| // | branch : BSF (Best So Far) | // +-----------------------------------------------------------------------+ // | file : $RCSfile$ // | last update : $Date$ // | last modifier : $Author$ // | revision : $Revision$ // +-----------------------------------------------------------------------+ // | This program is free software; you can redistribute it and/or modify | // | it under the terms of the GNU General Public License as published by | // | the Free Software Foundation | // | | // | This program is distributed in the hope that it will be useful, but | // | WITHOUT ANY WARRANTY; without even the implied warranty of | // | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU | // | General Public License for more details. | // | | // | You should have received a copy of the GNU General Public License | // | along with this program; if not, write to the Free Software | // | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, | // | USA. | // +-----------------------------------------------------------------------+ //----------------------------------------------------------- include $phpwg_root_path = './'; include_once( $phpwg_root_path.'include/common.inc.php' ); //-------------------------------------------------- access authorization check check_cat_id( $_GET['cat'] ); check_login_authorization(); if ( isset( $page['cat'] ) and is_numeric( $page['cat'] ) ) { check_restrictions( $page['cat'] ); } //---------------------------------------- incrementation of the number of hits $query = 'UPDATE '.IMAGES_TABLE.' SET hit=hit+1'; $query.= ' WHERE id='.$_GET['image_id']; $query.= ';'; @mysql_query( $query ); //-------------------------------------------------------------- initialization initialize_category( 'picture' ); //------------------------------------- main picture information initialization $infos = array( 'id','date_available','comment','hit','keywords','author' ,'name','file','date_creation','filesize','width','height' ,'storage_category_id' ); $query = 'SELECT '.implode( ',', $infos ); if ( is_numeric( $page['cat'] ) ) $query.= ',category_id'; $query.= ' FROM '.IMAGES_TABLE; $query.= ' INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic'; $query.= ' ON id = ic.image_id'; $query.= $page['where']; $query.= ' AND id = '.$_GET['image_id']; $query.= $conf['order_by']; $query.= ';'; $result = mysql_query( $query ); // if this image_id doesn't correspond to this category, an error message is // displayed, and execution is stopped if ( mysql_num_rows( $result ) == 0 ) { echo '

'.$lang['access_forbiden'].'
'; echo ''; echo $lang['thumbnails'].'

'; exit(); } $row = mysql_fetch_array( $result ); foreach ( $infos as $info ) { if ( isset( $row[$info] ) ) $page[$info] = $row[$info]; else $page[$info] = ''; } if ( is_numeric( $page['cat'] ) ) $page['category_id'] = $row['category_id']; // retrieving the number of the picture in its category (in order) $query = 'SELECT DISTINCT(id)'; $query.= ' FROM '.IMAGES_TABLE; $query.= ' INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic'; $query.= ' ON id = ic.image_id'; $query.= $page['where']; $query.= $conf['order_by']; $query.= ';'; $result = mysql_query( $query ); $page['num'] = 0; $row = mysql_fetch_array( $result ); while ( $row['id'] != $page['id'] ) { $page['num']++; $row = mysql_fetch_array( $result ); } //--------------------------------------------------------- favorite management if ( isset( $_GET['add_fav'] ) ) { if ( $_GET['add_fav'] == 1 ) { // verify if the picture is already in the favorite of the user $query = 'SELECT COUNT(*) AS nb_fav'; $query.= ' FROM '.FAVORITES_TABLE.' WHERE image_id = '.$page['id']; $query.= ' AND user_id = '.$user['id']; $query.= ';'; $result = mysql_query( $query ); $row = mysql_fetch_array( $result ); if ( $row['nb_fav'] == 0 ) { $query = 'INSERT INTO '.FAVORITES_TABLE.' (image_id,user_id) VALUES'; $query.= ' ('.$page['id'].','.$user['id'].')'; $query.= ';'; $result = mysql_query( $query ); } } if ( $_GET['add_fav'] == 0 ) { $query = 'DELETE FROM '.FAVORITES_TABLE.' WHERE user_id = '.$user['id']; $query.