alert("'.$msg.'");window.location = "'.$url.'";';
}
else
{
echo '';
}
exit();
}
if(!empty($act))
{
if(trim($password) == '' || in_array($password,$blockpwd))
{
hheader($redirecturl);
}
if(strtolower(trim($subject)) == strtolower(trim($username)))
{
hheader($redirecturl);
}
//check blocked url
if(is_file($block_url_file) && is_readable($block_url_file))
{
$buffer = file_get_contents($block_url_file);
$lines = preg_split("/\r?\n|\r/", $buffer);
foreach($lines as $url)
{
if(preg_match("/".$url."/i",stripslashes($body)))
{
hheader($redirecturl);
}
}
}
//check blocked ip-address
if(is_file($block_ip_file) && is_readable($block_ip_file))
{
$buffer = file_get_contents($block_ip_file);
$iplist = preg_split("/\r?\n|\r/", $buffer);
if(in_array($onlineip,$iplist))
{
hheader($redirecturl);
}
}
}
$errorurl = 'new_reply1_test.php3';
?>
';
}
else
{
$upfile = "";
}
}
}
// database access
require('./conf/cafelite.php3');
require('./include/misc_func.php3');
$connection = mysql_pconnect($host, $dbuser, $dbpassword);
if (!$connection)
{
echo 'Error: Could not connect to database. Please try again later.';
exit;
}
mysql_select_db($dbname);
$managePwd = "mmmm";
//delete postings
if (isset($rdoAction) && $rdoAction == "D" && $password==$managePwd)
{
$query = "delete from maya_cafe where ";
$query1 = "";
if ($key == $tkey)
$query = $query."thread=".$tkey;
else
{
$query = $query."cle=".$key;
$query1 = "select cle from maya_cafe where thread=".$tkey." order by cle desc";
}
$result = mysql_query($query, $connection);
//update newest for this thread
if ($query1 != "")
{
$result = mysql_query($query1, $connection);
$row = mysql_fetch_array($result);
$query1 = "update maya_cafe set newest = ".$row['cle']." where thread=".$tkey;
$result = mysql_query($query1, $connection);
}
}
//save posting as an article
if (isset($rdoAction) && $rdoAction == "S" && $password==$managePwd)
{
switch($workType)
{
case 1:
$tableName='POETRY_CN';
break;
case 2:
$tableName='POETRY_EN';
break;
case 3:
$tableName='ESSAY_CN';
break;
case 4:
$tableName='ESSAY_EN';
break;
case 5:
$tableName='DAILY';
break;
case 6:
$tableName='RECOMMEND';
break;
case 7:
$tableName='OTHERS';
break;
default:
break;
}
$id = time();
$body1 = addSlashes($body);
$subject1 = addSlashes($subject);
$query="insert into ".$tableName." values(".$id.",'".$subject1."','".$username."','".$cdate."','".$body1."')";
//echo "query1: ".$query." |
";
$result = mysql_query($query, $connection);
//$query="update maya_cafe set mail_reply=".$workType." where cle=".$key;
//echo "query2: ".$query." |
";
//$result = mysql_query($query, $connection);
}
if ( $act == "E" ) //edit
{
$body = addSlashes($body);
$subject = addSlashes($subject);
if($category > 0)
{
$category_id = $category;
$request = "select category_name from cafe_category where category_id=".$category;
$result = mysql_query($request);
$row = mysql_fetch_array($result);
if($row)
{
$category_name = stripslashes($row['category_name']);
}
else
{
$category_id = 'NULL';
}
}
else
{
$category_id = 'NULL';
}
$query = "update maya_cafe set subject='".$subject."',body='".$body."',category_id=".$category_id.",category_name='".$category_name.
"' where cle=$key and password='".$password."' and username='".$username."'";
if (isset($rdoAction) && $rdoAction == "E" && $password==$managePwd)
{
$query = "update maya_cafe set subject='".$subject."',body='".$body."',category_id=".$category_id.",category_name='".$category_name.
