forum && !$thread) {
        echo "<p class=\"title\">";
        if ($helpdesk) {
            echo " Questions and problems</p>";
        } else {
            echo " Message boards</p>";
        }
    } else if ($forum && !$thread) {
        echo "<span class=title>";
        if ($helpdesk) {
            echo "<a href=\"forum_help_desk.php\">", " Questions and problems</a> : ";
        } else {
            echo "<a href=\"forum_index.php\">", " Message boards</a> : ";
        }
        echo $forum->title;
        echo "</span><br>";
    } else if ($forum && $thread) {
        echo "<span class=title>";
        if ($helpdesk) {
            echo "<a href=\"forum_help_desk.php\">", " Questions and problems</a> : ";
        } else {
            echo "<a href=\"forum_index.php\">", " Message boards</a> : ";
        }
        echo "<a href=\"forum_forum.php?id=$forum->id\">", $forum->title, "</a> : ";
        echo cleanup_title($thread->title);
        echo "</span><br>";
    } else {
        echo "Invalid input to show_forum_title<br>";
    }
    echo "</p>\n";
}

// show a thread with its context (e.g. for search results)
//
function show_thread($thread, $n) {
    $forum = getForum($thread->forum);
    $category = getCategory($forum->category);
    $first_post = getFirstPost($thread->id);
    $title = cleanup_title($thread->title);
    $where = $category->is_helpdesk?"Questions and answers":"Message boards";
    $top_url = $category->is_helpdesk?"forum_help_desk.php":"forum_index.php";
    $excerpt = sub_sentence(stripslashes($first_post->content), ' ', EXCERPT_LENGTH, true);
    $posted = time_diff_str($thread->create_time, time());
    $last = time_diff_str($thread->timestamp, time());
    $m = $n%2;
    echo "
        <tr class=\"row$m\">
        <td><font size=\"-2\">
            $n) Posted $posted
            <br>
            Last response $last
        </td>
        <td valign=top>
            <a href=\"$top_url\">$where</a> : $category->name :
            <a href=\"forum_forum.php?id=$forum->id\">$forum->title</a> :
            <a href=\"forum_thread.php?id=$thread->id\">$title</a>
            <br>
            <font size=\"-2\">$excerpt</font>
        </td>
        </tr>
    ";
}

// show a post with its context (e.g. for search results)
//
function show_post2($post, $n) {
    $thread = getThread($post->thread);
    $forum = getForum($thread->forum);
    $category = getCategory($forum->category);
    $where = $category->is_helpdesk?"Questions and answers":"Message boards";
    $top_url = $category->is_helpdesk?"forum_help_desk.php":"forum_index.php";
    $content = nl2br(stripslashes($post->content));
    $when = time_diff_str($post->timestamp, time());
    $user = lookup_user_id($post->user);
    $title = cleanup_title($thread->title);
    $m = $n%2;
    if($post->hidden) {
        $deleted_text = array( "Obscene", "Flame/Hate", "Commercial spam" ); 	//Todo: factor this array out, it is also used elsewhere
        $deleted = "<br><font color=red>[Deleted " .
                   "by a moderator as " . $deleted_text[$post->hidden-1] .
                   "] </font>";
    } else {
        $deleted = "";
    };    
    echo "
        <tr class=row$m>
        <td>
            $n) <a href=\"$top_url\">$where</a> : $category->name :
            <a href=\"forum_forum.php?id=$forum->id\">$forum->title</a> :
            <a href=\"forum_thread.php?id=$thread->id\">$title</a>
            <br>
            Posted $when by $user->name $deleted
            <hr>
            $content
        </td>
        </tr>
    ";
}

function show_forum_summary($forum) {
    $x = time_diff_str($forum->timestamp, time());
    echo "
        <tr class=row1>
        <td>
            <b>
            <a href=forum_forum.php?id=$forum->id>", $forum->title,
            "</a></b>
            <br><font size=-2>", $forum->description, "
        </td>
        <td>", $forum->threads, "</td>
        <td>", $forum->posts, "</td>
        <td>", $x, "</td>
    </tr>
    ";
}

?>