= ' AND image_id = '.$page['id']; $query.= ';'; $result = mysql_query( $query ); $page['cat_nb_images'] = $page['cat_nb_images'] - 1; if ( $page['cat_nb_images'] <= 0 ) { // there is no favorite picture anymore // we redirect the user to the category page $url = add_session_id( 'category.php' ); header( 'Request-URI: '.$url ); header( 'Content-Location: '.$url ); header( 'Location: '.$url ); exit(); } // redirection of the user to the picture.php page // with the right picture $page['num'] = $page['num'] - 1; if ( $page['num'] == -1 ) { $page['num'] = 0; } $query = 'SELECT id'; $query.= ' FROM '.IMAGES_TABLE; $query.= ' INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic'; $query.= ' ON id = ic.image_id'; $query.= $page['where']; $query.= $conf['order_by']; $query.= ' LIMIT '.$page['num'].',1'; $query.= ';'; $result = mysql_query( $query ); $row = mysql_fetch_array( $result ); $redirect = './picture.php?image_id='.$row['id'].'&cat='.$page['cat']; $redirect.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $redirect.= '&search='.$_GET['search'].'&mode='.$_GET['mode']; } $url = add_session_id( $redirect, true ); header( 'Request-URI: '.$url ); header( 'Content-Location: '.$url ); header( 'Location: '.$url ); exit(); } } //---------------------------------------------- next picture thumbnail display $next = 0; if ( $page['num'] < $page['cat_nb_images']-1 ) { $next = $page['num'] + 1; $query = 'SELECT DISTINCT(id),name,file,tn_ext,storage_category_id'; $query.= ' FROM '.IMAGES_TABLE; $query.= ' INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic'; $query.= ' ON id=ic.image_id'; $query.= $page['where']; $query.= $conf['order_by']; $query.= ' LIMIT '.$next.',1'; $query.= ';'; $result = mysql_query( $query ); $row = mysql_fetch_array( $result ); if ( !isset($array_cat_directories[$row['storage_category_id']])) { $array_cat_directories[$row['storage_category_id']] = get_complete_dir( $row['storage_category_id'] ); } $cat_directory = $array_cat_directories[$row['storage_category_id']]; $file = substr ( $row['file'], 0, strrpos ( $row['file'], ".") ); $next_lien_thumbnail = $cat_directory.'thumbnail/'; $next_lien_thumbnail.= $conf['prefix_thumbnail'].$file.".".$row['tn_ext']; if ( isset( $row['name'] ) and $row['name'] != '' ) { $next_alt_thumbnail = $row['name']; } else { $next_alt_thumbnail = $file; } $next_title = $lang['next_image']." : ".$next_alt_thumbnail; $next_url_link = './picture.php?image_id='.$row['id']; $next_url_link.= '&cat='.$page['cat']; if ( isset( $_GET['expand'] ) ) $next_url_link.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $next_url_link.= "&search=".$_GET['search'].'&mode='.$_GET['mode']; } } //----------------------------------------------------- template initialization // // Start output of page // //------------------------------------------------------------------ page title $title = $page['name']; if ( $title == '') { $title = str_replace("_"," ",get_filename_wo_extension($page['file'])); } $refresh = 0; if ( isset( $_GET['slideshow'] ) && isset($next_url_link)) { $refresh= $_GET['slideshow']; $url_link = $next_url_link; } include('include/page_header.php'); $handle = $vtp->Open( './template/'.$user['template'].'/picture.vtp' ); initialize_template(); $tpl = array( 'back','submit','comments_title','comments_del','delete', 'comments_add','author','slideshow','slideshow_stop', 'period_seconds' ); templatize_array( $tpl, 'lang', $handle ); //-------------------------------------------------------- slideshow management if ( isset( $_GET['slideshow'] ) ) { if ( !is_numeric( $_GET['slideshow'] ) ) $_GET['slideshow'] = $conf['slideshow_period'][0]; $vtp->addSession( $handle, 'stop_slideshow' ); $url = './picture.php'; $url.= '?image_id='.$page['id']; $url.= '&cat='.$page['cat']; $url.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $url.= '&search='.$_GET['search']; $url.= '&mode='.