2006-08-27, 09:51 PM
this is it
<?php
/**
* MyBB 1.0
* Copyright © 2005 MyBulletinBoard Group, All Rights Reserved
*
* Website: http://www.mybboard.com
* License: http://www.mybboard.com/eula.html
*
* $Id: functions_post.php 934 2005-12-08 13:48:07Z chris $
*/
function postify($message, $allowhtml="no", $allowmycode="yes", $allowsmilies="yes", $allowimgcode="yes", $archive=0)
{
global $db, $mybb, $theme, $plugins;
$message = dobadwords($message);
if($allowhtml != "yes")
{
$message = preg_replace("#&(?!\#[0-9]+
#si", "&", $message); // fix & but allow unicode
$message = str_replace("<","<",$message);
$message = str_replace(">",">",$message);
if($allowimgcode != "yes")
{
$message = str_replace("<img","<img",$message);
}
}
if($allowsmilies != "no")
{
if($archive == "yes")
{
$message = dosmilies($message, $mybb->settings['bburl']);
}
else
{
$message = dosmilies($message);
}
}
if($allowmycode != "no")
{
$message = domycode($message, $allowimgcode);
}
$message = $plugins->run_hooks("parse_message", $message);
$message = nl2br($message);
return $message;
}
function domycode($message, $allowimgcode="yes")
{
global $theme, $settings;
$message = fixjavascript($message);
$message = doquotes($message);
$message = docode($message);
$pattern = array("#\[b\](.*?)\[/b\]#si",
"#\[i\](.*?)\[/i\]#si",
"#\[u\](.*?)\[/u\]#si",
"#\[s\](.*?)\[/s\]#si",
"#\(c\)#i",
"#\(tm\)#i",
"#\(r\)#i",
"#\[url\]([a-z]+?://)([^\r\n\"\[<]+?)\[/url\]#sei",
"#\[url\]([^\r\n\"\[<]+?)\[/url\]#ei",
"#\[url=([a-z]+?://)([^\r\n\"\[<]+?)\](.+?)\[/url\]#esi",
"#\[url=([^\r\n\"\[<]+?)\](.+?)\[/url\]#esi",
"#\[email\](.*?)\[/email\]#ei",
"#\[email=(.*?)\](.*?)\[/email\]#ei",
"#\[color=([a-zA-Z]*|\#?[0-9a-fA-F]{6})](.*?)\[/color\]#si",
"#\[size=(small|medium|large|x-large|xx-large)\](.*?)\[/size\]#si",
"#\[size=([0-9\+\-]+?)\](.*?)\[/size\]#si",
"#\[font=([a-z ]+?)\](.+?)\[/font\]#si",
"#\[align=(left|center|right|justify)\](.*?)\[/align\]#si");
$replace = array("<strong>$1</strong>",
"<em>$1</em>",
"<u>$1</u>",
"<del>$1</del>",
"©",
"™",
"®",
"doshorturl(\"$1$2\")",
"doshorturl(\"$1\")",
"doshorturl(\"$1$2\", \"$3\")",
"doshorturl(\"$1\", \"$2\")",
"doemailurl(\"$1\")",
"doemailurl(\"$1\", \"$2\")",
"<span style=\"color: $1;\">$2</span>",
"<span style=\"font-size: $1;\">$2</span>",
"<font size=\"$1\">$2</font>",
"<span style=\"font-family: $1;\">$2</span>",
"<p style=\"text-align: $1;\">$2</p>");
$message = preg_replace($pattern, $replace, $message);
while(preg_match("#\[list\](.*?)\[/list\]#esi", $message))
{
$message = preg_replace("#\[list\](.*?)\[/list\]#esi", "dolist('$1')", $message);
}
while(preg_match("#\[list=(a|A|i|I|1)\](.*?)\[/list\]#esi", $message))
{
$message = preg_replace("#\[list=(a|A|i|I|1)\](.*?)\[/list\]#esi", "dolist('$2', '$1')", $message);
}
if($allowimgcode != "no")
{
$message = preg_replace("#\[img\](https?://([^<>\"']+?))\[/img\]#i", "<img src=\"$1\" border=\"0\" alt=\"\" />", $message);
$message = preg_replace("#\[img=([0-9]{1,3})x([0-9]{1,3})\](https?://([^<>\"']+?))\[/img\]#i", "<img src=\"$3\" style=\"border: 0; width: $1px; height: $2px;\" alt=\"\" />", $message);
}
$message = doautourl($message);
/* Used to be <hr size="1"> but users should get the chance to set the size in their CSS */
$message = str_replace("
", "<hr />", $message);
return $message;
}
function dolist($message, $type="")
{
$message = str_replace('\"', '"', $message);
$message = preg_replace("#\[\*\]#", "</li><li>", $message);
$message .= "</li>";
if($type)
{
$list = "<ol type=\"$type\">$message</ol>";
}
else
{
$list = "<ul>$message</ul>";
}
$list = preg_replace("#<(ol type=\"$type\"|ul)>\s*</li>#", "<$1>", $list);
return $list;
}
function domecode($message, $username)
{
global $lang;
$message = preg_replace('#^/me (.*)$#im', "<span style=\"color: red;\">* $username \\1</span>", $message);
$username = str_replace("'", "\\'", $username);
$message = preg_replace('#^/slap (.*)#iem', "'<span style=\"color: red;\">* $username $lang->slaps '.str_replace('<br />', '', '\\1').' $lang->with_trout</span><br />'", $message);
return $message;
}
function fixjavascript($message)
{
$message = preg_replace("#javascript:#i", "java script:", $message);
// this patch provided by Ryan (try to remove XSS Cross-site scripting issues).
