https://src.bluestatic.org / bugdar.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
r17: Initial SVN for newcomment.php.
[bugdar.git] / newcomment.php
1 <?php
2 /*=====================================================================*\
3 || ################################################################### ||
4 || # [#]app[#] [#]version[#]
5 || # --------------------------------------------------------------- # ||
6 || # All parts of this file are ©2003-[#]year[#] Iris Studios, Inc. No # ||
7 || # part of this file may be reproduced in any way: part or whole. # ||
8 || # --------------------------------------------------------------- # ||
9 || # ©2003 - [#]year[#] Iris Studios, Inc. | http://www.iris-studios.com # ||
10 || ################################################################### ||
11 \*=====================================================================*/
12
13 require_once('./global.php');
14
15 if (!($bugsys->userinfo['permissions'] & CANPOSTCOMMENTS))
16 {
17 echo 'no permission';
18 exit;
19 }
20
21 // ###################################################################
22
23 if (empty($_REQUEST['do']))
24 {
25 $_REQUEST['do'] = 'add';
26 }
27
28 // ###################################################################
29
30 if ($_POST['do'] == 'insert')
31 {
32 sanitize(array('bugid' => INT, 'comment' => STR));
33
34 if (!$bugsys->options['allowhtml'])
35 {
36 $vars['comment'] = htmlspecialcharslike($vars['comment']);
37 }
38
39 $DB_sql->query("
40 INSERT INTO " . TABLE_PREFIX . "comment
41 (bugid, userid, dateline, comment)
42 VALUES
43 ($vars[bugid], " . $bugsys->userinfo['userid'] . ",
44 " . time() . ", '" . addslasheslike($vars['comment']) . "'
45 )"
46 );
47
48 echo 'comment inserted';
49 }
50
51 // ###################################################################
52
53 if ($_REQUEST['do'] == 'add')
54 {
55 sanitize(array('bugid' => INT));
56
57 if (!$vars['bugid'])
58 {
59 echo 'alert: bad bug';
60 exit;
61 }
62
63 $bug = $DB_sql->query_first("SELECT bug.*, comment.comment FROM " . TABLE_PREFIX . "bug LEFT JOIN " . TABLE_PREFIX . "comment AS comment ON (bug.bugid = comment.bugid) WHERE bug.bugid = $vars[bugid]");
64 if (!$bug)
65 {
66 echo 'alert: bad bug';
67 exit;
68 }
69
70 echo "<div><strong>New comment for:</strong> <em>$bug[summary]</em></div>";
71 echo '<form name="newcomment" method="post" action="newcomment.php"><input type="hidden" name="do" value="insert" /><input type="hidden" name="bugid" value="' . $bug['bugid'] . '" />';
72 echo '<div><strong>Comment:</strong></div><textarea name="comment" cols="100" rows="35"></textarea>';
73 echo '<div><input type="submit" name="submit" value="Add Comment" /></form>';
74
75 echo '<br /><br /><table border="1" cellspacing="2" cellpadding="4" width="100%"><tr style="background-color:#EEEEEE"><td><strong>Summary Report:</strong> ' . $bug['summary'] . '</td></tr>';
76 echo '<tr><td>' . $bug['comment'] . '</td></tr></table>';
77 }
78
79 /*=====================================================================*\
80 || ###################################################################
81 || # $HeadURL$
82 || # $Id$
83 || ###################################################################
84 \*=====================================================================*/
85 ?>
Open-source PHP-MySQL bug tracking system that has customizable CSS/XHTML templates, email notifications, Atom syndication, internationalization support, and a very simple setup.