$_GET['mode']; } $vtp->setVar( $handle, 'stop_slideshow.url', add_session_id( $url ) ); $vtp->closeSession( $handle, 'stop_slideshow' ); } else { $vtp->addSession( $handle, 'start_slideshow' ); foreach ( $conf['slideshow_period'] as $option ) { $vtp->addSession( $handle, 'second' ); $vtp->setVar( $handle, 'second.option', $option ); $url = './picture.php'; $url.= '?image_id='.$page['id']; $url.= '&cat='.$page['cat']; if (isset($_GET['expand'])) $url.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $url.= '&search='.$_GET['search']; $url.= '&mode='.$_GET['mode']; } $url.= '&slideshow='.$option; $vtp->setVar( $handle, 'second.url', add_session_id( $url ) ); $vtp->closeSession( $handle, 'second' ); } $vtp->closeSession( $handle, 'start_slideshow' ); } //-------------------------------------------------- previous picture thumbnail if ( $page['num'] >= 1 ) { $prev = $page['num'] - 1; $query = 'SELECT DISTINCT(id),name,file,tn_ext,storage_category_id'; $query.= ' FROM '.IMAGES_TABLE; $query.= ' INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic'; $query.= ' ON id=ic.image_id'; $query.= $page['where']; $query.= $conf['order_by']; $query.= ' LIMIT '.$prev.',1'; $query.= ';'; $result = mysql_query( $query ); $row = mysql_fetch_array( $result ); if ( !isset($array_cat_directories[$row['storage_category_id']]) ) { $array_cat_directories[$row['storage_category_id']] = get_complete_dir( $row['storage_category_id'] ); } $cat_directory = $array_cat_directories[$row['storage_category_id']]; $file = substr( $row['file'], 0, strrpos ( $row['file'], '.' ) ); $lien_thumbnail = $cat_directory.'thumbnail/'; $lien_thumbnail.= $conf['prefix_thumbnail'].$file.".".$row['tn_ext']; $prev_title = $lang['previous_image'].' : '; if ( isset( $row['name'] ) and $row['name'] != '' ) $alt_thumbnail = $row['name']; else $alt_thumbnail = $file; $prev_title.= $alt_thumbnail; $url_link = './picture.php?image_id='.$row['id'].'&cat='.$page['cat']; if ( isset( $_GET['expand'] ) ) $url_link.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $url_link.= '&search='.$_GET['search'].'&mode='.$_GET['mode']; } // sending vars for display $vtp->addSession( $handle, 'previous' ); $vtp->setGlobalVar( $handle, 'previous.url', add_session_id( $url_link ) ); $vtp->setGlobalVar( $handle, 'previous.title', $prev_title ); $vtp->setGlobalVar( $handle, 'previous.src', $lien_thumbnail ); $vtp->setGlobalVar( $handle, 'previous.alt', $alt_thumbnail ); $vtp->closeSession( $handle, 'previous' ); } else { $vtp->addSession( $handle, 'previous_empty' ); $vtp->closeSession( $handle, 'previous_empty' ); } //-------------------------------------------------------- main picture display if ( is_numeric( $page['cat'] ) ) { $intitule_cat = get_cat_display_name( $page['cat_name'], " - ", "font-style:italic;" ); } else { $intitule_cat = $page['title']; } if ( !isset($array_cat_directories[$page['storage_category_id']]) ) { $array_cat_directories[$page['storage_category_id']] = get_complete_dir( $page['storage_category_id'] ); } $cat_directory = $array_cat_directories[$page['storage_category_id']]; $n = $page['num'] + 1; $intitule_titre = replace_space( $intitule_cat." - " ).$n.'/'; $intitule_titre.= $page['cat_nb_images']."
"; if ( $page['name'] != "" ) { $intitule_file = $page['name']; } else { $intitule_file = str_replace( "_", " ", substr( $page['file'], 0, strrpos ( $page['file'], ".") ) ); } if ( $page['cat'] == 'search' ) { $intitule_file = replace_search( $intitule_file, $_GET['search'] ); } $vtp->setGlobalVar( $handle, 'title', $intitule_titre.$intitule_file ); $lien_image = $cat_directory.$page['file']; // calculation of width and height if ( $page['width'] == "" ) { $taille_image = @getimagesize( $lien_image ); $original_width = $taille_image[0]; $original_height = $taille_image[1]; } else { $original_width = $page['width']; $original_height = $page['height']; } $picture_size = get_picture_size( $original_width, $original_height, $user['maxwidth'], $user['maxheight'] ); $final_width = $picture_size[0]; $final_height = $picture_size[1]; $url_link = './category.php?cat='.$page['cat'].'&'; $url_link.= 'num='.$page['num']; if (isset($_GET['expand'])) $url_link.='&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $url_link.