$message = preg_replace("#(a)(lert)#ie", "'&#'.ord($1).';$2'", $message);
$message = preg_replace("#onmouseover#i", "onmouseover", $message);
$message = preg_replace("#onmouseout#i", "onmouseout", $message);
$message = preg_replace("#onclick#i", "onclick", $message);
$message = preg_replace("#onload#i", "onload", $message);
$message = eregi_replace("#onsubmit#i", "onsubmit", $message);
return $message;
}
function dobadwords($message)
{
global $db, $badwordcache, $cache;
if(!$badwordcache)
{
$badwordcache = $cache->read("badwords");
}
if(is_array($badwordcache)) {
reset($badwordcache);
foreach($badwordcache as $bid => $badword)
{
if(!$badword['replacement']) $badword['replacement'] = "*****";
$badword['badword'] = str_replace("\\", "\\\\", $badword['badword']);
$message = preg_replace("#".$badword['badword']."#i", $badword['replacement'], $message);
}
}
return $message;
}
function dosmilies($message, $url="")
{
global $db, $smiliecache, $cache;
if($url != "")
{
if(substr($url, strlen($url) -1) != "/")
{
$url = $url."/";
}
}
$smiliecache = $cache->read("smilies");
if(is_array($smiliecache))
{
reset($smiliecache);
foreach($smiliecache as $sid => $smilie)
{
$message = str_replace($smilie['find'], "<img src=\"".$url.$smilie['image']."\" style=\"vertical-align: middle;\" border=\"0\" alt=\"".$smilie['name']."\" />", $message);
}
}
return $message;
}
function doautourl($message)
{
$message = " ".$message;
$message = preg_replace("#([\s\(\)])(https?|ftp|news){1}://([\w\-]+\.([\w\-]+\.)*[\w]+(:[0-9]+)?(/[^\"\s\(\)<\[]*)?)#ie", "\"$1\".doshorturl(\"$2://$3\")", $message);
$message = preg_replace("#([\s\(\)])(www|ftp)\.(([\w\-]+\.)*[\w]+(:[0-9]+)?(/[^\"\s\(\)<\[]*)?)#ie", "\"$1\".doshorturl(\"$2.$3\", \"$2.$3\")", $message);
$message = substr($message, 1);
return $message;
}
function doshorturl($url, $name="")
{
$fullurl = $url;
// attempt to make a bit of sense out of their url if they dont type it properly
if(!preg_match("#[a-z0-9]+://#i", $fullurl))
{
$fullurl = "http://".$fullurl;
}
if(!$name)
{
$name = $url;
}
$name = stripslashes($name);
$url = stripslashes($url);
$fullurl = stripslashes($fullurl);
if($name == $url)
{
if(strlen($url) > 55)
{
$name = substr($url, 0, 40)."...".substr($url, -10);
}
}
$link = "<a href=\"$fullurl\" target=\"_blank\">$name</a>";
return $link;
}
function doemailurl($email, $name="") {
if(!$name)
{
$name = $email;
}
if(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+$/si", $email))
{
return "<a href=\"mailto:$email\">".$name."</a>";
}
else
{
return $name;
}
}
function doquotes($message)
{
global $lang;
// user sanity check
$pattern = array("#\[quote=(?:"|\"|')?(.*?)[\"']?(?:"|\"|')?\](.*?)\[\/quote\]#si",
"#\[quote\](.*?)\[\/quote\]#si");
$replace = array("<div class=\"quote_header\">$1 $lang->wrote</div><div class=\"quote_body\">$2</div>",
"<div class=\"quote_header\">$lang->quote</div><div class=\"quote_body\">$1</div>\n");
while (preg_match($pattern[0], $message) or preg_match($pattern[1], $message))
{
$message = preg_replace($pattern, $replace, $message);
}
$message = str_replace("<div class=\"quote_body\"><br />", "<div class=\"quote_body\">", $message);
$message = str_replace("<br /></div>", "</div>", $message);
// Remove [attachment=x] from quoted posts.
//$message = preg_replace("#\[attachment=([0-9]+?)\]#i", "", $message);
return $message;
}
function docode($message)
{
global $lang;
// user sanity check
$m2 = strtolower($message);
//$message = str_replace("
$opencount = substr_count($m2, "
if($opencount > $closedcount)
{
$limit = $closedcount;
}
elseif($closedcount > $opencount)
{
$limit = $opencount;
}
else
{
$limit = -1;
}
$pattern = array("#\[code\](.*?)#si",
"#\[\/code\]#si");
$replace = array("<div class=\"code_header\">$lang->code</div><div class=\"code_body\">",
"</div>\n");
$message = preg_replace($pattern, $replace, $message, $limit);
$message = str_replace("<div class=\"code_body\"><br />", "<div class=\"code_body\">", $message);
$message = str_replace("<br /></div>", "</div>", $message);
//$message = preg_replace("#\[php\](.+?)\[/php\]#ies", "dophpcode('\\1')", $message);
while(preg_match("#\[php\](.+?)\[/php\]#ies", $message, $matches))
{
$message = str_replace($matches[0], dophpcode($matches[1]), $message);
}
return $message;
}
function dophpcode($str)
{
global $lang;
$str = str_replace('<', '<', $str);
$str = str_replace('>', '>', $str);
$str = str_replace('&', '&', $str);
$str = str_replace("\n", '', $str);
$original = $str;
if(preg_match("/\A[\s]*\<\?/", $str) === 0)
{
$str = "<?php\n".$str;
}
if(preg_match("/\A[\s]*\>\?/", strrev($str)) === 0)
{
$str = $str."\n?>";
}
if(substr(phpversion(), 0, 1) >= 4)
{
ob_start();
@highlight_string($str);
$code = ob_get_contents();
ob_end_clean();
}
else
{
$code = $str;
}
if(preg_match("/\A[\s]*\<\?/", $original) === 0)
{
$code = substr_replace($code, "", strpos($code, "<?php"), strlen("<?php"));
$code = str_replace('<br />', '', $code);
}
if(preg_match("/\A[\s]*\>\?/", strrev($original)) === 0)
{
$code = strrev(substr_replace(strrev($code), "", strpos(strrev($code), strrev("?>")), strlen("?>")));
}
// Get rid of other useless code and linebreaks
$code = str_replace("<code><font color=\"#000000\">\n", '', $code);
$code = str_replace('<font color="#0000CC"></font>', '', $code);
$code = str_replace("</font>\n</code>", '', $code);
// Send back the code all nice and pretty
return "<p><div class=\"code_header\">$lang->php_code</div><div class=\"code_body\">".$code."</div></p>";
}
function makepostbit($post, $pmprevann=0)
{
global $db, $altbg, $theme, $settings, $mybb, $mybbuser, $postcounter, $titlescache, $page, $templates;
global $forumpermissions, $attachcache, $lang, $ismod, $inlinecookie, $inlinecount, $groupscache, $fid;
global $plugins;
$GLOBALS['post'] = $post;
if($post['visible'] == 0 && $pmprevann == 0)
{
$altbg = "trow_shaded";
}
elseif($altbg == "trow1")
{
$altbg = "trow2";
}
else
{
$altbg = "trow1";
}
switch($pmprevann)
{
case "1": // Message preview
global $forum;
$id = 0;
break;
case "2": // Private message
global $message, $pmid;
$forum['allowhtml'] = $mybb->settings['pmsallowhtml'];
$forum['allowmycode'] = $mybb->settings['pmsallowmycode'];
$forum['allowsmilies'] = $mybb->settings['pmsallowsmilies'];
$forum['allowimgcode'] = $mybb->settings['pmsallowimgcode'];
$id = $pmid;
break;
case "3": // Announcement
global $announcementarray, $message;
$forum['allowhtml'] = $announcementarray['allowhtml'];
$forum['allowmycode'] = $announcementarray['allowmycode'];
$forum['allowsmilies'] = $announcementarray['allowsmilies'];
$forum['allowimgcode'] = 'yes';
break;
default: // Regular post
global $forum, $thread, $tid;
$oldforum = $forum;
$id = $post['pid'];
break;
}
if(!$postcounter)
{ // Used to show the # of the post
if($page > 1)
{
$postcounter = $mybb->settings['postsperpage']*($page-1);
}
else
{
$postcounter = 0;
}
}
if(!$altbg)
{ // Define the alternate background colour if this is the first post
$altbg = "trow1";
}
$postcounter++;
// Format the post date and time using mydate
$post['postdate'] = mydate($mybb->settings['dateformat'], $post['dateline']);
$post['posttime'] = mydate($mybb->settings['timeformat'], $post['dateline']);
// Dont want any little 'nasties' in the subject
$post['subject'] = htmlspecialchars_uni(dobadwords($post['subject']));
$post['author'] = $post['uid'];
// Get the usergroup
if($post['userusername'])
{
if(!$post['displaygroup'])
{
$post['displaygroup'] = $post['usergroup'];
}
$usergroup = $groupscache[$post['displaygroup']];
}
else
{
$usergroup = $groupscache[1];
}
if(!is_array($titlescache))
{
// Get user titles (i guess we should improve this, maybe in version3.
