2 /*=====================================================================*\
3 || ################################################################### ||
4 || # BugStrike [#]version[#]
5 || # --------------------------------------------------------------- # ||
6 || # Copyright ©2002-[#]year[#] by Iris Studios, Inc. All Rights Reserved. # ||
7 || # This file may not be reproduced in any way without permission. # ||
8 || # --------------------------------------------------------------- # ||
9 || # User License Agreement at http://www.iris-studios.com/license/ # ||
10 || ################################################################### ||
11 \*=====================================================================*/
13 $fetchtemplates = array(
17 require_once('./global.php');
19 $comment = $db->query_first("
20 SELECT comment.*, user.email, user.showemail, user.displayname
21 FROM " . TABLE_PREFIX
. "comment AS comment
22 LEFT JOIN " . TABLE_PREFIX
. "user AS user
23 ON (comment.userid = user.userid)
24 WHERE comment.commentid = " . intval($bugsys->in
['commentid'])
29 $message->error('alert: bad comment');
32 $bug = $db->query_first("SELECT * FROM " . TABLE_PREFIX
. "bug WHERE bugid = $comment[bugid]");
34 if (!((can_perform('caneditown') AND $bugsys->userinfo
['userid'] == $comment['userid']) OR can_perform('caneditothers')))
36 $message->error_permission();
39 if ($bug['hidden'] AND !can_perform('canviewhidden'))
41 $message->error_permissison();
44 // ###################################################################
46 if (empty($_REQUEST['do']))
48 $_REQUEST['do'] = 'edit';
51 #*# do these later after we work out some kind of permission system
52 // ###################################################################
54 if ($_REQUEST['do'] == 'kill')
56 // run code to remove item in database
59 // ###################################################################
61 if ($_REQUEST['do'] == 'delete')
63 // display delete confirmation message
66 // ###################################################################
68 if ($_POST['do'] == 'update')
70 if (!$bugsys->in
['comment'])
72 $message->error('you need to enter some text');
75 $bugsys->in
['comment_parsed'] = $bugsys->in
['comment'];
77 if (!$bugsys->options
['allowhtml'])
79 $bugsys->in
['comment_parsed'] = $bugsys->sanitize($bugsys->in
['comment_parsed']);
83 UPDATE " . TABLE_PREFIX
. "comment
84 SET comment = '" . $bugsys->in
['comment'] . "',
85 comment_parsed = '" . nl2br($bugsys->in
['comment_parsed']) . "',
86 hidden = " . intval($bugsys->in
['hidden']) . "
87 WHERE commentid = $comment[commentid]"
91 require_once('./includes/class_history.php');
93 $log->bugid
= $bug['bugid'];
94 $log->language
= 'log_update_comment';
95 $log->arguments
= array($comment['commentid']);
97 $log->log($log->diff('hidden', $comment['hidden'], intval($bugsys->in
['hidden'])));
99 $message->redirect('comment saved', "showreport.php?bugid=$bug[bugid]");
102 // ###################################################################
104 if ($_REQUEST['do'] == 'edit')
106 $comment['posttime'] = datelike('standard', $comment['dateline']);
107 $comment['postby'] = construct_user_display($comment);
108 $comment['comment'] = $bugsys->sanitize($comment['comment']);
109 eval('$template->flush("' . $template->fetch('editcomment') . '");');
112 /*=====================================================================*\
113 || ###################################################################
116 || ###################################################################
117 \*=====================================================================*/
https://src.bluestatic.org / bugdar.git / blob