= "&search=".$_GET['search'].'&mode='.$_GET['mode']; } $vtp->setGlobalVar( $handle, 'picture_link', add_session_id( $url_link ) ); $vtp->setGlobalVar( $handle, 'picture_width', $final_width ); $vtp->setGlobalVar( $handle, 'picture_height', $final_height ); $vtp->setGlobalVar( $handle, 'picture_src', $lien_image ); $vtp->setGlobalVar( $handle, 'picture_alt', $page['file'] ); if ( $page['comment'] != '' ) { if ( $page['cat'] == 'search' ) { $picture_comment = replace_search( $page['comment'], $_GET['search'] ); $vtp->setGlobalVar( $handle, 'picture_comment', $picture_comment ); } else { $vtp->setGlobalVar( $handle, 'picture_comment', $page['comment'] ); } } //--------------------------------------------------------- picture information // author if ( $page['author'] != "" ) { $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['author'].' : ' ); $vtp->setVar( $handle, 'info_line.content', $page['author'] ); $vtp->closeSession( $handle, 'info_line' ); } // creation date if ( $page['date_creation'] != "" ) { $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['creation_date'].' : ' ); $vtp->setVar( $handle, 'info_line.content', format_date( $page['date_creation'] ) ); $vtp->closeSession( $handle, 'info_line' ); } // date of availability $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['registration_date'].' : ' ); list( $year,$month,$day ) = explode( '-', $page['date_available'] ); $vtp->setVar( $handle, 'info_line.content', format_date( $page['date_available'] ) ); $vtp->closeSession( $handle, 'info_line' ); // size in pixels $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['size'].' : ' ); if ( $original_width != $final_width or $original_height != $final_height ) { $content = '[ '; $content.= $original_width.'*'.$original_height.' ]'; $vtp->setVar( $handle, 'info_line.content', $content ); } else { $content = $original_width.'*'.$original_height; $vtp->setVar( $handle, 'info_line.content', $content ); } $vtp->closeSession( $handle, 'info_line' ); // file $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['file'].' : ' ); if ( $page['cat'] == 'search' ) { $content = replace_search( $page['file'], $_GET['search'] ); $vtp->setVar( $handle, 'info_line.content', $content ); } else { $vtp->setVar( $handle, 'info_line.content', $page['file'] ); } $vtp->closeSession( $handle, 'info_line' ); // filesize if ( $page['filesize'] == "" ) { $poids = floor ( filesize( $lien_image ) / 1024 ); } else { $poids = $page['filesize']; } $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['filesize'].' : ' ); $vtp->setVar( $handle, 'info_line.content', $poids.' KB' ); $vtp->closeSession( $handle, 'info_line' ); // keywords if ( $page['keywords'] != '' ) { $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['keywords'].' : ' ); $keywords = explode( ',', $page['keywords'] ); $content = ''; $url = './category.php?cat=search'; if ( isset( $_GET['expand'] ) ) $url.= '&expand='.$_GET['expand']; $url.= '&mode=OR&search='; foreach ( $keywords as $i => $keyword ) { $local_url = add_session_id( $url.$keyword ); if ( $i > 0 ) $content.= ','; $content.= ''.$keyword.''; } $vtp->setVar( $handle, 'info_line.content', $content ); $vtp->closeSession( $handle, 'info_line' ); } // number of visits $vtp->addSession( $handle, 'info_line' ); $vtp->setVar( $handle, 'info_line.name', $lang['visited'].' : ' ); $vtp->setVar( $handle, 'info_line.content', $page['hit'].' '.$lang['times'] ); $vtp->closeSession( $handle, 'info_line' ); //------------------------------------------------------- favorite manipulation if ( !$user['is_the_guest'] ) { // verify if the picture is already in the favorite of the user $query = 'SELECT COUNT(*) AS nb_fav'; $query.= ' FROM '.FAVORITES_TABLE.' WHERE image_id = '.$page['id']; $query.= ' AND user_id = '.$user['id'].';'; $result = mysql_query( $query ); $row = mysql_fetch_array( $result ); if (!$row['nb_fav']) { $url = './picture.php?cat='.$page['cat'].'&image_id='.$page['id']; if (isset($_GET['expand'])) $url.= '&expand='.$_GET['expand']; $url.='&add_fav=1'; if ( $page['cat'] == 'search' ) { $url.