session_start();
require_once "functions.inc";
require_once "db.php";
// Connecting, selecting database
$con = connect_db();
$id = $_REQUEST["id"];
$discuss_id = $_REQUEST["discuss_id"];
$action = $_REQUEST["action"];
if($action == '') $action = 'view';
$db_action = $_REQUEST["db_action"];
$logged_in = false;
if($_SESSION[LoggedIn] == 'Y'){
$logged_in = true;
}
else{
if($_SESSION[LoggedIn] <> 'Y'){
if(isset($_COOKIE["UserID"])){
$obj = get_user_by_id($con, $_COOKIE["UserID"]);
if($obj->message == ''){
$screen_name = $obj->screen_name;
$_SESSION[ScreenName] = $screen_name;
if($_SESSION[LoggedIn] == 'Y') $logged_in = true;
}
else{
$message = $obj->message;
$screen_name = 'Guest';
if($_SESSION[LoggedIn] <> 'Y') $logged_in = false;
}
}
else{
$logged_in = false;
}
}
}
$today = date("D F j, Y, g:i a");
switch($db_action){
case 'insert':
if($_SESSION["insert"] == 'Y'){
if($discuss_id == ''){
$sql = "insert into forum_discuss (forum_id, posted_by, posted_date, content) values (";
$sql .= mysqli_real_escape_string($con,$id).",";
$sql .= "'".mysqli_real_escape_string($con,$_SESSION["ScreenName"])."',";
$sql .= "'".$today."',";
$sql .= "'".mysqli_real_escape_string($con,$_REQUEST["content"])."'";
$sql .= ")";
$result = @mysqli_query($con, $sql);
}
elseif($discuss_id <> ''){
$sql = "insert into forum_reply (discuss_id, posted_by, posted_date, content) values (";
$sql .= mysqli_real_escape_string($con,$discuss_id).",";
$sql .= "'".mysqli_real_escape_string($con,$_SESSION["ScreenName"])."',";
$sql .= "'".$today."',";
$sql .= "'".mysqli_real_escape_string($con,$_REQUEST["content"])."'";
$sql .= ")";
$result = @mysqli_query($con, $sql);
}
$sql = "update forum_topic set replies = replies + 1, last_updated = '".$today."' where id = ".$id;
$result = @mysqli_query($con, $sql);
unset($_SESSION["insert"]);
}
break;
case 'login':
// validate...
$user_obj = get_user_id($con, $_REQUEST[email], $_REQUEST[password]);
if($user_obj->user <> 0){
// set cookie...and session
set_session_and_cookie($user_obj);
}
else{
$login_message = $user_obj->message;
}
break;
}
$page_name = 'view_topic';
?>
page_meta($con, $page_name); ?>
require "top_nav.inc"; ?>
require "site_nav.inc"; ?>
Recent News
display_blog_titles($con, $limit = 10);
?>
if($action == 'view'){
$sql = "update forum_topic set views = views + 1 where id = ".$id;
$result = @mysqli_query($con, $sql);
}
$sql = "select * from forum_topic where id = ".$id;
$result = @mysqli_query($con, $sql);
?>
$display_width = 300;
$display_height = 300;
while($row = @mysqli_fetch_array($result, MYSQL_ASSOC)){
$have_image = FALSE;
$ext = $row["ext"];
$width = $row["width"];
$height = $row["height"];
$new_w = $display_width;
$new_h = $display_height;
if(strlen($ext) > 0 && strlen($width) > 0 && strlen($height) > 0){
$have_image = TRUE;
$old_x = $width;
$old_y = $height;
// see if we need to resize...
if($width <= $display_width && $height <= $display_height){
// use as is...
$thumb_w = intval($width);
$thumb_h = intval($height);
}
else{
// look at aspect ratios for resizing...
if ($old_x > $old_y){
$thumb_w=$new_w;
$thumb_h=$old_y*($new_h/$old_x);
}
if ($old_x < $old_y){
$thumb_w=$old_x*($new_w/$old_y);
$thumb_h=$new_h;
}
if ($old_x == $old_y){
$thumb_w=$new_w;
$thumb_h=$new_h;
}
}
$thumb_w = intval($thumb_w);
$thumb_h = intval($thumb_h);
}
?>
if($have_image && $row["display_image"] == 'Y'){
print "".stripslashes($row["image_caption"])."
";
}
?>
Posted By:
if($row["display_content"] == 'Y'){
print stripslashes($row["content"]);
}
else{
?>
Contents of this post have been removed by the administrator.
}
?>
Post Reply
$sql = "select * from forum_discuss where forum_id = ".$id." and display_content = 'Y' order by id asc";
$result = @mysqli_query($con, $sql);
$i = 0;
while($row = @mysqli_fetch_array($result, MYSQL_ASSOC)){
$bgcolor = '#ffffff';
if($i % 2 == 0) $bgcolor = '#eeeeee';
?>
Posted By:
$sql = "select * from forum_reply where discuss_id = ".$row["id"]." and display_content = 'Y' order by id asc";
$result_2 = @mysqli_query($con, $sql);
while($row_2 = @mysqli_fetch_array($result_2, MYSQL_ASSOC)){
?>
Posted By:
}
$i++;
?>
Post Reply
}
}
if($action == 'reply'){
print "";
if($logged_in){
$_SESSION["insert"] = 'Y';
?>
}
print " ";
}
?>
require "footer.inc"; ?>