$query = $db->query("SELECT * FROM ".TABLE_PREFIX."usertitles ORDER BY posts DESC");
while($usertitle = $db->fetch_array($query))
{
$titlescache[$usertitle['posts']] = $usertitle;
}
unset($usertitle);
}
// Work out the usergroup/title stuff
if(!empty($usergroup['image']))
{
if(!empty($mybb->user['language']))
{
$language = $mybb->user['language'];
}
else
{
$language = $mybb->settings['bblanguage'];
}
$usergroup['image'] = str_replace("{lang}", $language, $usergroup['image']);
eval("\$post['groupimage'] = \"".$templates->get("postbit_groupimage")."\";");
}
if($post['userusername'])
{ // This post was made by a registered user
$post['username'] = $post['userusername'];
$post['profilelink'] = "<a href=\"".str_replace("{uid}", $post['uid'], PROFILE_URL)."\">".formatname($post['username'], $post['usergroup'], $post['displaygroup'])."</a>";
if(trim($post['usertitle']) != "")
{
$hascustomtitle = 1;
}
if($usergroup['usertitle'] != "" && !$hascustomtitle)
{
$post['usertitle'] = $usergroup['usertitle'];
}
elseif(is_array($titlescache) && !$usergroup['usertitle'])
{
reset($titlescache);
foreach($titlescache as $key => $titleinfo)
{
if($post['postnum'] >= $key)
{
if(!$hascustomtitle)
{
$post['usertitle'] = $titleinfo['title'];
}
$post['stars'] = $titleinfo['stars'];
$post['starimage'] = $titleinfo['starimage'];
break;
}
}
}
if($usergroup['stars'])
{
$post['stars'] = $usergroup['stars'];
}
if(!$post['starimage'])
{
$post['starimage'] = $usergroup['starimage'];
}
for($i = 0; $i < $post['stars']; $i++)
{
$post['userstars'] .= "<img src=\"".$post['starimage']."\" border=\"0\" alt=\"*\" />";
}
if($post['userstars'] && $post['starimage'] && $post['stars'])
{
$post['userstars'] .= "<br />";
}
$post['postnum'] = mynumberformat($post['postnum']);
// Determine the status to show for the user (Online/Offline/Away)
$timecut = time() - $mybb->settings['wolcutoff'];
if($post['lastactive'] > $timecut && ($post['invisible'] != "yes" || $mybb->usergroup['canviewwolinvis'] == "yes") && $post['lastvisit'] != $post['lastactive'])
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_online")."\";");
}
else
{
if($post['away'] == "yes" && $mybb->settings['allowaway'] != "no")
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_away")."\";");
}
else
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_offline")."\";");
}
}
if($post['avatar'] != "" && $mybb->user['showavatars'] != "no")
{
$post['avatar'] = htmlspecialchars_uni($post['avatar']);
eval("\$post['useravatar'] = \"".$templates->get("postbit_avatar")."\";");
}
else
{
$post['useravatar'] = "";
}
eval("\$post['button_profile'] = \"".$templates->get("postbit_profile")."\";");
eval("\$post['button_find'] = \"".$templates->get("postbit_find")."\";");
eval("\$post['button_pm'] = \"".$templates->get("postbit_pm")."\";");
if($post['website'] != "")
{
$post['website'] = htmlspecialchars_uni($post['website']);
eval("\$post['button_www'] = \"".$templates->get("postbit_www")."\";");
}
else
{
$post['button_www'] = "";
}
if($post['hideemail'] != "yes")
{
eval("\$post['button_email'] = \"".$templates->get("postbit_email")."\";");
}
else
{
$post['button_email'] = "";
}
$post['userregdate'] = mydate($mybb->settings['regdateformat'], $post['regdate']);
// Work out the reputation this user has
if($post['usereputationsystem'] != "no")
{
if($mybb->usergroup['cangivereputations'] == "yes")
{
if(!$pmprevann)
{
$post['neglink'] = "<a href=\"javascript:reputation(".$post['pid'].", 'n');\"><img src=\"".$theme['imgdir']."/rep_neg.gif\" border=\"0\"></a>";
$post['poslink'] = "<a href=\"javascript:reputation(".$post['pid'].", 'p');\"><img src=\"".$theme['imgdir']."/rep_pos.gif\" border=\"0\"></a>";
}
else
{
$post['neglink'] = "";
$post['poslink'] = "";
}
}
$post['userreputation'] = getreputation($post['reputation']);
eval("\$post['replink'] = \"".$templates->get("postbit_reputation")."\";");
}
}
else
{ // Message was posted by a guest or an unknown user
$post['username'] = $post['username'];
$post['profilelink'] = formatname($post['username'], 1);
if($usergroup['usertitle'])
{
$post['usertitle'] = $usergroup['usertitle'];
}
else
{
$post['usertitle'] = $lang->guest;
}
$usergroup['title'] = $lang->na;
$post['userregdate'] = $lang->na;
$post['postnum'] = $lang->na;
$post['button_profile'] = "";
$post['button_email'] = "";
$post['button_www'] = "";
$post['signature'] = "";
$post['button_pm'] = "";
$post['button_find'] = "";
$post['onlinestatus'] = $lang->unknown;
$post['replink'] = "";
}
if(!$pmprevann)
{
if($post['edituid'] != "" && $post['edittime'] != "" && $post['editusername'] != "")
{
$post['editdate'] = mydate($mybb->settings['dateformat'], $post['edittime']);
$post['edittime'] = mydate($mybb->settings['timeformat'], $post['edittime']);
$post['editnote'] = sprintf($lang->postbit_edited, $post['editdate'], $post['edittime']);
