pioder
/
uf2
1
0
Fork 0
Code Releases 0 Activity
A new, object-oriented, better vesion of μForum
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
392 KiB
Tree: a542813c8f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a542813c8f'
${ noResults }
uf2/inc/controllers/MainController.class.php

730 lines
23 KiB
Raw Normal View History

initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
implemented buildURL() function (and fixed redirecting on https page) added comments block (file description) in each PHP file
10 years ago
initial commit with snapshot 20140213
10 years ago
 
  1. <?php
  2. /** 
  3. * @package		uForum2
  4. * @file		inc/controllers/MainController.class.php
  5. * @copyright	2007-2015 (c) PioDer <piotrek@pioder.pl>
  6. * @link    		http://www.pioder.pl/
  7. * @license		see LICENSE.txt
  8. **/
  9. 

  10. require ('./inc/controller.class.php');
  11. 

  12. class MainController extends Controller
  13. {
  14. 

  15. 	public function loadDefault()
  16. 	{
  17. 		$this->main();
  18. 	}
  19. 	
  20. 	private function loadDependencies() // zależności (sesje itp)

  21. 	{
  22. 		$this->loadModel('SessionModel'); //aktywacja sesji

  23. 		$this->loadModel('ConfigModel'); //konfiguracja ogólna skryptu

  24. 		$this->loadView('MainView');
  25. 		$this->getView('MainView')->putExistingModel('SessionModel', $this->getModel('SessionModel'));
  26. 		$this->getView('MainView')->putExistingModel('ConfigModel', $this->getModel('ConfigModel'));
  27. 		
  28. 		//przekierowanie!

