);\r
$manager->notify('PreUpdateComment', $data);\r
\r
- $query = "UPDATE %s SET cmail='%s', cemail = '%s', cbody= '%s' WHERE cnumber=%d;";\r
- $query = sprintf($query, sql_real_escape_string($url), sql_real_escape_string($url), sql_real_escape_string($url), (integer) $commentid);\r
+ $query = "UPDATE %s SET cmail='%s', cemail='%s', cbody='%s' WHERE cnumber=%d;";\r
+ $query = sprintf($query, sql_table('comment'), sql_real_escape_string($url), sql_real_escape_string($email), sql_real_escape_string($body), (integer) $commentid);\r
sql_query($query);\r
\r
// get itemid\r
{\r
global $member, $manager;\r
\r
- $member->blogAdminRights($blogid) or self::disallow();\r
- \r
$blogid = intRequestVar('blogid');\r
+ $member->blogAdminRights($blogid) or self::disallow();\r
\r
self::pagehead();\r
self::$skin->parse('banlist');\r
{\r
global $member, $manager;\r
\r
- $member->blogAdminRights($blogid) or self::disallow();\r
- \r
$blogid = intPostVar('blogid');\r
$allblogs = postVar('allblogs');\r
$iprange = postVar('iprange');\r
\r
+ $member->blogAdminRights($blogid) or self::disallow();\r
+ \r
$deleted = array();\r
\r
if ( !$allblogs )\r
{\r
if ( Ban::removeBan($blogid, $iprange) )\r
{\r
- array_push($deleted, $blogid);\r
+ $deleted[] = $blogid;\r
}\r
}\r
else\r
{\r
if ( Ban::removeBan($blogje, $iprange) )\r
{\r
- array_push($deleted, $blogje);\r
+ $deleted[] = $blogje;\r
}\r
}\r
}\r
self::error(_ERROR_DELETEBAN);\r
}\r
\r
+ /* TODO: we should use other ways */\r
+ $_REQUEST['delblogs'] = $deleted;\r
+ \r
self::pagehead();\r
self::$skin->parse('banlistdeleteconfirm');\r
self::pagefoot();\r
public function parse_banlistdeletedlist($templateName = '')
{
global $manager;
- $templates = array();
+ $templates = array();
if ( $templateName )
{
$templates = Template::read($templateName);
}
+
if ( !array_key_exists('BANLIST_DELETED_LIST', $templates) || empty($templates['BANLIST_DELETED_LIST']) )
{
$template = "<li><%blogname%></li>\n";
{
$blog =& $manager->getBlog($delblog);
$data = array(
- Entity::hsc($blog->getName())
+ 'blogname' => Entity::hsc($blog->getName())
);
- Template::fill($template, $data);
+ echo Template::fill($template, $data);
}
+
return;
}
$comment['body'] = str_replace('<br />', '', $comment['body']);
$comment['body'] = preg_replace("#<a href=['\"]([^'\"]+)['\"]( rel=\"nofollow\")?>[^<]*</a>#", "\\1", $comment['body']);
echo $comment['body'];
+ break;
+ case 'cmail':
+ echo $comment['userid'];
+ break;
+ case 'url':
+ echo $comment['userid'];
+ break;
default:
echo $comment[$type];
break;
*/
public function parse_getblogsetting($which)
{
- global $blog;
+ global $blog, $manager;
if ( $blog )
{
}
elseif ( $bid = intRequestVar('blogid') )
{
- global $manager;
$b = $manager->getBlog($bid);
}
else
<part name="commentdelete"><![CDATA[<h2><%text(_DELETE_CONFIRM)%></h2>\r
<p><%text(_CONFIRMTXT_COMMENT)%></p>\r
<div class="note">\r
- <b><%text(_EDITC_WHO%)>:</b> <%deletecomment(author)%>\r
+ <b><%text(_EDITC_WHO)%>:</b> <%deletecomment(author)%>\r
<br />\r
<b><%text(_EDITC_TEXT)%>:</b> <%deletecomment(body)%>\r
</div>\r
<div>\r
<input type="hidden" name="action" value="commentupdate" />\r
<%ticket%>\r
- <input type="hidden" name="itemid" value="<%editcomment(id)%>" />\r
+ <input type="hidden" name="commentid" value="<%editcomment(id)%>" />\r
<table>\r
<tr>\r
<th colspan="2"><%text(_EDITC_TITLE)%></th>\r