@ -1,8 +1,9 @@
<?php
/* For licensing terms, see /license.txt */
/**
* @package dokeos.forum
*/
* This script manages the display of forum threads in flat view
* @package chamilo.forum
*/
//delete attachment file
if ((isset($_GET['action']) & & $_GET['action']=='delete_attach') & & isset($_GET['id_attach'])) {
delete_attachment(0,$_GET['id_attach']);
@ -10,136 +11,136 @@ if ((isset($_GET['action']) && $_GET['action']=='delete_attach') && isset($_GET[
if (isset($current_thread['thread_id'])){
$rows=get_posts($current_thread['thread_id']);
$increment=0;
foreach ($rows as $row) {
echo "< table width = \"100%\" class = \"post\" cellspacing = \"5\" border = \"0\" > \n";
// the style depends on the status of the message: approved or not
if ($row['visible']=='0') {
$titleclass='forum_message_post_title_2_be_approved';
$messageclass='forum_message_post_text_2_be_approved';
$leftclass='forum_message_left_2_be_approved';
} else {
$titleclass='forum_message_post_title';
$messageclass='forum_message_post_text';
$leftclass='forum_message_left';
}
echo "\t< tr > \n";
echo "\t\t< td rowspan = \"3\" class = \"$leftclass\" > ";
if ($row['user_id']=='0') {
$name=prepare4display($row['poster_name']);
} else {
$name=api_get_person_name($row['firstname'], $row['lastname']);
}
if($origin!='learnpath') {
if (api_get_course_setting('allow_user_image_forum')) {
echo '< br / > '.display_user_image($row['user_id'],$name).'< br / > ';
$rows=get_posts($current_thread['thread_id']);
$increment=0;
foreach ($rows as $row) {
echo "< table width = \"100%\" class = \"post\" cellspacing = \"5\" border = \"0\" > \n";
// the style depends on the status of the message: approved or not
if ($row['visible']=='0') {
$titleclass='forum_message_post_title_2_be_approved';
$messageclass='forum_message_post_text_2_be_approved';
$leftclass='forum_message_left_2_be_approved';
} else {
$titleclass='forum_message_post_title';
$messageclass='forum_message_post_text';
$leftclass='forum_message_left';
}
echo display_user_link($row['user_id'], $name).'< br / > ';
} else {
echo $name. '< br / > ';
}
echo api_convert_and_format_date($row['post_date'], null, date_default_timezone_get()).'< br / > < br / > ';
// get attach id
$attachment_list=get_attachment($row['post_id']);
$id_attach = !empty($attachment_list)?$attachment_list['id']:'';
// The user who posted it can edit his thread only if the course admin allowed this in the properties of the forum
// The course admin him/herself can do this off course always
if (($current_forum['allow_edit']==1 AND $row['user_id']==$_user['user_id']) or (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session']))) {
if (api_is_allowed_to_session_edit(false,true))
echo "< a href = \"editpost.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&post=".$row['post_id']."&origin=".$origin."&edit=edition&id_attach=".$id_attach."\" > ".icon('../img/edit.gif',get_lang('Edit'))."< / a > \n";
}
if ($origin != 'learnpath') {
if (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session'])) {
echo "< a href = \"".api_get_self()."?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=delete&content=post&id=".$row['post_id']."&origin=".$origin."\" onclick = \"javascript:if(!confirm('".addslashes(api_htmlentities(get_lang("DeletePost"),ENT_QUOTES,$charset))."')) return false ; \ " > ".icon('../img/delete.gif',get_lang('Delete'))."< / a > \n";
display_visible_invisible_icon('post', $row['post_id'], $row['visible'],array('forum'=>Security::remove_XSS($_GET['forum']),'thread'=>Security::remove_XSS($_GET['thread']), 'origin'=>$origin ));
echo "\n";
if ($increment>0) {
echo "< a href = \"viewthread.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=move&post=".$row['post_id']."&origin=".$origin."\" > ".icon('../img/deplacer_fichier.gif',get_lang('MovePost'))."< / a > \n";
}
echo "\t< tr > \n";
echo "\t\t< td rowspan = \"3\" class = \"$leftclass\" > ";
if ($row['user_id']=='0') {
$name=prepare4display($row['poster_name']);