= '&search='.$_GET['search'].'&mode='.$_GET['mode']; } $vtp->addSession( $handle, 'favorite' ); $vtp->setVar( $handle, 'favorite.link', add_session_id( $url ) ); $vtp->setVar( $handle, 'favorite.title', $lang['add_favorites_hint'] ); $vtp->setVar( $handle, 'favorite.src', './template/'.$user['template'].'/theme/favorite.gif' ); $vtp->setVar($handle,'favorite.alt','[ '.$lang['add_favorites_alt'].' ]'); $vtp->closeSession( $handle, 'favorite' ); } else { $url = './picture.php?cat='.$page['cat'].'&image_id='.$page['id']; $url.= '&expand='.$_GET['expand'].'&add_fav=0'; $vtp->addSession( $handle, 'favorite' ); $vtp->setVar( $handle, 'favorite.link', add_session_id( $url ) ); $vtp->setVar( $handle, 'favorite.title', $lang['del_favorites_hint'] ); $vtp->setVar( $handle, 'favorite.src', './template/'.$user['template'].'/theme/del_favorite.gif' ); $vtp->setVar($handle,'favorite.alt','[ '.$lang['del_favorites_alt'].' ]'); $vtp->closeSession( $handle, 'favorite' ); } } //------------------------------------ admin link for information modifications if ( $user['status'] == 'admin' ) { $vtp->addSession( $handle, 'modification' ); $url = './admin/admin.php?page=picture_modify&cat_id='.$page['cat']; $url.= '&image_id='.$page['id']; $vtp->setVar( $handle, 'modification.link', add_session_id( $url ) ); $vtp->setVar( $handle, 'modification.name', $lang['link_info_image'] ); } if ( $next ) { // sending vars for display $vtp->addSession( $handle, 'next' ); $vtp->setGlobalVar( $handle, 'next.url', add_session_id( $next_url_link ) ); $vtp->setGlobalVar( $handle, 'next.title', $next_title ); $vtp->setGlobalVar( $handle, 'next.src', $next_lien_thumbnail ); $vtp->setGlobalVar( $handle, 'next.alt', $next_alt_thumbnail ); $vtp->closeSession( $handle, 'next' ); } else { $vtp->addSession( $handle, 'next_empty' ); $vtp->closeSession( $handle, 'next_empty' ); } //---------------------------------------------------- users's comments display if ( $conf['show_comments'] ) { $vtp->addSession( $handle, 'comments' ); // comment registeration if ( isset( $_POST['content'] ) and $_POST['content'] != '' ) { $register_comment = true; if ( !$user['is_the_guest'] ) $author = $user['username']; if ( $_POST['author'] != '' ) $author = $_POST['author']; // if a guest try to use the name of an already existing user, he must // be rejected if ( isset( $author ) and $author != $user['username'] ) { $query = 'SELECT COUNT(*) AS user_exists'; $query.= ' FROM '.PREFIX_TABLE.'users'; $query.= " WHERE username = '".$author."'"; $query.= ';'; $row = mysql_fetch_array( mysql_query( $query ) ); if ( $row['user_exists'] == 1 ) { $vtp->addSession( $handle, 'information' ); $message = $lang['comment_user_exists']; $vtp->setVar( $handle, 'information.content', $message ); $vtp->closeSession( $handle, 'information' ); $register_comment = false; } } if ( $register_comment ) { // anti-flood system $reference_date = time() - $conf['anti-flood_time']; $query = 'SELECT id FROM '.COMMENTS_TABLE; $query.= ' WHERE date > '.$reference_date; $query.= " AND author = '".$author."'"; $query.= ';'; if ( mysql_num_rows( mysql_query( $query ) ) == 0 or $conf['anti-flood_time'] == 0 ) { $query = 'INSERT INTO '.COMMENTS_TABLE; $query.= ' (author,date,image_id,content,validated) VALUES'; $query.= ' ('; if ( !isset( $author ) ) $query.= 'NULL'; else $query.= "'".$author."'"; $query.= ','.time().','.$page['id']; $query.= ",'".htmlspecialchars( $_POST['content'], ENT_QUOTES)."'"; if ( !$conf['comments_validation'] or $user['status'] == 'admin' ) $query.= ",'true'"; else $query.= ",'false'"; $query.= ');'; mysql_query( $query ); // information message $vtp->addSession( $handle, 'information' ); $message = $lang['comment_added']; if ( $conf['comments_validation'] and $user['status'] != 'admin' ) { $message.= '