eval("\$post['editedmsg'] = \"".$templates->get("postbit_editedby")."\";");
}
if((ismod($fid, "caneditposts") == "yes" || $mybb->user['uid'] == $post['uid']) && $mybb->user['uid'] != 0)
{
eval("\$post['button_edit'] = \"".$templates->get("postbit_edit")."\";");
}
// Quick Delete button
if((ismod($fid, "candeleteposts") == "yes" || $mybb->user['uid'] == $post['uid']) && $mybb->user['uid'] != 0)
{
eval("\$post['button_quickdelete'] = \"".$templates->get("postbit_quickdelete")."\";");
}
// Inline moderation stuff
if($ismod)
{
if(strstr($_COOKIE[$inlinecookie], "|".$post['pid']."|"))
{
$inlinecheck = "checked=\"checked\"";
$inlinecount++;
}
else
{
$inlinecheck = "";
}
eval("\$post['inlinecheck'] = \"".$templates->get("postbit_inlinecheck")."\";");
if($post['visible'] == 0)
{
$invisiblepost = 1;
}
}
else
{
$post['inlinecheck'] = "";
}
eval("\$post['posturl'] = \"".$templates->get("postbit_posturl")."\";");
global $forum, $thread;
if($forum['open'] != "no" && ($thread['closed'] != "yes" || ismod($forum['fid']) == "yes"))
{
eval("\$post['button_quote'] = \"".$templates->get("postbit_quote")."\";");
}
if($mybb->user['uid'] != "0")
{
eval("\$post['button_report'] = \"".$templates->get("postbit_report")."\";");
}
if($mybb->settings['logip'] != "no")
{
if($mybb->settings['logip'] == "show")
{
eval("\$post['iplogged'] = \"".$templates->get("postbit_iplogged_show")."\";");
}
else if($mybb->settings['logip'] == "hide" && $ismod)
{
eval("\$post['iplogged'] = \"".$templates->get("postbit_iplogged_hiden")."\";");
}
else
{
$post['iplogged'] = "";
}
}
else
{
$post['iplogged'] = "";
}
}
if($post['smilieoff'] == "yes")
{
$allowsmilies = "no";
}
else
{
$allowsmilies = $forum['allowsmilies'];
}
$post['message'] = postify($post['message'], $forum['allowhtml'], $forum['allowmycode'], $allowsmilies, $forum['allowimgcode']);
// do me code
if($forum['allowmycode'] != "no")
{
$post['message'] = domecode($post['message'], $post['username']);
}
if(is_array($attachcache[$id]))
{ // This post has 1 or more attachments
$validationcount = 0;
foreach($attachcache[$id] as $aid => $attachment)
{
if($attachment['visible'])
{ // There is an attachment thats visible!
$attachment['name'] = htmlspecialchars_uni($attachment['name']);
$attachment['filesize'] = getfriendlysize($attachment['filesize']);
$ext = getextention($attachment['filename']);
if($ext == "jpeg" || $ext == "gif" || $ext == "bmp" || $ext == "png" || $ext == "jpg")
{
$isimage = true;
}
else
{
$isimage = false;
}
$attachment['icon'] = getattachicon($ext);
// Support for [attachment=id] code
if(stripos($post['message'], "[attachment=".$attachment['aid']."]") !== false)
{
if($attachment['thumbnail'] != "SMALL" && $attachment['thumbnail'] != "")
{ // We have a thumbnail to show (and its not the "SMALL" enough image
eval("\$attbit = \"".$templates->get("postbit_attachments_thumbnails_thumbnail")."\";");
}
elseif($attachment['thumbnail'] == "SMALL" && $forumpermissions['candlattachments'] == "yes")
{
// Image is small enough to show - no thumbnail
eval("\$attbit = \"".$templates->get("postbit_attachments_images_image")."\";");
}
else
{
// Show standard link to attachment
eval("\$attbit = \"".$templates->get("postbit_attachments_attachment")."\";");
}
$post['message'] = preg_replace("#\[attachment=".$attachment['aid']."]#si", $attbit, $post['message']);
}
else
{
if($attachment['thumbnail'] != "SMALL" && $attachment['thumbnail'] != "")
{ // We have a thumbnail to show
eval("\$post['thumblist'] .= \"".$templates->get("postbit_attachments_thumbnails_thumbnail")."\";");
if($tcount == 5)
{
$thumblist .= "<br />";
$tcount = 0;
}
$tcount++;
}
elseif($attachment['thumbnail'] == "SMALL" && $forumpermissions['candlattachments'] == "yes")
{
// Image is small enough to show - no thumbnail
eval("\$post['imagelist'] .= \"".$templates->get("postbit_attachments_images_image")."\";");
}
else
{
eval("\$post['attachmentlist'] .= \"".$templates->get("postbit_attachments_attachment")."\";");
}
}
}
else
{
$validationcount++;
}
}
if($post['thumblist'])
{
eval("\$post['attachedthumbs'] = \"".$templates->get("postbit_attachments_thumbnails")."\";");
}
if($post['imagelist'])
{
eval("\$post['attachedimages'] = \"".$templates->get("postbit_attachments_images")."\";");
}
if($post['attachmentlist'] || $post['thumblist'] || $post['imagelist'])
{
eval("\$post['attachments'] = \"".$templates->get("postbit_attachments")."\";");
}
}
if($post['includesig'] != "no" && $post['username'] && $post['signature'] != "" && $mybb->user['showsigs'] != "no")
{
$post['signature'] = postify(stripslashes($post['signature']), $mybb->settings['sightml'], $mybb->settings['sigmycode'], $mybb->settings['sigsmilies'], $mybb->settings['sigimgcode']);
eval("\$post['signature'] = \"".$templates->get("postbit_signature")."\";");
}
else
{
$post['signature'] = "";
}
if($post['iconpath'])
{
