search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
0.8.1a
[gfh.git] / messagelist.php
blob4c73b0884b663a190fe2184cc64becc71db144bf
1 <?php session_start();
2
3 include ("config.php");
4 if (!$_GET['board'])
5 {
6 echo "Invalid boardID.";
7 exit;
8 }
9 if (!$_GET['topic'])
10 {
11 Echo "Invalid topicID.";
12 exit;
13 }
14 function clancheck($bdnum, $username)
15 {
16 $sql = "SELECT * FROM users WHERE username='$username'";
17 $result = mysql_query($sql);
18 $myrow = mysql_fetch_array($result);
19 $clan2 = $myrow["faction"];
20 $sql = "SELECT * FROM boards WHERE boardid='$bdnum'";
21 $result = mysql_query($sql);
22 $myrow = mysql_fetch_array($result);
23 if ($clan2 == $myrow["clan"])
24 {
25 return 1;
26 } else
27 {
28 return 0;
29 }
30 }
31 function checkl($topicid)
32 {
33 $sql = "SELECT * FROM topics WHERE topicid='$topicid'";
34 $result = mysql_query($sql);
35 $myrow = mysql_fetch_array($result);
36 if ($myrow["active"] == 0)
37 return 0;
38 if ($myrow["active"] == 1)
39 return 1;
40 }
41 function check2($board)
42 {
43 $sql = "SELECT * FROM boards WHERE boardid='$board'";
44 $result = mysql_query($sql);
45 $myrow = mysql_fetch_array($result);
46 return $myrow["boardlevel"];
47 }
48 function check3($board, $topic)
49 {
50 $sql = "SELECT * FROM messages WHERE topic='$topic' AND mesboard='$board'";
51 $result = mysql_query($sql);
52 if (!mysql_num_rows($result))
53 {
54 return 0;
55 } else
56 {
57 return 1;
58 }
59 }
60 function howsugs()
61 {
62 $sql = "SELECT * FROM suggest WHERE active=1";
63 $result = mysql_query($sql);
64 $suggests = mysql_num_rows($result);
65 return $suggests;
66 }
67 function howmarks()
68 {
69 $sql = "SELECT * FROM marked WHERE active=1";
70 $result = mysql_query($sql);
71 $marks = mysql_num_rows($result);
72 return $marks;
73 }
74 function getlevel($username)
75 {
76 $sql = "SELECT * FROM users WHERE username='$username'";
77 $result = mysql_query($sql);
78 $myrow = mysql_fetch_array($result);
79 return $myrow["level"];
80 }
81 function useid($usename)
82 {
83 $sql = "SELECT * FROM users WHERE username='$usename'";
84 $result = mysql_query($sql);
85 $myrow = mysql_fetch_array($result);
86 return $myrow["userid"];
87 }
88 function useid2($usename)
89 {
90 $sql = "SELECT * FROM users WHERE username='$usename'";
91 $result = mysql_query($sql);
92 $myrow = mysql_fetch_array($result);
93 return $myrow["username"];
94 }
95 $username = auth();
96 $sql = "SELECT * FROM users WHERE username='$uname'";
97 $result = mysql_query($sql);
98 $myrow = mysql_fetch_array($result);
99 $userlevel = $myrow["level"];
100 $sql = "SELECT * FROM boards WHERE boardid='{$_GET['board']}'";
101 $result = mysql_query($sql);
102 $myrow = mysql_fetch_array($result);
103 $boardname = $myrow["boardname"];
104 $clanvalue = $myrow["clan"];
105 if (!$username)
106 {
107 echo "<font color=black>You cannot view this board.</font>";
108 exit;
109 }
110 if ($username)
111 {
112 $clan = clancheck($_GET['board'], $uname);
113 if ($clanvalue != 0 AND $userlevel != 60)
114 {
115 if ($clan == 0)
116 {
117 echo "<font color=black>You cannot view this board.</font>";
118 exit;
119 }
120 }
121 $sql = "SELECT * FROM topics WHERE topicid='{$_GET['topic']}'";
122 $result = mysql_query($sql);
123 $myrow = mysql_fetch_array($result);
124 $topicname = $myrow["topicname"];
125 $topicname = stripslashes($topicname);
126 $sql = "SELECT * FROM users WHERE username='$uname'";
127 $result = mysql_query($sql);
128 $myrow = mysql_fetch_array($result);
129 echo "<font size=6 face=arial color=black><b><center>".stripslashes($boardname)."</b><br></font><font size=3 face=arial color=black>".$topicname."</center></font>\n";