} else {
$name=api_get_person_name($row['firstname'], $row['lastname']);
}
}
$userinf=api_get_user_info($row['user_id']);
$user_status=api_get_status_of_user_in_course($row['user_id'],api_get_course_id());
$current_qualify_thread=show_qualify('1',$_GET['cidReq'],$_GET['forum'],$row['poster_id'],$_GET['thread']);
if (api_is_allowed_to_edit(null,true) & & $origin != 'learnpath') {
if( isset($_GET['gradebook'])){
if ($increment>0 & & $user_status!=1 ) {
$info_thread=get_thread_information(Security::remove_XSS($_GET['thread']));
echo "< a href = \"forumqualify.php?".api_get_cidreq()."&forum=".$info_thread['forum_id']."&thread=".Security::remove_XSS($_GET['thread'])."&action=list&post=".$row['post_id']."&user=".$row['poster_id']."&user_id=".$row['poster_id']."&origin=".$origin."&idtextqualify=".$current_qualify_thread."&gradebook=".Security::remove_XSS($_GET['gradebook'])."\" > ".icon('../img/new_test_small.gif',get_lang('Qualify'))."< / a > \n";
}
if($origin!='learnpath') {
if (api_get_course_setting('allow_user_image_forum')) {
echo '< br / > '.display_user_image($row['user_id'],$name).'< br / > ';
}
echo display_user_link($row['user_id'], $name).'< br / > ';
} else {
if ($increment>0 & & $user_status!=1 ) {
echo "< a href = \"forumqualify.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=list&post=".$row['post_id']."&user=".$row['poster_id']."&user_id=".$row['poster_id']."&origin=".$origin."&idtextqualify=".$current_qualify_thread."\" > ".icon('../img/new_test_small.gif',get_lang('Qualify'))."< / a > \n";
echo $name. '< br / > ';
}
echo api_convert_and_format_date($row['post_date'], null, date_default_timezone_get()).'< br / > < br / > ';
// get attach id
$attachment_list=get_attachment($row['post_id']);
$id_attach = !empty($attachment_list)?$attachment_list['id']:'';
// The user who posted it can edit his thread only if the course admin allowed this in the properties of the forum
// The course admin him/herself can do this off course always
if (($current_forum['allow_edit']==1 AND $row['user_id']==$_user['user_id']) or (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session']))) {
if (api_is_allowed_to_session_edit(false,true))
echo "< a href = \"editpost.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&post=".$row['post_id']."&origin=".$origin."&edit=edition&id_attach=".$id_attach."\" > ".icon('../img/edit.gif',get_lang('Edit'))."< / a > \n";
}
if ($origin != 'learnpath') {
if (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session'])) {
echo "< a href = \"".api_get_self()."?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=delete&content=post&id=".$row['post_id']."&origin=".$origin."\" onclick = \"javascript:if(!confirm('".addslashes(api_htmlentities(get_lang("DeletePost"),ENT_QUOTES,$charset))."')) return false ; \ " > ".icon('../img/delete.gif',get_lang('Delete'))."< / a > \n";
display_visible_invisible_icon('post', $row['post_id'], $row['visible'],array('forum'=>Security::remove_XSS($_GET['forum']),'thread'=>Security::remove_XSS($_GET['thread']), 'origin'=>$origin ));
echo "\n";
if ($increment>0) {
echo "< a href = \"viewthread.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=move&post=".$row['post_id']."&origin=".$origin."\" > ".icon('../img/deplacer_fichier.gif',get_lang('MovePost'))."< / a > \n";
}
}
}
}
//echo '< br / > < br / > ';
if ($current_forum_category['locked']==0 AND $current_forum['locked']==0 AND $current_thread['locked']==0 OR api_is_allowed_to_edit(false,true)) {
if ($_user['user_id'] OR ($current_forum['allow_anonymous']==1 AND !$_user['user_id'])) {
if (!api_is_anonymous() & & api_is_allowed_to_session_edit(false,true)) {
echo '< a href = "reply.php?'.api_get_cidreq().'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'&post='.$row['post_id'].'&action=replymessage&origin='.$origin.'" > '.Display :: return_icon('message_reply_forum.png', get_lang('ReplyToMessage'))."< / a > \n";