$post['icon'] = "<img src=\"".$post['iconpath']."\" alt=\"".$post['iconname']."\"> ";
}
else
{
$post['icon'] = "";
}
$GLOBALS['post'] =& $post;
switch($pmprevann)
{
case 1: // Message preview
$plugins->run_hooks("postbit_prev");
break;
case 2: // Private message
$plugins->run_hooks("postbit_pm");
break;
case 3: // Announcement
$plugins->run_hooks("postbit_announcement");
break;
default: // Regular post
eval("\$seperator = \"".$templates->get("postbit_seperator")."\";");
$plugins->run_hooks("postbit");
break;
}
eval("\$postbit = \"".$templates->get("postbit")."\";");
return $postbit;
$GLOBALS['post'] = "";
}
?>
<?php
/**
* MyBB 1.0
* Copyright © 2005 MyBulletinBoard Group, All Rights Reserved
*
* Website: http://www.mybboard.com
* License: http://www.mybboard.com/eula.html
*
* $Id: functions_post.php 934 2005-12-08 13:48:07Z chris $
*/
function postify($message, $allowhtml="no", $allowmycode="yes", $allowsmilies="yes", $allowimgcode="yes", $archive=0)
{
global $db, $mybb, $theme, $plugins;
$message = dobadwords($message);
if($allowhtml != "yes")
{
$message = preg_replace("#&(?!\#[0-9]+
#si", "&", $message); // fix & but allow unicode$message = str_replace("<","<",$message);
$message = str_replace(">",">",$message);
if($allowimgcode != "yes")
{
$message = str_replace("<img","<img",$message);
}
}
if($allowsmilies != "no")
{
if($archive == "yes")
{
$message = dosmilies($message, $mybb->settings['bburl']);
}
else
{
$message = dosmilies($message);
}
}
if($allowmycode != "no")
{
$message = domycode($message, $allowimgcode);
}
$message = $plugins->run_hooks("parse_message", $message);
$message = nl2br($message);
return $message;
}
function domycode($message, $allowimgcode="yes")
{
global $theme, $settings;
$message = fixjavascript($message);
$message = doquotes($message);
$message = docode($message);
$pattern = array("#\[b\](.*?)\[/b\]#si",
"#\[i\](.*?)\[/i\]#si",
"#\[u\](.*?)\[/u\]#si",
"#\[s\](.*?)\[/s\]#si",
"#\(c\)#i",
"#\(tm\)#i",
"#\(r\)#i",
"#\[url\]([a-z]+?://)([^\r\n\"\[<]+?)\[/url\]#sei",
"#\[url\]([^\r\n\"\[<]+?)\[/url\]#ei",
"#\[url=([a-z]+?://)([^\r\n\"\[<]+?)\](.+?)\[/url\]#esi",
"#\[url=([^\r\n\"\[<]+?)\](.+?)\[/url\]#esi",
"#\[email\](.*?)\[/email\]#ei",
"#\[email=(.*?)\](.*?)\[/email\]#ei",
"#\[color=([a-zA-Z]*|\#?[0-9a-fA-F]{6})](.*?)\[/color\]#si",
"#\[size=(small|medium|large|x-large|xx-large)\](.*?)\[/size\]#si",
"#\[size=([0-9\+\-]+?)\](.*?)\[/size\]#si",
"#\[font=([a-z ]+?)\](.+?)\[/font\]#si",
"#\[align=(left|center|right|justify)\](.*?)\[/align\]#si");
$replace = array("<strong>$1</strong>",
"<em>$1</em>",
"<u>$1</u>",
"<del>$1</del>",
"©",
"™",
"®",
"doshorturl(\"$1$2\")",
"doshorturl(\"$1\")",
"doshorturl(\"$1$2\", \"$3\")",
"doshorturl(\"$1\", \"$2\")",
"doemailurl(\"$1\")",
"doemailurl(\"$1\", \"$2\")",
"<span style=\"color: $1;\">$2</span>",
"<span style=\"font-size: $1;\">$2</span>",
"<font size=\"$1\">$2</font>",
"<span style=\"font-family: $1;\">$2</span>",
"<p style=\"text-align: $1;\">$2</p>");
$message = preg_replace($pattern, $replace, $message);
while(preg_match("#\[list\](.*?)\[/list\]#esi", $message))
{
$message = preg_replace("#\[list\](.*?)\[/list\]#esi", "dolist('$1')", $message);
}
while(preg_match("#\[list=(a|A|i|I|1)\](.*?)\[/list\]#esi", $message))
{
$message = preg_replace("#\[list=(a|A|i|I|1)\](.*?)\[/list\]#esi", "dolist('$2', '$1')", $message);
}
if($allowimgcode != "no")
{
$message = preg_replace("#\[img\](https?://([^<>\"']+?))\[/img\]#i", "<img src=\"$1\" border=\"0\" alt=\"\" />", $message);
$message = preg_replace("#\[img=([0-9]{1,3})x([0-9]{1,3})\](https?://([^<>\"']+?))\[/img\]#i", "<img src=\"$3\" style=\"border: 0; width: $1px; height: $2px;\" alt=\"\" />", $message);
}
$message = doautourl($message);
/* Used to be <hr size="1"> but users should get the chance to set the size in their CSS */
$message = str_replace("
", "<hr />", $message);
return $message;
}
function dolist($message, $type="")
{
$message = str_replace('\"', '"', $message);
$message = preg_replace("#\[\*\]#", "</li><li>", $message);
$message .= "</li>";
if($type)
{
$list = "<ol type=\"$type\">$message</ol>";
}
else
{
$list = "<ul>$message</ul>";
}
$list = preg_replace("#<(ol type=\"$type\"|ul)>\s*</li>#", "<$1>", $list);
return $list;
}
function domecode($message, $username)
{
global $lang;
$message = preg_replace('#^/me (.*)$#im', "<span style=\"color: red;\">* $username \\1</span>", $message);
$username = str_replace("'", "\\'", $username);
$message = preg_replace('#^/slap (.*)#iem', "'<span style=\"color: red;\">* $username $lang->slaps '.str_replace('<br />', '', '\\1').' $lang->with_trout</span><br />'", $message);
return $message;
}
function fixjavascript($message)
{
$message = preg_replace("#javascript:#i", "java script:", $message);
// this patch provided by Ryan (try to remove XSS Cross-site scripting issues).