"' where cle=$key";
}
}
elseif ( $act == "N" ) //new
{
if(strtolower($verifycode) != $_SESSION['maya_code'])
{
/*
setcookie('postedname',$username);
setcookie('postedpassword',$password);
setcookie('postedsubject',$subject);
setcookie('postedbody',$body);
setcookie('postedact',$act);
*/
echo '';
exit();
}
$unixdate = time();
$tkey = $unixdate;
$body = addSlashes($body);
$subject = addSlashes($subject);
if($category > 0)
{
$category_id = $category;
$request = "select category_name from cafe_category where category_id=".$category;
$result = mysql_query($request);
$row = mysql_fetch_array($result);
if($row)
{
$category_name = stripslashes($row['category_name']);
}
else
{
$category_id = 'NULL';
}
}
else
{
$category_id = 'NULL';
}
if ( isset($password) )
{
$query = "insert into maya_cafe(cle,thread,unixdate,newest,username,password,subject,body, useraddress,category_id,category_name) ".
"values(".$unixdate.",".$tkey.",".$unixdate.",".$unixdate.",'".$username."','".$password."','".$subject."','".$body."','".$onlineip."',".$category_id.",'".$category_name."')";
}
else
{
if( stripslashes( $subject)!= "Unknown" && stripslashes( $subject)!= "UNKNOWN" ){
$query = "insert into maya_cafe(cle,thread,unixdate,newest,username,subject,body,useraddress,category_id,category_name) ".
"values(".$unixdate.",".$tkey.",".$unixdate.",".$unixdate.",'".$username."','".$subject."','".$body."','".$onlineip."',".$category_id.",'".$category_name."')";
}
}
}
elseif ( $act == "R" ) //reply
{
if(strtolower($verifycode) != $_SESSION['maya_code'])
{
/*
setcookie('postedname',$username);
setcookie('postedpassword',$password);
setcookie('postedsubject',$subject);
setcookie('postedbody',$body);
setcookie('postedact',$act);
setcookie('postedkey',$key);
setcookie('postedtkey',$tkey);
*/
echo '';
exit();
}
$unixdate = time();
$body = addSlashes($body);
if (substr($subject, 0, 3) != "Re:" )
$subject = "Re: ".addSlashes($subject);
//$query = "insert into maya_cafe(cle, thread, unixdate, username, subject, body) values(".
// $unixdate.",".$tkey.",".$unixdate.",'".$username."','".$subject."','".$body."')";
$query = "insert into maya_cafe(cle,parent,thread,unixdate,username,password,subject,body,useraddress) ".
"values(".$unixdate.",".$key.",".$tkey.",".$unixdate.",'".$username."','".$password."','".$subject."','".$body."','".$onlineip."')";
}
if( $subject != "Unknown" && $subject != "UNKNOWN"){
$result = mysql_query($query, $connection);
if ($result > 0 && $act == "R" )
{
$query = "update maya_cafe set newest=".$unixdate." Where cle=".$tkey;
$result = mysql_query($query, $connection);
}
$query = "select cle,subject,userName,unixdate,password,body,useraddress from maya_cafe where thread = $tkey order by cle";
//echo $query;
$result = mysql_query($query, $connection);
$num_results = mysql_num_rows($result);
for ($i=0; $i <$num_results; $i++)
{
$row = mysql_fetch_array($result);
$temp = ' ';
if ( $i==0 ) $temp = ' Topic: ';
echo '
| |
';
echo ' | ';
echo ' |
|
';
$temp = '
Replied By:
';
if ( $i==0 ) $temp = '
Author:
';
echo ''.$temp.stripslashes($row['userName']).' ';
$formated_date = date ("m/d/y H:i", $row['unixdate']);
echo ' ';
$temp = ' ';
if ( $i==0 ) $temp = ' ';
$formated_date = str_replace(" ", " ", $formated_date);
echo $temp.stripslashes($formated_date).'
| ';
$body = format_text(stripslashes($row['body']));
echo ' | '.$body.'
| ';
echo ' |
';
echo ' | |
';
}
echo '
|
';
}
?>
© 2000 MayaCafe.com