echo '< a href = "reply.php?'.api_get_cidreq().'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'&post='.$row['post_id'].'&action=quote&origin='.$origin.'" > '.Display :: return_icon('quote.gif', get_lang('QuoteMessage'))."< / a > \n";
$userinf = api_get_user_info($row['user_id']);
$user_status = api_get_status_of_user_in_course($row['user_id'],api_get_course_id());
$current_qualify_thread = show_qualify('1',$_GET['cidReq'],$_GET['forum'],$row['poster_id'],$_GET['thread']);
if (api_is_allowed_to_edit(null,true) & & $origin != 'learnpath') {
if( isset($_GET['gradebook'])){
if ($increment>0 & & $user_status!=1 ) {
$info_thread=get_thread_information(Security::remove_XSS($_GET['thread']));
echo "< a href = \"forumqualify.php?".api_get_cidreq()."&forum=".$info_thread['forum_id']."&thread=".Security::remove_XSS($_GET['thread'])."&action=list&post=".$row['post_id']."&user=".$row['poster_id']."&user_id=".$row['poster_id']."&origin=".$origin."&idtextqualify=".$current_qualify_thread."&gradebook=".Security::remove_XSS($_GET['gradebook'])."\" > ".icon('../img/new_test_small.gif',get_lang('Qualify'))."< / a > \n";
}
} else {
if ($increment>0 & & $user_status!=1 ) {
echo "< a href = \"forumqualify.php?".api_get_cidreq()."&forum=".Security::remove_XSS($_GET['forum'])."&thread=".Security::remove_XSS($_GET['thread'])."&action=list&post=".$row['post_id']."&user=".$row['poster_id']."&user_id=".$row['poster_id']."&origin=".$origin."&idtextqualify=".$current_qualify_thread."\" > ".icon('../img/new_test_small.gif',get_lang('Qualify'))."< / a > \n";
}
}
}
} else {
if ($current_forum_category['locked']==1) {
echo get_lang('ForumcategoryLocked').'< br / > ';
//echo '< br / > < br / > ';
if ($current_forum_category['locked']==0 AND $current_forum['locked']==0 AND $current_thread['locked']==0 OR api_is_allowed_to_edit(false,true)) {
if ($_user['user_id'] OR ($current_forum['allow_anonymous']==1 AND !$_user['user_id'])) {
if (!api_is_anonymous() & & api_is_allowed_to_session_edit(false,true)) {
echo '< a href = "reply.php?'.api_get_cidreq().'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'&post='.$row['post_id'].'&action=replymessage&origin='.$origin.'" > '.Display :: return_icon('message_reply_forum.png', get_lang('ReplyToMessage'))."< / a > \n";
echo '< a href = "reply.php?'.api_get_cidreq().'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'&post='.$row['post_id'].'&action=quote&origin='.$origin.'" > '.Display :: return_icon('quote.gif', get_lang('QuoteMessage'))."< / a > \n";
}
}
} else {
if ($current_forum_category['locked']==1) {
echo get_lang('ForumcategoryLocked').'< br / > ';
}
if ($current_forum['locked']==1) {
echo get_lang('ForumLocked').'< br / > ';
}
if ($current_thread['locked']==1) {
echo get_lang('ThreadLocked').'< br / > ';
}
}
if ($current_forum['locked']==1) {
echo get_lang('ForumLocked').'< br / > ';
echo "< / td > \n";
// show the
if (isset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]) and !empty($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]) and !empty($whatsnew_post_info[$_GET['forum']][$row['thread_id']])) {
$post_image=icon('../img/forumpostnew.gif');
} else {
$post_image=icon('../img/forumpost.gif');
}
if ($current_thread['locked']==1) {
echo get_lang('ThreadLocked').'< br / > ';
if ($row['post_notification']=='1' AND $row['poster_id']==$_user['user_id'] ) {
$post_image.=icon('../img/forumnotification.gif',get_lang('YouWillBeNotified')) ;
}
}
echo "< / td > \n";
// show the
if (isset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]) and !empty($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]) and !empty($whatsnew_post_info[$_GET['forum']][$row['thread_id']])) {
$post_image=icon('../img/forumpostnew.gif');
} else {
$post_image=icon('../img/forumpost.gif');
}
if ($row['post_notification']=='1' AND $row['poster_id']==$_user['user_id']) {
$post_image.=icon('../img/forumnotification.gif',get_lang('YouWillBeNotified'));
}
// The post title
