begin of thinksaas 3.68

Signed-off-by: kevin <kevin@lmve.net>
2023-06-22 13:33:25 +08:00
commit 963ec1b2ea
2746 changed files with 331806 additions and 0 deletions
@@ -0,0 +1,164 @@
+<?php
+defined('IN_TS') or die('Access Denied.');
+
+//用户是否登录
+$userid = aac('user')->isLogin();
+
+//普通不用不允许编辑内容
+if($TS_SITE['isallowedit'] && $TS_USER ['isadmin'] == 0) tsNotice('系统不允许用户编辑内容，请联系管理员编辑！');
+
+switch($ts){
+	
+	//编辑帖子
+	case "":
+		$topicid = tsIntval($_GET['topicid']);
+
+		if($topicid == 0){
+			header("Location: ".SITE_URL);
+			exit;
+		}
+		
+		$topicNum = $new['topic']->findCount('topic',array(
+			'topicid'=>$topicid,
+		));
+
+		if($topicNum==0){
+			header("Location: ".SITE_URL);
+			exit;
+		}
+		
+		$strTopic = $new['topic']->find('topic',array(
+			'topicid'=>$topicid,
+		));
+		
+		$strTopic['title'] = tsTitle($strTopic['title']);
+		//$strTopic['content'] = tsDecode($strTopic['content']); //为有效防止xss攻击，如果前端通过textarea标签加载的编辑器，请注释掉本行；如果编辑器有其他的加载方式，请视情况解除本行注释。
+		
+		$strGroup = $new['topic']->find('group',array(
+			'groupid'=>$strTopic['groupid'],
+		));
+		
+		$strGroupUser = $new['topic']->find('group_user',array(
+			'userid'=>$userid,
+			'groupid'=>$strTopic['groupid'],
+		));
+		
+		//print_r($strGroupUser);exit;
+
+		if($strTopic['userid'] == $userid || $strGroup['userid']==$userid || $TS_USER['isadmin']==1 || $strGroupUser['isadmin']==1){
+			$arrGroupType = $new['topic']->findAll('topic_type',array(
+				'groupid'=>$strGroup['groupid'],
+			));
+			
+			//找出TAG
+			$arrTags = aac('tag')->getObjTagByObjid('topic', 'topicid', $topicid);
+			foreach($arrTags as $key=>$item){
+				$arrTag[] = $item['tagname'];
+			}
+			$strTopic['tag'] = arr2str($arrTag);
+			
+			$title = '编辑帖子';
+			include template("edit");
+			
+		}else{
+
+			header("Location: ".SITE_URL);
+			exit;
+
+		}
+		break;
+		
+	//编辑帖子执行	
+	case "do":
+
+
+        $authcode = strtolower ( $_POST ['authcode'] );
+
+        if ($TS_SITE['isauthcode']) {
+            if ($authcode != $_SESSION ['verify']) {
+                tsNotice ( "验证码输入有误，请重新输入！" );
+            }
+        }
+		
+		$topicid = tsIntval($_POST['topicid']);
+		$typeid = tsIntval($_POST['typeid']);
+		
+		$title = tsTrim($_POST['title']);
+		
+		//echo br2nl($_POST['content']);exit;
+		
+		$content = tsClean($_POST['content']);
+		$content2 = emptyText($_POST['content']);
+
+        $score = tsIntval($_POST ['score']);#积分
+
+		$iscomment = tsIntval($_POST['iscomment']);
+		$iscommentshow = tsIntval($_POST['iscommentshow']);
+		
+		if($topicid == '' || $title=='' || $content2=='' || $content=='') tsNotice("都不能为空的哦!");
+
+        if($score<0){
+            tsNotice ( '积分填写有误！' );
+        }
+
+		if($TS_USER['isadmin']==0){
+		
+			//过滤内容开始
+			$title = antiWord($title);
+			$content = antiWord($content);
+			//过滤内容结束
+		
+		}
+		
+		$strTopic = $new['topic']->find('topic',array(
+			'topicid'=>$topicid,
+		));
+		
+		$strGroup = $new['topic']->find('group',array(
+			'groupid'=>$strTopic['groupid'],
+		));
+		
+		$strGroupUser = $new['topic']->find('group_user',array(
+			'userid'=>$userid,
+			'groupid'=>$strTopic['groupid'],
+		));
+		
+		if($strTopic['userid']==$userid || $strGroup['userid']==$userid || $TS_USER['isadmin']==1 || $strGroupUser['isadmin']==1){
+
+			$gaiyao = cututf8(t(tsDecode($content)),0,100);
+
+			$new['topic']->update('topic',array(
+				'topicid'=>$topicid,
+			),array(
+				'typeid' => $typeid,
+				'title'=>$title,
+				'content'=>$content,
+				'gaiyao'=>$gaiyao,
+				'score'=>$score,
+				'iscomment' => $iscomment,
+				'iscommentshow' => $iscommentshow,
+			));
+			
+
+
+			//处理标签
+			$tag = tsTrim($_POST['tag']);
+			if($tag){
+				aac('tag')->delIndextag('topic','topicid',$topicid);
+				aac('tag') -> addTag('topic', 'topicid', $topicid, $tag); 
+			}
+
+
+			#用户记录
+			aac('pubs')->addLogs('topic','topicid',$topicid,$userid,$title,$content,1);
+
+			
+			header("Location: ".tsUrl('topic','show',array('id'=>$topicid)));
+			
+		}else{
+			header("Location: ".SITE_URL);
+			exit;
+		}
+		break;
+
+}