  29. 		if ($_GET['mode'] == 'editprofile' || $_GET['mode'] == 'register' || $_GET['mode'] == 'login')
  30. 		{
  31. 			if ($_SERVER['REQUEST_SCHEME'] != 'https' && USE_HTTPS)
  32. 				$this->forward(buildURL($_SERVER['REQUEST_URI'], true));
  33. 		}
  34. 		else
  35. 			if ($_SERVER['REQUEST_SCHEME'] != 'http')
  36. 				$this->forward(buildURL($_SERVER['REQUEST_URI']));
  37. 	} 
  38. 		
  39. 	public function main()
  40. 	{
  41. 		$this->loadDependencies();
  42. 		$this->getView('MainView')->main();
  43. 	}
  44. 	
  45. 	public function viewforum()
  46. 	{
  47. 		$this->loadDependencies();
  48. 		
  49. 		$this->loadModel('ForumsModel');
  50. 		
  51. 		$_GET['id'] = (isset($_GET['id'])) ? trim(strip_tags($this->db->real_escape_string($_GET['id']))) : 0;
  52. 		
  53. 		$f = $this->getModel('ForumsModel')->getForum($_GET['id']);
  54. 		
  55. 		if ($f == null)
  56. 			$this->getView('MainView')->forum_message('Forum does not exist!', buildURL('index.php'));
  57. 		else
  58. 		{
  59. 			$this->getView('MainView')->putExistingModel('ForumsModel', $this->getModel('ForumsModel'));
  60. 			$this->getView('MainView')->viewforum();
  61. 		}
  62. 	}
  63. 	
  64. 	public function userlist()
  65. 	{
  66. 		$this->loadDependencies();
  67. 		
  68. 		if (isset($_GET['rank']))
  69. 		{
  70. 			switch ($_GET['rank'])
  71. 			{
  72. 				case 'admin':
  73. 					$_GET['rank'] = RANK_ADMIN;
  74. 					break;
  75. 				case 'mod':
  76. 					$_GET['rank'] = RANK_MOD;
  77. 					break;
  78. 				case 'user':
  79. 					$_GET['rank'] = RANK_USER;
  80. 					break;
  81. 				default:
  82. 					$_GET['rank'] = '';
  83. 					break;
  84. 			}
  85. 		}
  86. 		else
  87. 			$_GET['rank'] = '';	
  88. 				
  89. 		$_POST['sort_type'] = (isset($_POST['sort_type'])) ? $this->db->real_escape_string($_POST['sort_type']) : 'regdate';
  90. 		$allowed_sorting = array('regdate', 'lastvisit', 'nick', 'post_count');
  91. 		if (!in_array($_POST['sort_type'], $allowed_sorting))
  92. 			$_POST['sort_type'] = '';
  93. 		$_POST['sort_desc'] = (isset($_POST['sort_desc'])) ? 'DESC' : 'ASC';
  94. 		
  95. 		$this->getView('MainView')->userlist();
  96. 		
  97. 	}
  98. 	
  99. 	public function viewtopic()
  100. 	{
  101. 		$this->loadDependencies();
  102. 		
  103. 		$this->loadModel('PostsModel');
  104. 		
  105. 		$_GET['id'] = (isset($_GET['id'])) ? trim(strip_tags($this->db->real_escape_string($_GET['id']))) : 0;
  106. 		
  107. 		$t = $this->getModel('PostsModel')->getTopic($_GET['id']);
  108. 		
  109. 		if ($t == null)
  110. 			$this->getView('MainView')->forum_message('Topic does not exist!', buildURL('index.php')); 
  111. 		else
  112. 		{
  113. 			$this->getView('MainView')->putExistingModel('PostsModel', $this->getModel('PostsModel'));
  114. 			$this->getView('MainView')->viewtopic();
  115. 		}
  116. 	}
  117. 	
  118. 	public function newtopic()
  119. 	{
  120. 		$this->posting(POSTING_NEWTOPIC);
  121. 	}
  122. 	
  123. 	public function reply()
  124. 	{
  125. 		$this->posting(POSTING_REPLY);
  126. 	}
  127. 	
  128. 	public function editpost()
  129. 	{
  130. 		$this->posting(POSTING_EDIT);
  131. 	}
  132. 	
  133. 	public function quote()
  134. 	{
  135. 		$this->posting(POSTING_QUOTE);
  136. 	}
  137. 	
  138. 	public function moderate()
  139. 	{
  140. 		$this->loadDependencies();
  141. 		$this->loadModel('PostsModel');
  142. 		$this->loadModel('ForumsModel');
  143. 		
  144. 		$_GET['id'] = (isset($_GET['id'])) ? trim(strip_tags($this->db->real_escape_string($_GET['id']))) : 0;
  145. 		$_GET['submode'] = (isset($_GET['submode'])) ? trim(strip_tags($this->db->real_escape_string($_GET['submode']))) : 0;
  146. 		
  147. 		if (!$this->getModel('SessionModel')->isLogged())
  148. 		{
  149. 			$this->getView('MainView')->forum_message('You are not logged.', buildURL('index.php?mode=login', true));
  150. 			$lockv = true;
  151. 		}
  152. 		
  153. 		if ($this->getModel('SessionModel')->getRank() == RANK_USER && !isset($lockv))
  154. 		{
  155. 			$this->getView('MainView')->forum_message('Only mods have access to this menu', buildURL('index.php'));
  156. 			$lockv = true;
  157. 		}
  158. 		
  159. 		//sprawdź czy wątek/post istnieje

  160. 		
  161. 		if (!isset($lockv))
  162. 		switch($_GET['submode'])
  163. 		{
  164. 			case 'deletetopic':
  165. 			case 'locktopic':
  166. 			case 'movetopic':
  167. 				$t = $this->getModel('PostsModel')->getTopic($_GET['id']);
  168. 				
  169. 				if ($t == null)
  170. 				{
  171. 					$this->getView('MainView')->forum_message('Topic does not exist!', buildURL('index.php'));
  172. 					$lockv = true;
  173. 				}	
  174. 				break;
  175. 				
  176. 			case 'deletepost':
  177. 				$p = $this->getModel('PostsModel')->getPost($_GET['id']);
  178. 				if ($p == null)
  179. 				{
  180. 					$this->getView('MainView')->forum_message('Post does not exist!', buildURL('index.php'));
  181. 					$lockv = true;
  182. 				}
  183. 				else
  184. 				{
  185. 					$t = $this->getModel('PostsModel')->getTopic($p['topic_id']);
  186. 					
  187. 					if ($t['post_count'] == 1)
  188. 					{
  189. 						$this->getView('MainView')->forum_message('If topic has only one post, use <span style="font-weight: bold">delete topic</span> option.', buildURL('index.php?mode=viewtopic&amp;id='.$p['topic_id']), 3);
  190. 						$lockv = true;
  191. 					}
  192. 				}
  193. 				
  194. 				break;
  195. 			
  196. 			default:
  197. 				$this->getView('MainView')->forum_message('Invalid mode', buildURL('index.php'));
  198. 				$lockv = true;
  199. 				break;
  200. 		}
  201. 		
  202. 		//wysyłanie formularza