$message = preg_replace("#(a)(lert)#ie", "'&#'.ord($1).';$2'", $message);
$message = preg_replace("#onmouseover#i", "onmouseover", $message);
$message = preg_replace("#onmouseout#i", "onmouseout", $message);
$message = preg_replace("#onclick#i", "onclick", $message);
$message = preg_replace("#onload#i", "onload", $message);
$message = eregi_replace("#onsubmit#i", "onsubmit", $message);
return $message;
}
function dobadwords($message)
{
global $db, $badwordcache, $cache;
if(!$badwordcache)
{
$badwordcache = $cache->read("badwords");
}
if(is_array($badwordcache)) {
reset($badwordcache);
foreach($badwordcache as $bid => $badword)
{
if(!$badword['replacement']) $badword['replacement'] = "*****";
$badword['badword'] = str_replace("\\", "\\\\", $badword['badword']);
$message = preg_replace("#".$badword['badword']."#i", $badword['replacement'], $message);
}
}
return $message;
}
function dosmilies($message, $url="")
{
global $db, $smiliecache, $cache;
if($url != "")
{
if(substr($url, strlen($url) -1) != "/")
{
$url = $url."/";
}
}
$smiliecache = $cache->read("smilies");
if(is_array($smiliecache))
{
reset($smiliecache);
foreach($smiliecache as $sid => $smilie)
{
$message = str_replace($smilie['find'], "<img src=\"".$url.$smilie['image']."\" style=\"vertical-align: middle;\" border=\"0\" alt=\"".$smilie['name']."\" />", $message);
}
}
return $message;
}
function doautourl($message)
{
$message = " ".$message;
$message = preg_replace("#([\s\(\)])(https?|ftp|news){1}://([\w\-]+\.([\w\-]+\.)*[\w]+(:[0-9]+)?(/[^\"\s\(\)<\[]*)?)#ie", "\"$1\".doshorturl(\"$2://$3\")", $message);
$message = preg_replace("#([\s\(\)])(www|ftp)\.(([\w\-]+\.)*[\w]+(:[0-9]+)?(/[^\"\s\(\)<\[]*)?)#ie", "\"$1\".doshorturl(\"$2.$3\", \"$2.$3\")", $message);
$message = substr($message, 1);
return $message;
}
function doshorturl($url, $name="")
{
$fullurl = $url;
// attempt to make a bit of sense out of their url if they dont type it properly
if(!preg_match("#[a-z0-9]+://#i", $fullurl))
{
$fullurl = "http://".$fullurl;
}
if(!$name)
{
$name = $url;
}
$name = stripslashes($name);
$url = stripslashes($url);
$fullurl = stripslashes($fullurl);
if($name == $url)
{
if(strlen($url) > 55)
{
$name = substr($url, 0, 40)."...".substr($url, -10);
}
}
$link = "<a href=\"$fullurl\" target=\"_blank\">$name</a>";
return $link;
}
function doemailurl($email, $name="") {
if(!$name)
{
$name = $email;
}
if(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+$/si", $email))
{
return "<a href=\"mailto:$email\">".$name."</a>";
}
else
{
return $name;
}
}
function doquotes($message)
{
global $lang;
// user sanity check
$pattern = array("#\[quote=(?:"|\"|')?(.*?)[\"']?(?:"|\"|')?\](.*?)\[\/quote\]#si",
"#\[quote\](.*?)\[\/quote\]#si");
$replace = array("<div class=\"quote_header\">$1 $lang->wrote</div><div class=\"quote_body\">$2</div>",
"<div class=\"quote_header\">$lang->quote</div><div class=\"quote_body\">$1</div>\n");
while (preg_match($pattern[0], $message) or preg_match($pattern[1], $message))
{
$message = preg_replace($pattern, $replace, $message);
}
$message = str_replace("<div class=\"quote_body\"><br />", "<div class=\"quote_body\">", $message);
$message = str_replace("<br /></div>", "</div>", $message);
// Remove [attachment=x] from quoted posts.
//$message = preg_replace("#\[attachment=([0-9]+?)\]#i", "", $message);
return $message;
}
function docode($message)
{
global $lang;
// user sanity check
$m2 = strtolower($message);
//$message = str_replace("
", "[code]", $message);
//$message = str_replace("$opencount = substr_count($m2, "
");
$closedcount = substr_count($m2, "if($opencount > $closedcount)
{
$limit = $closedcount;
}
elseif($closedcount > $opencount)
{
$limit = $opencount;
}
else
{
$limit = -1;
}
$pattern = array("#\[code\](.*?)#si",
"#\[\/code\]#si");
$replace = array("<div class=\"code_header\">$lang->code</div><div class=\"code_body\">",
"</div>\n");
$message = preg_replace($pattern, $replace, $message, $limit);
$message = str_replace("<div class=\"code_body\"><br />", "<div class=\"code_body\">", $message);
$message = str_replace("<br /></div>", "</div>", $message);
//$message = preg_replace("#\[php\](.+?)\[/php\]#ies", "dophpcode('\\1')", $message);
while(preg_match("#\[php\](.+?)\[/php\]#ies", $message, $matches))
{
$message = str_replace($matches[0], dophpcode($matches[1]), $message);
}
return $message;
}
function dophpcode($str)
{
global $lang;
$str = str_replace('<', '<', $str);
$str = str_replace('>', '>', $str);
$str = str_replace('&', '&', $str);
$str = str_replace("\n", '', $str);
$original = $str;
if(preg_match("/\A[\s]*\<\?/", $str) === 0)
{
$str = "<?php\n".$str;
}
if(preg_match("/\A[\s]*\>\?/", strrev($str)) === 0)
{
$str = $str."\n?>";
}
if(substr(phpversion(), 0, 1) >= 4)
{
ob_start();
@highlight_string($str);
$code = ob_get_contents();
ob_end_clean();
}
else
{
$code = $str;
}
if(preg_match("/\A[\s]*\<\?/", $original) === 0)
{
$code = substr_replace($code, "", strpos($code, "<?php"), strlen("<?php"));
$code = str_replace('<br />', '', $code);
}
if(preg_match("/\A[\s]*\>\?/", strrev($original)) === 0)
{
$code = strrev(substr_replace(strrev($code), "", strpos(strrev($code), strrev("?>")), strlen("?>")));
}
// Get rid of other useless code and linebreaks
$code = str_replace("<code><font color=\"#000000\">\n", '', $code);
$code = str_replace('<font color="#0000CC"></font>', '', $code);
$code = str_replace("</font>\n</code>", '', $code);
// Send back the code all nice and pretty
return "<p><div class=\"code_header\">$lang->php_code</div><div class=\"code_body\">".$code."</div></p>";
}
function makepostbit($post, $pmprevann=0)
{
global $db, $altbg, $theme, $settings, $mybb, $mybbuser, $postcounter, $titlescache, $page, $templates;
global $forumpermissions, $attachcache, $lang, $ismod, $inlinecookie, $inlinecount, $groupscache, $fid;
global $plugins;
$GLOBALS['post'] = $post;
if($post['visible'] == 0 && $pmprevann == 0)
{
$altbg = "trow_shaded";
}
elseif($altbg == "trow1")
{
$altbg = "trow2";
}
else
{
$altbg = "trow1";
}
switch($pmprevann)
{
case "1": // Message preview
global $forum;
$id = 0;
break;
case "2": // Private message
global $message, $pmid;
$forum['allowhtml'] = $mybb->settings['pmsallowhtml'];
$forum['allowmycode'] = $mybb->settings['pmsallowmycode'];
$forum['allowsmilies'] = $mybb->settings['pmsallowsmilies'];
$forum['allowimgcode'] = $mybb->settings['pmsallowimgcode'];
$id = $pmid;
break;
case "3": // Announcement
global $announcementarray, $message;
$forum['allowhtml'] = $announcementarray['allowhtml'];
$forum['allowmycode'] = $announcementarray['allowmycode'];
$forum['allowsmilies'] = $announcementarray['allowsmilies'];
$forum['allowimgcode'] = 'yes';
break;
default: // Regular post
global $forum, $thread, $tid;
$oldforum = $forum;
$id = $post['pid'];
break;
}
if(!$postcounter)
{ // Used to show the # of the post
if($page > 1)
{
$postcounter = $mybb->settings['postsperpage']*($page-1);
}
else
{
$postcounter = 0;
}
}
if(!$altbg)
{ // Define the alternate background colour if this is the first post
$altbg = "trow1";
}
$postcounter++;
// Format the post date and time using mydate
$post['postdate'] = mydate($mybb->settings['dateformat'], $post['dateline']);
$post['posttime'] = mydate($mybb->settings['timeformat'], $post['dateline']);
// Dont want any little 'nasties' in the subject
$post['subject'] = htmlspecialchars_uni(dobadwords($post['subject']));
$post['author'] = $post['uid'];
// Get the usergroup
if($post['userusername'])
{
if(!$post['displaygroup'])
{
$post['displaygroup'] = $post['usergroup'];
}
$usergroup = $groupscache[$post['displaygroup']];
}
else
{
$usergroup = $groupscache[1];
}
if(!is_array($titlescache))
{
// Get user titles (i guess we should improve this, maybe in version3.