echo "\t\t< td class = \"$titleclass\" > ".prepare4display(Security::remove_XSS($row['post_title'], STUDENT))."< / td > \n";
echo "\t< / tr > \n";
// The post title
echo "\t\t< td class = \"$titleclass\" > ".prepare4display(Security::remove_XSS($row['post_title'], STUDENT))."< / td > \n";
echo "\t< / tr > \n";
// The post message
echo "\t< tr > \n";
echo "\t\t< td class = \"$messageclass\" > ".prepare4display(Security::remove_XSS($row['post_text'], STUDENT))."< / td > \n";
echo "\t< / tr > \n";
// The post message
echo "\t< tr > \n";
echo "\t\t< td class = \"$messageclass\" > ".prepare4display(Security::remove_XSS($row['post_text'], STUDENT))."< / td > \n";
echo "\t< / tr > \n";
// The check if there is an attachment
$attachment_list=get_attachment($row['post_id']);
if (!empty($attachment_list)) {
echo '< tr > < td height = "50%" > ';
$realname=$attachment_list['path'];
$user_filename=$attachment_list['filename'];
echo Display::return_icon('attachment.gif',get_lang('Attachment'));
echo '< a href = "download.php?file=';
echo $realname;
echo ' "> '.$user_filename.' < / a > ';
echo '< span class = "forum_attach_comment" > '.$attachment_list['comment'].'< / span > ';
if (($current_forum['allow_edit']==1 AND $row['user_id']==$_user['user_id']) or (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session']))) {
echo ' < a href = "'.api_get_self().'?'.api_get_cidreq().'&origin='.Security::remove_XSS($_GET['origin']).'&action=delete_attach&id_attach='.$attachment_list['id'].'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'" onclick = "javascript:if(!confirm(\''.addslashes(api_htmlentities(get_lang(" ConfirmYourChoice " ) , ENT_QUOTES , $ charset ) ) . ' \ ' ) ) return false ; " > '.Display::return_icon('delete.gif',get_lang('Delete')).'< / a > < br / > ';
// The check if there is an attachment
$attachment_list=get_attachment($row['post_id']);
if (!empty($attachment_list)) {
echo '< tr > < td height = "50%" > ';
$realname=$attachment_list['path'];
$user_filename=$attachment_list['filename'];
echo Display::return_icon('attachment.gif',get_lang('Attachment'));
echo '< a href = "download.php?file=';
echo $realname;
echo ' "> '.$user_filename.' < / a > ';
echo '< span class = "forum_attach_comment" > '.$attachment_list['comment'].'< / span > ';
if (($current_forum['allow_edit']==1 AND $row['user_id']==$_user['user_id']) or (api_is_allowed_to_edit(false,true) & & !(api_is_course_coach() & & $current_forum['session_id']!=$_SESSION['id_session']))) {
echo ' < a href = "'.api_get_self().'?'.api_get_cidreq().'&origin='.Security::remove_XSS($_GET['origin']).'&action=delete_attach&id_attach='.$attachment_list['id'].'&forum='.Security::remove_XSS($_GET['forum']).'&thread='.Security::remove_XSS($_GET['thread']).'" onclick = "javascript:if(!confirm(\''.addslashes(api_htmlentities(get_lang(" ConfirmYourChoice " ) , ENT_QUOTES , $ charset ) ) . ' \ ' ) ) return false ; " > '.Display::return_icon('delete.gif',get_lang('Delete')).'< / a > < br / > ';
}
echo '< / td > < / tr > ';
}
echo '< / td > < / tr > ';
}
// The post has been displayed => it can be removed from the what's new array
unset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]);
unset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']]);
unset($_SESSION['whatsnew_post_info'][$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]);
unset($_SESSION['whatsnew_post_info'][$current_forum['forum_id']][$current_thread['thread_id']]);
echo "< / table > ";
$increment++;
}
}
// The post has been displayed => it can be removed from the what's new array
unset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]);
unset($whatsnew_post_info[$current_forum['forum_id']][$current_thread['thread_id']]);
unset($_SESSION['whatsnew_post_info'][$current_forum['forum_id']][$current_thread['thread_id']][$row['post_id']]);
unset($_SESSION['whatsnew_post_info'][$current_forum['forum_id']][$current_thread['thread_id']]);
echo "< / table > ";
$increment++;
}
}
Yannick Warnier
15 years ago