  203. 		if (isset($_POST['confirmed']) && !isset($lockv))
  204. 		{
  205. 			if (!isset($_POST['rejected']))
  206. 			{
  207. 				switch($_GET['submode'])
  208. 				{
  209. 					case 'deletepost':
  210. 						$this->getModel('PostsModel')->deletePost($_GET['id']);
  211. 						$this->getView('MainView')->forum_message('Post deleted. Redirecting...', buildURL('index.php?mode=viewtopic&amp;id='.$p['topic_id']));
  212. 						$lockv = true;
  213. 						break;
  214. 						
  215. 					case 'deletetopic':
  216. 						$this->getModel('PostsModel')->deleteTopic($_GET['id']);
  217. 						$this->getView('MainView')->forum_message('Topic deleted. Redirecting...', buildURL('index.php?mode=viewforum&amp;id='.$t['forum_id']));
  218. 						$lockv = true;
  219. 						break;
  220. 						
  221. 					case 'locktopic':
  222. 						if ($t['topic_locked'] == false)
  223. 						{
  224. 							$this->getModel('PostsModel')->lockTopic($_GET['id']);
  225. 							$this->getView('MainView')->forum_message('Topic locked. Redirecting...', buildURL('index.php?mode=viewtopic&amp;id='.$_GET['id']));
  226. 						}
  227. 						else
  228. 						{
  229. 							$this->getModel('PostsModel')->lockTopic($_GET['id'], false);
  230. 							$this->getView('MainView')->forum_message('Topic unlocked. Redirecting...', buildURL('index.php?mode=viewtopic&amp;id='.$_GET['id']));
  231. 						}
  232. 						$lockv = true;
  233. 						break;
  234. 					case 'movetopic':
  235. 						if ($this->getModel('ForumsModel')->getForum($_POST['forum_id']) == null)
  236. 							$this->getView('MainView')->forum_message('Forum does not exist!', buildURL('index.php?mode=viewtopic&amp;id='.$_GET['id']));
  237. 						else
  238. 						{
  239. 							$this->getModel('PostsModel')->moveTopic($_GET['id'], $_POST['forum_id']);
  240. 							$this->getView('MainView')->forum_message('Topic moved. Redirecting...', buildURL('index.php?mode=viewtopic&amp;id='.$_GET['id']));
  241. 						}
  242. 						$lockv = true;
  243. 						break;
  244. 						
  245. 				}
  246. 			}
  247. 			else
  248. 			{
  249. 				switch ($_GET['submode'])
  250. 				{
  251. 					case 'deletetopic':
  252. 					case 'locktopic':
  253. 					case 'movetopic':
  254. 						$this->forward(buildURL('index.php?mode=viewtopic&id='.$_GET['id']));
  255. 						break;
  256. 					case 'deletepost':
  257. 						$this->forward(buildURL('index.php?mode=viewtopic&id='.$p['topic_id']));
  258. 				}
  259. 			}
  260. 		}
  261. 		
  262. 		if (!isset($lockv))
  263. 		switch($_GET['submode'])
  264. 		{
  265. 			case 'deletepost':
  266. 				$this->getView('MainView')->confirm_action('Do you really want delete post <span style="font-weight: bold">#'.$_GET['id'].'</span>?');
  267. 				break;
  268. 			case 'deletetopic':
  269. 				$this->getView('MainView')->confirm_action('Do you really want delete topic <span style="font-weight: bold">#'.$_GET['id'].'</span> with all posts? This operation cannot undone.');
  270. 				break;
  271. 				
  272. 			case 'locktopic':
  273. 				if ($t['topic_locked'] == false)
  274. 					$this->getView('MainView')->confirm_action('Do you want lock topic <span style="font-weight: bold">#'.$_GET['id'].'</span>?');
  275. 				else
  276. 					$this->getView('MainView')->confirm_action('Do you want unlock topic <span style="font-weight: bold">#'.$_GET['id'].'</span>?');
  277. 				break;
  278. 			case 'movetopic':
  279. 				$this->getView('MainView')->putExistingModel('PostsModel', $this->getModel('PostsModel'));
  280. 				$this->getView('MainView')->move_topic();
  281. 				break;
  282. 		}
  283. 	}
  284. 	
  285. 	
  286. 	public function posting($type)
  287. 	{
  288. 		$this->loadDependencies();
  289. 		$msg = '';
  290. 		
  291. 		$this->loadModel('PostsModel');
  292. 		$this->loadModel('ForumsModel');
  293. 	
  294. 		$_GET['id'] = (isset($_GET['id'])) ? trim(strip_tags($this->db->real_escape_string($_GET['id']))) : 0;
  295. 		
  296. 		if (!$this->getModel('SessionModel')->isLogged())
  297. 		{
  298. 			$this->getView('MainView')->forum_message('You are not logged.', buildURL('index.php?mode=login', true));
  299. 			$lockv = true;
  300. 		}
  301. 		
  302. 		//CHECKING IF TOPIC/FORUM EXISTS AND IS NOT LOCKED