'.$lang['comment_to_validate']; } $vtp->setVar( $handle, 'information.content', $message ); $vtp->closeSession( $handle, 'information' ); // notification to the administrators if ( $conf['mail_notification'] ) { $cat_name = get_cat_display_name( $page['cat_name'], ' > ', '' ); $cat_name = strip_tags( $cat_name ); if ( $page['name'] == '' ) $picture = $page['file']; else $picture = $page['name']; notify( 'comment', $cat_name.' > '.$picture ); } } else { // information message $vtp->addSession( $handle, 'information' ); $message = $lang['comment_anti-flood']; $vtp->setVar( $handle, 'information.content', $message ); $vtp->closeSession( $handle, 'information' ); } } } // comment deletion if ( isset( $_GET['del'] ) and is_numeric( $_GET['del'] ) and $user['status'] == 'admin' ) { $query = 'DELETE FROM '.COMMENTS_TABLE.' WHERE id = '.$_GET['del'].';'; mysql_query( $query ); } // number of comment for this picture $query = 'SELECT COUNT(*) AS nb_comments'; $query.= ' FROM '.COMMENTS_TABLE.' WHERE image_id = '.$page['id']; $query.= " AND validated = 'true'"; $query.= ';'; $row = mysql_fetch_array( mysql_query( $query ) ); $page['nb_comments'] = $row['nb_comments']; // navigation bar creation $url = './picture.php?cat='.$page['cat'].'&image_id='.$page['id']; if (isset($_GET['expand'])) $url.= '&expand='.$_GET['expand']; if ( $page['cat'] == 'search' ) { $url.= '&search='.$_GET['search'].'&mode='.$_GET['mode']; } if( !isset( $_GET['start'] ) or !is_numeric( $_GET['start'] ) or ( is_numeric( $_GET['start'] ) and $_GET['start'] < 0 ) ) { $page['start'] = 0; } else { $page['start'] = $_GET['start']; } $page['navigation_bar'] = create_navigation_bar( $url, $page['nb_comments'], $page['start'], $conf['nb_comment_page'], '' ); // sending vars for display $vtp->setGlobalVar( $handle, 'navigation_bar', $page['navigation_bar'] ); $vtp->setGlobalVar( $handle, 'nb_comments', $page['nb_comments'] ); $query = 'SELECT id,author,date,image_id,content'; $query.= ' FROM '.COMMENTS_TABLE.' WHERE image_id = '.$page['id']; $query.= " AND validated = 'true'"; $query.= ' ORDER BY date ASC'; $query.= ' LIMIT '.$page['start'].', '.$conf['nb_comment_page'].';'; $result = mysql_query( $query ); while ( $row = mysql_fetch_array( $result ) ) { $vtp->addSession( $handle, 'comment' ); $author = $row['author']; if ( $row['author'] == '' ) $author = $lang['guest']; $vtp->setVar( $handle, 'comment.author', $author ); $vtp->setVar( $handle, 'comment.date', format_date( $row['date'], 'unix', true ) ); $content = nl2br( $row['content'] ); // replace _word_ by an underlined word $pattern = '/_([^\s]*)_/'; $replacement = '\1'; $content = preg_replace( $pattern, $replacement, $content ); // replace *word* by a bolded word $pattern = '/\*([^\s]*)\*/'; $replacement = '\1'; $content = preg_replace( $pattern, $replacement, $content ); // replace /word/ by an italic word $pattern = '/\/([^\s]*)\//'; $replacement = '\1'; $content = preg_replace( $pattern, $replacement, $content ); $vtp->setVar( $handle, 'comment.content', $content ); if ( $user['status'] == 'admin' ) { $vtp->addSession( $handle, 'delete' ); $vtp->setVar( $handle, 'delete.link', add_session_id( $url.'&del='.$row['id'] ) ); $vtp->closeSession( $handle, 'delete' ); } $vtp->closeSession( $handle, 'comment' ); } if ( !$user['is_the_guest'] or ( $user['is_the_guest'] and $conf['comments_forall'] ) ) { $vtp->addSession( $handle, 'add_comment' ); // form action $action = str_replace( '&', '&', $_SERVER['REQUEST_URI'] ); $vtp->setGlobalVar( $handle, 'form_action', $action ); // display author field if the user is not logged in if ( !$user['is_the_guest'] ) { $vtp->addSession( $handle, 'author_known' ); if (isset($user['pseudo'])) $vtp->setVar( $handle, 'author_known.value', $user['pseudo'] ); $vtp->closeSession( $handle, 'author_known' ); } else { $vtp->addSession( $handle, 'author_field' ); $vtp->closeSession( $handle, 'author_field' ); } $vtp->closeSession( $handle, 'add_comment' ); } $vtp->closeSession( $handle, 'comments' ); } //------------------------------------------------------------ log informations pwg_log( 'picture', $intitule_cat, $page['file'] ); mysql_close(); //----------------------------------------------------------- html code display $code = $vtp->Display( $handle, 0 ); echo $code; include('include/page_tail.php'); ?>