$query = $db->query("SELECT * FROM ".TABLE_PREFIX."usertitles ORDER BY posts DESC");
while($usertitle = $db->fetch_array($query))
{
$titlescache[$usertitle['posts']] = $usertitle;
}
unset($usertitle);
}
// Work out the usergroup/title stuff
if(!empty($usergroup['image']))
{
if(!empty($mybb->user['language']))
{
$language = $mybb->user['language'];
}
else
{
$language = $mybb->settings['bblanguage'];
}
$usergroup['image'] = str_replace("{lang}", $language, $usergroup['image']);
eval("\$post['groupimage'] = \"".$templates->get("postbit_groupimage")."\";");
}
if($post['userusername'])
{ // This post was made by a registered user
$post['username'] = $post['userusername'];
$post['profilelink'] = "<a href=\"".str_replace("{uid}", $post['uid'], PROFILE_URL)."\">".formatname($post['username'], $post['usergroup'], $post['displaygroup'])."</a>";
if(trim($post['usertitle']) != "")
{
$hascustomtitle = 1;
}
if($usergroup['usertitle'] != "" && !$hascustomtitle)
{
$post['usertitle'] = $usergroup['usertitle'];
}
elseif(is_array($titlescache) && !$usergroup['usertitle'])
{
reset($titlescache);
foreach($titlescache as $key => $titleinfo)
{
if($post['postnum'] >= $key)
{
if(!$hascustomtitle)
{
$post['usertitle'] = $titleinfo['title'];
}
$post['stars'] = $titleinfo['stars'];
$post['starimage'] = $titleinfo['starimage'];
break;
}
}
}
if($usergroup['stars'])
{
$post['stars'] = $usergroup['stars'];
}
if(!$post['starimage'])
{
$post['starimage'] = $usergroup['starimage'];
}
for($i = 0; $i < $post['stars']; $i++)
{
$post['userstars'] .= "<img src=\"".$post['starimage']."\" border=\"0\" alt=\"*\" />";
}
if($post['userstars'] && $post['starimage'] && $post['stars'])
{
$post['userstars'] .= "<br />";
}
$post['postnum'] = mynumberformat($post['postnum']);
// Determine the status to show for the user (Online/Offline/Away)
$timecut = time() - $mybb->settings['wolcutoff'];
if($post['lastactive'] > $timecut && ($post['invisible'] != "yes" || $mybb->usergroup['canviewwolinvis'] == "yes") && $post['lastvisit'] != $post['lastactive'])
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_online")."\";");
}
else
{
if($post['away'] == "yes" && $mybb->settings['allowaway'] != "no")
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_away")."\";");
}
else
{
eval("\$post['onlinestatus'] = \"".$templates->get("postbit_offline")."\";");
}
}
if($post['avatar'] != "" && $mybb->user['showavatars'] != "no")
{
$post['avatar'] = htmlspecialchars_uni($post['avatar']);
eval("\$post['useravatar'] = \"".$templates->get("postbit_avatar")."\";");
}
else
{
$post['useravatar'] = "";
}
eval("\$post['button_profile'] = \"".$templates->get("postbit_profile")."\";");
eval("\$post['button_find'] = \"".$templates->get("postbit_find")."\";");
eval("\$post['button_pm'] = \"".$templates->get("postbit_pm")."\";");
if($post['website'] != "")
{
$post['website'] = htmlspecialchars_uni($post['website']);
eval("\$post['button_www'] = \"".$templates->get("postbit_www")."\";");
}
else
{
$post['button_www'] = "";
}
if($post['hideemail'] != "yes")
{
eval("\$post['button_email'] = \"".$templates->get("postbit_email")."\";");
}
else
{
$post['button_email'] = "";
}
$post['userregdate'] = mydate($mybb->settings['regdateformat'], $post['regdate']);
// Work out the reputation this user has
if($post['usereputationsystem'] != "no")
{
if($mybb->usergroup['cangivereputations'] == "yes")
{
if(!$pmprevann)
{
$post['neglink'] = "<a href=\"javascript:reputation(".$post['pid'].", 'n');\"><img src=\"".$theme['imgdir']."/rep_neg.gif\" border=\"0\"></a>";
$post['poslink'] = "<a href=\"javascript:reputation(".$post['pid'].", 'p');\"><img src=\"".$theme['imgdir']."/rep_pos.gif\" border=\"0\"></a>";
}
else
{
$post['neglink'] = "";
$post['poslink'] = "";
}
}
$post['userreputation'] = getreputation($post['reputation']);
eval("\$post['replink'] = \"".$templates->get("postbit_reputation")."\";");
}
}
else
{ // Message was posted by a guest or an unknown user
$post['username'] = $post['username'];
$post['profilelink'] = formatname($post['username'], 1);
if($usergroup['usertitle'])
{
$post['usertitle'] = $usergroup['usertitle'];
}
else
{
$post['usertitle'] = $lang->guest;
}
$usergroup['title'] = $lang->na;
$post['userregdate'] = $lang->na;
$post['postnum'] = $lang->na;
$post['button_profile'] = "";
$post['button_email'] = "";
$post['button_www'] = "";
$post['signature'] = "";
$post['button_pm'] = "";
$post['button_find'] = "";
$post['onlinestatus'] = $lang->unknown;
$post['replink'] = "";
}
if(!$pmprevann)
{
if($post['edituid'] != "" && $post['edittime'] != "" && $post['editusername'] != "")
{
$post['editdate'] = mydate($mybb->settings['dateformat'], $post['edittime']);
$post['edittime'] = mydate($mybb->settings['timeformat'], $post['edittime']);
$post['editnote'] = sprintf($lang->postbit_edited, $post['editdate'], $post['edittime']);
eval("\$post['editedmsg'] = \"".$templates->get("postbit_editedby")."\";");
}
if((ismod($fid, "caneditposts") == "yes" || $mybb->user['uid'] == $post['uid']) && $mybb->user['uid'] != 0)
{
eval("\$post['button_edit'] = \"".$templates->get("postbit_edit")."\";");
}
// Quick Delete button