  303. 		if (!isset($lockv))
  304. 		switch($type)
  305. 		{
  306. 			case POSTING_NEWTOPIC:	//checking if forum exists and is not locked

  307. 				$f = $this->getModel('ForumsModel')->getForum($_GET['id']);
  308. 		
  309. 				if ($f == null)
  310. 				{
  311. 					$this->getView('MainView')->forum_message('Forum does not exist!', buildURL('index.php'));
  312. 					$lockv = true;
  313. 				}
  314. 				else
  315. 					if ($f['locked'] == true)
  316. 					{
  317. 						$this->getView('MainView')->forum_message('Forum is locked', buildURL('index.php?mode=viewforum&amp;id='.$_GET['id']));
  318. 						$lockv = true;
  319. 					}
  320. 				break;
  321. 		
  322. 			case POSTING_REPLY:	//checking if topic exists

  323. 			case POSTING_QUOTE:
  324. 				$t = $this->getModel('PostsModel')->getTopic($_GET['id']);
  325. 			
  326. 				if ($t == null)
  327. 				{
  328. 					$this->getView('MainView')->forum_message('Topic does not exist!', buildURL('index.php'));
  329. 					$lockv = true;
  330. 				}
  331. 				else
  332. 				{
  333. 					if ($t['forum_locked'] == true && $this->getModel('SessionModel')->getRank() < RANK_MOD)
  334. 					{
  335. 						$this->getView('MainView')->forum_message('Forum is locked', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  336. 						$lockv = true;
  337. 					}
  338. 					
  339. 					if ($t['topic_locked'] == true && $this->getModel('SessionModel')->getRank() < RANK_MOD)
  340. 					{
  341. 						$this->getView('MainView')->forum_message('Topic is locked', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  342. 						$lockv = true;
  343. 					}
  344. 					
  345. 					if ($type == POSTING_QUOTE)
  346. 					{
  347. 						$_GET['q'] = (isset($_GET['q'])) ? trim(strip_tags($this->db->real_escape_string($_GET['q']))) : 0;
  348. 						$qp = $this->getModel('PostsModel')->getPost($_GET['q']);
  349. 						
  350. 						if ($qp == null)
  351. 						{
  352. 							$this->getView('MainView')->forum_message('Invalid quoted post', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  353. 							$lockv = true;
  354. 						}
  355. 						else
  356. 						{
  357. 							if ($qp['topic_id'] != $_GET['id'])
  358. 							{
  359. 								$this->getView('MainView')->forum_message('Invalid quoted post', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  360. 								$lockv = true;
  361. 							}
  362. 						}
  363. 					}
  364. 				}
  365. 				break;
  366. 				
  367. 			case POSTING_EDIT:
  368. 				$p = $this->getModel('PostsModel')->getPost($_GET['id']);
  369. 				
  370. 				if ($p == null)
  371. 				{
  372. 					$this->getView('MainView')->forum_message('Post does not exist!', buildURL('index.php'));
  373. 					$lockv = true;
  374. 				}
  375. 				else
  376. 				{
  377. 					$t = $this->getModel('PostsModel')->getTopic($p['topic_id']);
  378. 					if ($t['forum_locked'] == true && $this->getModel('SessionModel')->getRank() < RANK_MOD)
  379. 					{
  380. 						$this->getView('MainView')->forum_message('Forum is locked', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  381. 						$lockv = true;
  382. 					}
  383. 					if ($t['topic_locked'] == true && $this->getModel('SessionModel')->getRank() < RANK_MOD)
  384. 					{
  385. 						$this->getView('MainView')->forum_message('Topic is locked', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  386. 						$lockv = true;
  387. 					}
  388. 					
  389. 					$first = $this->getModel('PostsModel')->getFirstPost($t['topic_id']);
  390. 					
  391. 					if ($first['post_id'] == $_GET['id'])
  392. 						$type = POSTING_EDITTOPIC;
  393. 						
  394. 					if ($p['user_id'] != $this->getModel('SessionModel')->getID() && $this->getModel('SessionModel')->getRank() < RANK_MOD)
  395. 					{
  396. 						$this->getView('MainView')->forum_message('You can edit only own posts', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  397. 						$lockv = true;
  398. 					}	
  399. 				}
  400. 				
  401. 				break;
  402. 		}
  403. 

