mirror of
https://port.numenaute.org/aleajactaest/khanat-opennel-code.git
synced 2024-11-25 08:36:14 +00:00
be9704a768
TODO: add files to database TODO: hash folder to stick files in
56 lines
2.3 KiB
PHP
56 lines
2.3 KiB
PHP
<?php
|
|
/**
|
|
* This function is beign used to load info that's needed for the show_reply page.
|
|
* check if the person is allowed to see the reply, if not he'll be redirected to an error page.
|
|
* data regarding to the reply will be returned by this function that will be used by the template.
|
|
* @author Daan Janssens, mentored by Matthew Lagoe
|
|
*/
|
|
function show_reply(){
|
|
//if logged in
|
|
if(WebUsers::isLoggedIn() && isset($_GET['id'])){
|
|
|
|
$result['reply_id'] = filter_var($_GET['id'], FILTER_SANITIZE_NUMBER_INT);
|
|
$reply = new Ticket_Reply();
|
|
$reply->load_With_TReplyId($result['reply_id']);
|
|
|
|
|
|
$ticket = new Ticket();
|
|
$ticket->load_With_TId($reply->getTicket());
|
|
|
|
//check if the user is allowed to see the reply
|
|
if(( $ticket->getAuthor() == unserialize($_SESSION['ticket_user'])->getTUserId() && ! $reply->getHidden()) || Ticket_User::isMod(unserialize($_SESSION['ticket_user']) )){
|
|
$content = new Ticket_Content();
|
|
$content->load_With_TContentId($reply->getContent());
|
|
|
|
$author = new Ticket_User();
|
|
$author->load_With_TUserId($reply->getAuthor());
|
|
|
|
$result['hidden'] = $reply->getHidden();
|
|
$result['ticket_id'] = $reply->getTicket();
|
|
$result['reply_timestamp'] = $reply->getTimestamp();
|
|
$result['author_permission'] = $author->getPermission();
|
|
$result['reply_content'] = $content->getContent();
|
|
$result['author'] = $author->getExternId();
|
|
$webUser = new WebUsers($author->getExternId());
|
|
$result['authorName'] = $webUser->getUsername();
|
|
if(Ticket_User::isMod(unserialize($_SESSION['ticket_user']))){
|
|
$result['isMod'] = "TRUE";
|
|
}
|
|
global $INGAME_WEBPATH;
|
|
$result['ingame_webpath'] = $INGAME_WEBPATH;
|
|
return $result;
|
|
|
|
}else{
|
|
//ERROR: No access!
|
|
$_SESSION['error_code'] = "403";
|
|
header("Cache-Control: max-age=1");
|
|
header("Location: index.php?page=error");
|
|
throw new SystemExit();
|
|
}
|
|
}else{
|
|
//ERROR: not logged in!
|
|
header("Cache-Control: max-age=1");
|
|
header("Location: index.php");
|
|
throw new SystemExit();
|
|
}
|
|
}
|