if((ismod($fid, "candeleteposts") == "yes" || $mybb->user['uid'] == $post['uid']) && $mybb->user['uid'] != 0)
{
eval("\$post['button_quickdelete'] = \"".$templates->get("postbit_quickdelete")."\";");
}
// Inline moderation stuff
if($ismod)
{
if(strstr($_COOKIE[$inlinecookie], "|".$post['pid']."|"))
{
$inlinecheck = "checked=\"checked\"";
$inlinecount++;
}
else
{
$inlinecheck = "";
}
eval("\$post['inlinecheck'] = \"".$templates->get("postbit_inlinecheck")."\";");
if($post['visible'] == 0)
{
$invisiblepost = 1;
}
}
else
{
$post['inlinecheck'] = "";
}
eval("\$post['posturl'] = \"".$templates->get("postbit_posturl")."\";");
global $forum, $thread;
if($forum['open'] != "no" && ($thread['closed'] != "yes" || ismod($forum['fid']) == "yes"))
{
eval("\$post['button_quote'] = \"".$templates->get("postbit_quote")."\";");
}
if($mybb->user['uid'] != "0")
{
eval("\$post['button_report'] = \"".$templates->get("postbit_report")."\";");
}
if($mybb->settings['logip'] != "no")
{
if($mybb->settings['logip'] == "show")
{
eval("\$post['iplogged'] = \"".$templates->get("postbit_iplogged_show")."\";");
}
else if($mybb->settings['logip'] == "hide" && $ismod)
{
eval("\$post['iplogged'] = \"".$templates->get("postbit_iplogged_hiden")."\";");
}
else
{
$post['iplogged'] = "";
}
}
else
{
$post['iplogged'] = "";
}
}
if($post['smilieoff'] == "yes")
{
$allowsmilies = "no";
}
else
{
$allowsmilies = $forum['allowsmilies'];
}
$post['message'] = postify($post['message'], $forum['allowhtml'], $forum['allowmycode'], $allowsmilies, $forum['allowimgcode']);
// do me code
if($forum['allowmycode'] != "no")
{
$post['message'] = domecode($post['message'], $post['username']);
}
if(is_array($attachcache[$id]))
{ // This post has 1 or more attachments
$validationcount = 0;
foreach($attachcache[$id] as $aid => $attachment)
{
if($attachment['visible'])
{ // There is an attachment thats visible!
$attachment['name'] = htmlspecialchars_uni($attachment['name']);
$attachment['filesize'] = getfriendlysize($attachment['filesize']);
$ext = getextention($attachment['filename']);
if($ext == "jpeg" || $ext == "gif" || $ext == "bmp" || $ext == "png" || $ext == "jpg")
{
$isimage = true;
}
else
{
$isimage = false;
}
$attachment['icon'] = getattachicon($ext);
// Support for [attachment=id] code
if(stripos($post['message'], "[attachment=".$attachment['aid']."]") !== false)
{
if($attachment['thumbnail'] != "SMALL" && $attachment['thumbnail'] != "")
{ // We have a thumbnail to show (and its not the "SMALL" enough image
eval("\$attbit = \"".$templates->get("postbit_attachments_thumbnails_thumbnail")."\";");
}
elseif($attachment['thumbnail'] == "SMALL" && $forumpermissions['candlattachments'] == "yes")
{
// Image is small enough to show - no thumbnail
eval("\$attbit = \"".$templates->get("postbit_attachments_images_image")."\";");
}
else
{
// Show standard link to attachment
eval("\$attbit = \"".$templates->get("postbit_attachments_attachment")."\";");
}
$post['message'] = preg_replace("#\[attachment=".$attachment['aid']."]#si", $attbit, $post['message']);
}
else
{
if($attachment['thumbnail'] != "SMALL" && $attachment['thumbnail'] != "")
{ // We have a thumbnail to show
eval("\$post['thumblist'] .= \"".$templates->get("postbit_attachments_thumbnails_thumbnail")."\";");
if($tcount == 5)
{
$thumblist .= "<br />";
$tcount = 0;
}
$tcount++;
}
elseif($attachment['thumbnail'] == "SMALL" && $forumpermissions['candlattachments'] == "yes")
{
// Image is small enough to show - no thumbnail
eval("\$post['imagelist'] .= \"".$templates->get("postbit_attachments_images_image")."\";");
}
else
{
eval("\$post['attachmentlist'] .= \"".$templates->get("postbit_attachments_attachment")."\";");
}
}
}
else
{
$validationcount++;
}
}
if($post['thumblist'])
{
eval("\$post['attachedthumbs'] = \"".$templates->get("postbit_attachments_thumbnails")."\";");
}
if($post['imagelist'])
{
eval("\$post['attachedimages'] = \"".$templates->get("postbit_attachments_images")."\";");
}
if($post['attachmentlist'] || $post['thumblist'] || $post['imagelist'])
{
eval("\$post['attachments'] = \"".$templates->get("postbit_attachments")."\";");
}
}
if($post['includesig'] != "no" && $post['username'] && $post['signature'] != "" && $mybb->user['showsigs'] != "no")
{
$post['signature'] = postify(stripslashes($post['signature']), $mybb->settings['sightml'], $mybb->settings['sigmycode'], $mybb->settings['sigsmilies'], $mybb->settings['sigimgcode']);
eval("\$post['signature'] = \"".$templates->get("postbit_signature")."\";");
}
else
{
$post['signature'] = "";
}
if($post['iconpath'])
{
$post['icon'] = "<img src=\"".$post['iconpath']."\" alt=\"".$post['iconname']."\"> ";
}
else
{
$post['icon'] = "";
}
$GLOBALS['post'] =& $post;
switch($pmprevann)
{
case 1: // Message preview
$plugins->run_hooks("postbit_prev");
break;
case 2: // Private message
$plugins->run_hooks("postbit_pm");
break;
case 3: // Announcement
$plugins->run_hooks("postbit_announcement");
break;
default: // Regular post
eval("\$seperator = \"".$templates->get("postbit_seperator")."\";");
$plugins->run_hooks("postbit");
break;
}
eval("\$postbit = \"".$templates->get("postbit")."\";");
return $postbit;
$GLOBALS['post'] = "";
}
?>