  404. 		//przesłanie formularza --------------------------------------------------------------------------------

  405. 		if (isset($_POST['post']) && !isset($_POST['preview']) && !isset($lockv))
  406. 		{
  407. 			$_POST['post'] = trim(htmlspecialchars($this->db->real_escape_string($_POST['post'])));
  408. 			
  409. 			if ($type == POSTING_NEWTOPIC || $type == POSTING_EDITTOPIC) //walidacja tytułu tematu (add, edit)

  410. 			{
  411. 				$_POST['topic'] = trim(strip_tags($this->db->real_escape_string($_POST['topic'])));
  412. 

  413. 				if (strlen($_POST['topic']) < 3)
  414. 					$msg .= 'Topic title is too short (min 3 characters)<br>';
  415. 			}
  416. 						
  417. 			if (strlen($_POST['post']) < 3)
  418. 				$msg .= 'Post content is too short (min 3 characters)<br>';
  419. 			
  420. 			if ($msg == null)
  421. 			{
  422. 				switch ($type)
  423. 				{
  424. 					case POSTING_NEWTOPIC: //akcje dodania nowego tematu

  425. 						
  426. 						$topic_id = $this->getModel('PostsModel')->addTopic($_POST['topic'], $_POST['post'], $_GET['id'], $this->getModel('SessionModel')->getID());
  427. 						if ($topic_id != null)
  428. 						{
  429. 							$this->getView('MainView')->forum_message('Topic created, Redirecting...', buildURL('index.php?mode=viewtopic&amp;id='.$topic_id));
  430. 							$lockv = true; 
  431. 						}	
  432. 						else
  433. 							$msg .= 'Something went wrong, try again.';
  434. 						break;
  435. 					case POSTING_EDITTOPIC:
  436. 					case POSTING_EDIT:
  437. 						$this->getModel('PostsModel')->changePost($_GET['id'], $_POST['post']);
  438. 						
  439. 						if ($type == POSTING_EDITTOPIC)
  440. 							$this->getModel('PostsModel')->changeTopic($t['topic_id'], $_POST['topic']);
  441. 						
  442. 						$this->getView('MainView')->forum_message('Post edited. Redirecting to topic...', buildURL('index.php?mode=viewtopic&amp;id='.$t['topic_id']));
  443. 						$lockv = true;
  444. 						break;	
  445. 					
  446. 					case POSTING_QUOTE:
  447. 					case POSTING_REPLY:
  448. 						$this->getModel('PostsModel')->addPost($_GET['id'], $this->getModel('SessionModel')->getID(), $_POST['post']);
  449. 						
  450. 						$this->getView('MainView')->forum_message('Reply saved. Redirecting to topic...', buildURL('index.php?mode=viewtopic&amp;id='.$_GET['id']));
  451. 						$lockv = true;
  452. 						break;
  453. 				}				
  454. 			}
  455. 		}
  456. 		
  457. 		if (!isset($lockv))
  458. 		{
  459. 			switch ($type)
  460. 			{
  461. 				case POSTING_NEWTOPIC:
  462. 				case POSTING_REPLY:
  463. 					$_POST['post'] = (isset($_POST['post'])) ? $_POST['post'] : '';
  464. 					break;
  465. 				case POSTING_EDITTOPIC:
  466. 					$_POST['post'] = (isset($_POST['post'])) ? $_POST['post'] : $p['content'];
  467. 					$_POST['topic'] = (isset($_POST['topic'])) ? $_POST['topic'] : $t['topic_title'];
  468. 					break;
  469. 				case POSTING_EDIT:
  470. 					$_POST['post'] = (isset($_POST['post'])) ? $_POST['post'] : $p['content'];
  471. 					break;
  472. 					
  473. 				case POSTING_QUOTE:
  474. 					$quote = ($qp['nick'] != null) ? '='.$qp['nick'] : '';
  475. 					$_POST['post'] = (isset($_POST['post'])) ? $_POST['post'] : '[quote'.$quote.']'.$qp['content'].'[/quote]';
  476. 					break;
  477. 				
  478. 			}
  479. 			if ($type == POSTING_NEWTOPIC)
  480. 				$_POST['topic'] = (isset($_POST['topic'])) ? $_POST['topic'] : ''; //tylko edycja/tworzenie tematu