130 echo "<table width=100%><tr align=center bgcolor=".$titlecolor."><td><font face=arial size=3><b><a href=user.php?board=".$_GET['board']."&topic=".$_GET['topic'].">".$myrow["username"]." (".$myrow["level"].")</a>: <a href=index.php>Board List</a> | <a href=topiclist.php?board=".$_GET['board'].">Topic List</a> | <a href=postmes.php?board=".$_GET['board']."&topic=".$_GET['topic'].">Post a new message</a> | <a href=logout.php>Log Out</a></b> | <b><a href=faq.php>FAQ</a></b></td>\n</tr></font>\n";
131 if ($userlevel >= 50)
132 {
133 $marks = howmarks();
134 $sugs = howsugs();
135 echo "<tr><td bgcolor=".$titlecolor."><b><font face=arial>Marks:</b> <a href=modme.php>".$marks."</a> | <b>Suggests:</b> <a href=helpme.php>".$sugs."</a> | <a href=modresources.php>Moderator Resources</a></td></tr></font>\n";
136 }
137 echo "</table>";
138 $talive = checkl($_GET['topic']);
139 if ($talive == 0)
140 {
141 echo "<font color=black>This topic has been deleted.</font>";
142 exit;
143 }
144 echo "<table width=100% cellpadding=0 cellspacing=2 border=0>";
145 if (empty($_GET['page']))
146 {
147 $page = 0;
148 } else
149 {
150 $page = $_GET['page'] -1;
151 }
152 $pages = $page * 50;
153 $sql = "SELECT * FROM messages WHERE topic='{$_GET['topic']}' ORDER BY theorder ASC LIMIT ".$pages.",50";
154 $result = mysql_query($sql);
155 $boardlevel = check2($_GET['board']);
156 $uselevel = getlevel($uname);
157 if ($boardlevel > $uselevel)
158 {
159 echo "<font color=black>You cannot view this.</font>";
160 exit;
161 }
162 while ($myrow = mysql_fetch_array($result))
163 {
164 $alive = check3($_GET['board'], $_GET['topic']);
165 if ($alive == 0)
166 {
167 echo "<font color=black>Invalid link.</font>";
168 exit;
169 }
170 $mes = stripslashes($myrow["messbody"]);
171 $userid = useid($myrow["messby"]);
172 echo "<tr><td bgcolor=".$secondcolor."><font face=arial><b>From: </b><a href=whois.php?user=".$userid."&board=".$_GET['board']."&topic=".$_GET['topic'].">".$myrow["messby"]."</a> | <b>Posted:</b> ".$myrow["postdate"]." | ";
173 $useename = useid2($uname);
174 if ($myrow["messby"] == $useename)
175 {
176 echo "<a href=delmessage.php?board=".$_GET['board']."&topic=".$_GET['topic']."&message=".$myrow["messageid"].">Delete</a> this message.";
177 } else
178 {
179 echo "<a href=modnotice.php?board=".$_GET['board']."&topic=".$_GET['topic']."&message=".$myrow["messageid"].">Mark</a> for moderation</font>";
180 }
181 echo " <font face=arial>| <font face=arial><a href=suggestcook.php?board=".$_GET['board']."&topic=".$_GET['topic']."&message=".$myrow["messageid"].">Suggest</a> this person for aura.";
182 if ($myrow["auraed"] == 1)
183 {
184 echo "<img src=take.gif>";
185 }
186 if ($myrow["auraed"] == 2)
187 {
188 echo "<img src=add.gif>";
189 }
190 echo "</td></tr><tr><td bgcolor=".$firstcolor."><font face=arial>".$mes."</font></td></tr>\n";
191 }
192 echo "\n</table>";
193 $sql = "SELECT * FROM messages WHERE topic='{$_GET['topic']}'";
194 $result = mysql_query($sql);
195 if (mysql_num_rows($result) > 50)
196 {
197 $previouspage = $page +2;
198 $nextpage = $page;
199 $numberoftopics = mysql_num_rows($result);
200 $numberoftopics = $numberoftopics / 50;
201 $count = 0;
202 echo "<table width=100% cellpadding=0 cellspacing=2 border=0>\n<tr align=center>\n<td bgcolor=".$titlecolor."><b>Pages: ";
203 while ($count < $numberoftopics)
204 {
205 $count = $count +1;
206 echo "<a href=messagelist.php?board=".$_GET['board']."&topic=".$_GET['topic']."&page=".$count.">".$count."</a> ";
207 }
208 echo "</td></tr><tr><td bgcolor=".$titlecolor.">";
209 if ($page <> 0)
210 echo "\n<center><a href=messagelist.php?board=".$_GET['board']."&topic=".$_GET['topic']."&page=".$nextpage.">Previous Page</a> | ";
211 echo "<center><a href=messagelist.php?board=".$_GET['board']."&topic=".$_GET['topic']."&page=".$previouspage.">Next Page</a>\n</td>\n</tr>\n</table>";
212 }
213 echo "\n<center><font size=1 color=black>The fine print: I Neo (Chuck Sakoda) cannot be held responsible for any content the user's post";
214 } else
215 {
216 echo "You cannot view this board.";
217 }
218 ?>
asdsad