Merge branch 'master' of https://github.com/asiekierka/Tinyboard

Conflicts: mod.php
2013-01-09 08:35:27 +01:00 · 2013-01-09 08:35:27 +01:00 · c18ed4e51a
commit c18ed4e51a
parent f6e9dbed13 e145a0ea89
11 changed files with 192 additions and 64 deletions
--- a/inc/config.php
+++ b/inc/config.php
@ -651,6 +651,10 @@
 		array(
 			'/^https?:\/\/video\.google\.com\/videoplay\?docid=(\d+)([&#](.+)?)?$/i',
 			'<embed src="http://video.google.com/googleplayer.swf?docid=$1&hl=en&fs=true" style="width:%%tb_width%%px;height:%%tb_height%%px;float:left;margin:10px 20px" allowFullScreen="true" allowScriptAccess="always" type="application/x-shockwave-flash"></embed>'
+		),
+		array(
+			'/^https?:\/\/(\w+\.)?vocaroo\.com\/i\/([a-zA-Z0-9]{2,15})$/i',
+			'<object style="float: left;margin: 10px 20px;" width="148" height="44"><param name="movie" value="http://vocaroo.com/player.swf?playMediaID=$2&autoplay=0"></param><param name="wmode" value="transparent"></param><embed src="http://vocaroo.com/player.swf?playMediaID=$2&autoplay=0" width="148" height="44" wmode="transparent" type="application/x-shockwave-flash"></embed></object>'
 		)
 	);
 	
@ -949,7 +953,7 @@
 	// View whether a thread has been bumplocked ("-1" to allow non-mods to see too)
 	$config['mod']['view_bumplock'] = MOD;
 	// Edit posts (EXPERIMENTAL)
-	$config['mod']['editpost'] = DISABLED;
+	$config['mod']['editpost'] = MOD;
 	// "Move" a thread to another board (EXPERIMENTAL; has some known bugs)
 	$config['mod']['move'] = DISABLED;
 	// Bypass "field_disable_*" (forced anonymity, etc.)
--- a/inc/mod/pages.php
+++ b/inc/mod/pages.php
@ -985,6 +985,54 @@ function mod_ban_post($board, $delete, $post, $token = false) {
 	mod_page(_('New ban'), 'mod/ban_form.html', $args);
 }

+function mod_edit_post($board, $post) {
+	global $config, $mod;
+
+	if (!openBoard($board))
+		error($config['error']['noboard']);
+
+	if (!hasPermission($config['mod']['editpost'], $board))
+		error($config['error']['noaccess']);
+
+	$security_token = make_secure_link_token($board . '/ban/' . $post);
+	
+	$query = prepare(sprintf('SELECT * FROM `posts_%s` WHERE `id` = :id', $board));
+	$query->bindValue(':id', $post);
+	$query->execute() or error(db_error($query));
+
+	if (!$_post = $query->fetch(PDO::FETCH_ASSOC))
+		error($config['error']['404']);
+	
+	if(isset($_POST['mode']) && $_POST['mode'] == "edit")
+	{
+		$query = prepare(sprintf("UPDATE `posts_%s` SET `name` = :name,`email` = :email,`subject` = :subject,`body` = :body WHERE `id` = :id",$board));
+		$query->bindValue(':id', $post);
+		$query->bindValue('name', $_POST['name']);
+		$query->bindValue(':email', $_POST['email']);
+		$query->bindValue(':subject', $_POST['subject']);
+		$query->bindValue(':body', $_POST['body']);
+		$query->execute() or error(db_error($query));
+
+		$thread = $_post['thread'];
+		buildThread($thread ? $thread : $post);
+		modLog("Edited post #{$post}");
+		buildIndex();
+
+		header('Location: ?/' . sprintf($config['board_path'], $board) . $config['file_index'], true, $config['redirect_http']);		
+	} else {
+		$args = array(
+			'token' => $security_token,
+			'name' => $_post['name'],
+			'email' => $_post['email'],
+			'subject' => $_post['subject'],
+			'body' => $_post['body'],
+			'mode' => "edit"
+		);
+
+		mod_page(_('Edit post'), 'mod/edit_post_form.html', $args);
+	}
+}
+
 function mod_delete($board, $post) {
 	global $config, $mod;