  481. 			
  482. 			$this->getView('MainView')->putExistingModel('PostsModel', $this->getModel('PostsModel'));
  483. 			$this->getView('MainView')->putExistingModel('ForumsModel', $this->getModel('ForumsModel'));
  484. 			
  485. 			$this->getView('MainView')->posting_form($type, $msg);
  486. 		}
  487. 	}
  488. 	
  489. 	public function myprofile()
  490. 	{
  491. 		$this->loadDependencies();
  492. 		if (!$this->getModel('SessionModel')->isLogged())
  493. 			$this->forward('index.php');
  494. 		else
  495. 			$this->forward(buildURL('index.php?mode=viewprofile&id='.$this->getModel('SessionModel')->getID()));
  496. 	}
  497. 	
  498. 	public function viewprofile()
  499. 	{
  500. 		$this->loadDependencies();
  501. 		
  502. 		$this->loadModel('UsersModel');
  503. 		$this->getView('MainView')->putExistingModel('UsersModel', $this->getModel('UsersModel'));
  504. 		
  505. 		$_GET['id'] = (isset($_GET['id'])) ? trim(strip_tags($this->db->real_escape_string($_GET['id']))) : 0;
  506. 		
  507. 		if ($this->getModel('UsersModel')->getUserInformation($_GET['id']) == null)
  508. 			$this->getView('MainView')->forum_message('User does not exist!', buildURL('index.php')); 
  509. 		else
  510. 		{
  511. 			$this->getView('MainView')->viewprofile();
  512. 		}
  513. 	}
  514. 	
  515. 	public function editprofile()
  516. 	{
  517. 		$this->loadDependencies();
  518. 		$this->loadModel('UsersModel');
  519. 		$user_info = $this->getModel('UsersModel')->getUserInformation($this->getModel('SessionModel')->getID(), true);
  520. 		
  521. 		if (!$this->getModel('SessionModel')->isLogged())
  522. 		{
  523. 			$this->getView('MainView')->forum_message('You are not logged.', buildURL('index.php?mode=login', true));
  524. 		}
  525. 		else
  526. 		{
  527. 			$msg = '';
  528. 			if (isset($_POST['nick'], $_POST['passwd'], $_POST['passwd_confirm'], $_POST['email']))
  529. 			{
  530. 				//secure pools

  531. 				$_POST['nick'] = trim(strip_tags($this->db->real_escape_string($_POST['nick'])));
  532. 				$_POST['passwd_old'] = trim(strip_tags($_POST['passwd_old']));
  533. 				$_POST['passwd'] = trim(strip_tags($_POST['passwd']));
  534. 				$_POST['passwd_confirm'] = trim(strip_tags($_POST['passwd_confirm']));
  535. 				$_POST['email'] = trim(strip_tags($this->db->real_escape_string($_POST['email'])));
  536. 				$_POST['location'] = trim(strip_tags($this->db->real_escape_string($_POST['location'])));
  537. 				$_POST['signature'] = trim(strip_tags($this->db->real_escape_string($_POST['signature'])));
  538. 		
  539. 				if ($_POST['email'] != $user_info['email'] || $_POST['passwd'] != '')
  540. 				{
  541. 					if (sha1($_POST['passwd_old']) != $user_info['password'])
  542. 						$msg .= 'Old password is incorrect!<br>';
  543. 				}
  544. 				if ($_POST['passwd'] != '')
  545. 				{
  546. 					if (strlen($_POST['passwd']) < 8)
  547. 						$msg .= 'Password is too short (min 8 characters)<br>';	
  548. 						
  549. 					if ($_POST['passwd'] != $_POST['passwd_confirm'])
  550. 						$msg .= 'Password do not match!<br>';
  551. 				}
  552. 				
  553. 				//check if avatar is uploaded

  554. 				if ($_FILES['avatar']['tmp_name'] != null)
  555. 				{
  556. 					global $allowed_avatars;
  557. 					$image_size = @getimagesize($_FILES['avatar']['tmp_name']);
  558. 

  559. 					if ($image_size == null)
  560. 						$msg .= 'Type of uploaded file are not allowed.<br>';
  561. 					else
  562. 						if (!in_array($image_size['mime'], $allowed_avatars))
  563. 							$msg .= 'Type of uploaded avatar is not supported.<br>';
  564. 						else
  565. 							if ($image_size[0] > 120 || $image_size[1] > 150)
  566. 								$msg .= 'Uploaded avatar is too big (maximum 120x150 px).<br>';
  567. 				}
  568. 				
  569. 				if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL))
  570. 					$msg .= 'Email is incorrect<br>';
  571. 				
  572. 				if ($msg == '')
  573. 				{
  574. 					if ($_FILES['avatar']['tmp_name'] != null && !isset($_POST['delete_avatar'])) //change an avatar

  575. 					{
  576. 						if ($user_info['avatar'] != '')
  577. 							unlink('./'.$user_info['avatar']);
  578. 							
  579. 						$ext = pathinfo($_FILES['avatar']['name'], PATHINFO_EXTENSION);
  580. 						$av = 'images/avatars/'.$this->getModel('SessionModel')->getID().'.'.$ext;
  581. 						move_uploaded_file($_FILES['avatar']['tmp_name'], './'.$av); 
  582. 					}
  583. 					else
  584. 						if (isset($_POST['delete_avatar']))
  585. 						{
  586. 							unlink('./'.$user_info['avatar']);
  587. 							$av = '';
  588. 						}
  589. 						else
  590. 							$av = $user_info['avatar']; //if new avatar is not set

  591. 					
  592. 					if ($_POST['passwd'] != '')
  593. 						$this->getModel('UsersModel')->changeUserPassword($this->getModel('SessionModel')->getID(), sha1($_POST['passwd']));
  594. 					
  595. 					$this->getModel('UsersModel')->updateUserProfile($this->getModel('SessionModel')->getID(), '', $_POST['email'], $_POST['location'], $_POST['signature'], $av);
  596. 					$this->getView('MainView')->forum_message('Your profile has changed.', buildURL('index.php?mode=viewprofile&amp;id='.$this->getModel('SessionModel')->getID()));
  597. 					$lockv = true;
  598. 

  599. 				}
  600. 			}			
  601. 			
  602. 			$_POST['nick'] = (isset($_POST['nick'])) ? $_POST['nick'] : $user_info['nick'];
  603. 			$_POST['email'] = (isset($_POST['email'])) ? $_POST['email'] : $user_info['email'];
  604. 			$_POST['location'] = (isset($_POST['location'])) ? $_POST['location'] : $user_info['location'];
  605. 			$_POST['signature'] = (isset($_POST['signature'])) ? $_POST['signature'] : $user_info['signature'];
  606. 	
  607. 			$this->getView('MainView')->putExistingModel('UsersModel', $this->getModel('UsersModel'));
  608. 		
  609. 			if (!isset($lockv))
  610. 				$this->getView('MainView')->edprofile_form($msg);
  611. 		}
  612. 	}
  613. 	
  614. 	public function logout()
  615. 	{
  616. 		$this->loadDependencies();
  617. 	
  618. 		if (!$this->getModel('SessionModel')->isLogged())
  619. 			$this->forward('index.php');
  620. 			
  621. 		$this->getModel('SessionModel')->deleteSession();
  622. 		
  623. 		$this->getView('MainView')->forum_message('You are logged out.', buildURL('index.php'));
  624. 	}
  625. 	
  626. 	public function login()
  627. 	{
  628. 		$this->loadDependencies();
  629. 		$this->loadModel('BansModel');
  630. 		
  631. 		if ($this->getModel('SessionModel')->isLogged())
  632. 			$this->forward(buildURL('index.php'));
  633. 		
  634. 		$msg = '';
  635. 		if (isset($_POST['nick'], $_POST['passwd']))
  636. 		{
  637. 			//secure pools

  638. 			$_POST['nick'] = trim(strip_tags($this->db->real_escape_string($_POST['nick'])));
  639. 			$_POST['passwd'] = sha1(trim(strip_tags($this->db->real_escape_string($_POST['passwd']))));
  640. 			
  641. 			$userinfo = $this->getModel('SessionModel')->tryGetUser($_POST['nick'], $_POST['passwd']);
  642. 			
  643. 			if (count($userinfo) == 0)
  644. 				$msg = 'Invalid username or password.';
  645. 				
  646. 			if ($msg == '')
  647. 			{
  648. 				$ban_info = $this->getModel('BansModel')->getUserBan($userinfo['user_id']);
  649. 				
  650. 				if ($ban_info == null)
  651. 				{
  652. 					$this->getModel('SessionModel')->registerNewSession($userinfo['user_id']);
  653. 					$this->getView('MainView')->forum_message('You are logged as: <span style="font-weight: bold">'.$userinfo['nick'].'</span>', buildURL('index.php'));
  654. 				}
  655. 				else
  656. 				{
  657. 					$reason = ($ban_info['reason'] != '') ? '<br>Reason: <span style="font-style: italic">'.$ban_info['reason'].'</span>' : '';
  658. 					$this->getView('MainView')->forum_message('You are banned!'.$reason);
  659. 				}
  660. 				$lockv = true;
  661. 			}
  662. 		}
  663. 		
  664. 		$_POST['nick'] = (isset($_POST['nick'])) ? $_POST['nick'] : '';
  665. 		if (!isset($lockv))
  666. 			$this->getView('MainView')->login_form($msg);
  667. 	}
  668. 	
  669. 	public function register()
  670. 	{
  671. 		$this->loadDependencies();
  672. 		$this->loadModel('UsersModel');
  673. 		
  674. 		if ($this->getModel('SessionModel')->isLogged())
  675. 			$this->forward('index.php');
  676. 		
  677. 		$msg = '';
  678. 		if (isset($_POST['nick'], $_POST['passwd'], $_POST['passwd_confirm'], $_POST['email']))
  679. 		{
  680. 			//secure pools

  681. 			$_POST['nick'] = trim(strip_tags($this->db->real_escape_string($_POST['nick'])));
  682. 			$_POST['passwd'] = trim(strip_tags($_POST['passwd']));
  683. 			$_POST['passwd_confirm'] = trim(strip_tags($_POST['passwd_confirm']));
  684. 			$_POST['email'] = trim(strip_tags($this->db->real_escape_string($_POST['email'])));
  685. 			
  686. 			if (strlen($_POST['nick']) < 3)
  687. 				$msg .= 'Nick is too short (min 3 characters)<br>';
  688. 				
  689. 			if (strlen($_POST['passwd']) < 8)
  690. 				$msg .= 'Password is too short (min 8 characters)<br>';
  691. 				
  692. 			if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL))
  693. 				$msg .= 'Email is incorrect<br>';
  694. 			
  695. 			if ($this->getModel('UsersModel')->nickExists($_POST['nick']) == true)
  696. 				$msg .= 'Nick is in use. Type another one.<br>';
  697. 			
  698. 			if ($_POST['passwd'] != $_POST['passwd_confirm'])
  699. 				$msg .= 'Password do not match';
  700. 				
  701. 			if ($msg == '')
  702. 			{
  703. 				$this->getModel('UsersModel')->createNewUser($_POST['nick'], sha1($_POST['passwd']), $_POST['email']);
  704. 				$this->getView('MainView')->forum_message('Your account has created. Log in to write new posts.', buildURL('index.php'), 3);
  705. 				$lockv = true;
  706. 			}
  707. 		}
  708. 		
  709. 		$_POST['nick'] = (isset($_POST['nick'])) ? $_POST['nick'] : '';
  710. 		$_POST['email'] = (isset($_POST['email'])) ? $_POST['email'] : '';
  711. 		
  712. 		if (!isset($lockv))
  713. 			$this->getView('MainView')->register_form($msg);
  714. 	}
  715. 	
  716. 	public function checknick()
  717. 	{
  718. 		$this->loadModel('UsersModel');
  719. 		if (!isset($_GET['nick']))
  720. 			$_GET['nick'] = '';
  721. 			
  722. 		$_GET['nick'] = trim($this->db->real_escape_string(strip_tags($_GET['nick'])));
  723. 		
  724. 		if ($this->getModel('UsersModel')->nickExists($_GET['nick']) == true)
  725. 			echo 'true';
  726. 		else
  727. 			echo 'false';
  728. 	}
  729. }
  730. 

  731. ?>