Files
auth-site/html/forums/reputation.php
T
2018-04-29 02:36:24 -07:00

1064 lines
32 KiB
PHP

<?php
/**
* MyBB 1.8
* Copyright 2014 MyBB Group, All Rights Reserved
*
* Website: http://www.mybb.com
* License: http://www.mybb.com/about/license
*
*/
define("IN_MYBB", 1);
define('THIS_SCRIPT', 'reputation.php');
$templatelist = "reputation_addlink,reputation_no_votes,reputation,reputation_vote,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,reputation_vote_delete";
$templatelist .= ",reputation_add_delete,reputation_add_neutral,reputation_add_positive,reputation_add_negative,reputation_add_error,reputation_add_error_nomodal,reputation_add,reputation_added,reputation_deleted,reputation_vote_report,postbit_reputation_formatted_link";
require_once "./global.php";
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
// Load global language phrases
$lang->load("reputation");
$plugins->run_hooks("reputation_start");
// Check if the reputation system is globally disabled or not.
if($mybb->settings['enablereputation'] != 1)
{
error($lang->reputation_disabled);
}
// Does this user have permission to view the board?
if($mybb->usergroup['canview'] != 1)
{
error_no_permission();
}
// If we have a specified incoming username, validate it and fetch permissions for it
$uid = $mybb->get_input('uid', MyBB::INPUT_INT);
$user = get_user($uid);
if(!$user)
{
error($lang->add_no_uid);
}
$user_permissions = user_permissions($uid);
$mybb->input['action'] = $mybb->get_input('action');
// Here we perform our validation when adding a reputation to see if the user
// has permission or not. This is done here to save duplicating the same code.
if($mybb->input['action'] == "add" || $mybb->input['action'] == "do_add")
{
// This user doesn't have permission to give reputations.
if($mybb->usergroup['cangivereputations'] != 1)
{
$message = $lang->add_no_permission;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// The user we're trying to give a reputation to doesn't have permission to receive reps.
if($user_permissions['usereputationsystem'] != 1)
{
$message = $lang->add_disabled;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// Is this user trying to give themself a reputation?
if($uid == $mybb->user['uid'])
{
$message = $lang->add_yours;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// If a post has been given but post ratings have been disabled, set the post to 0. This will mean all subsequent code will think no post was given.
if($mybb->settings['postrep'] != 1)
{
$mybb->input['pid'] = 0;
}
if($mybb->get_input('pid', MyBB::INPUT_INT))
{
// Make sure that this post exists, and that the author of the post we're giving this reputation for corresponds with the user the rep is being given to.
$post = get_post($mybb->get_input('pid', MyBB::INPUT_INT));
if($post)
{
$thread = get_thread($post['tid']);
$forum = get_forum($thread['fid']);
$forumpermissions = forum_permissions($forum['fid']);
// Post doesn't belong to that user or isn't visible
if($uid != $post['uid'] || $post['visible'] != 1)
{
$mybb->input['pid'] = 0;
}
// Thread isn't visible
elseif($thread['visible'] != 1)
{
$mybb->input['pid'] = 0;
}
// Current user can't see the forum
elseif($forumpermissions['canview'] == 0 || $forumpermissions['canpostreplys'] == 0 || $mybb->user['suspendposting'] == 1)
{
$mybb->input['pid'] = 0;
}
// Current user can't see that thread
elseif(isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] == 1 && $thread['uid'] != $mybb->user['uid'])
{
$mybb->input['pid'] = 0;
}
}
else
{
$mybb->input['pid'] = 0;
}
}
$rid = 0;
// Fetch the existing reputation for this user given by our current user if there is one.
// If multiple reputations is allowed, then this isn't needed
if($mybb->settings['multirep'] != 1 && $mybb->get_input('pid', MyBB::INPUT_INT) == 0)
{
$query = $db->simple_select("reputation", "*", "adduid='".$mybb->user['uid']."' AND uid='{$uid}' AND pid='0'");
$existing_reputation = $db->fetch_array($query);
$rid = $existing_reputation['rid'];
$was_post = false;
}
if($mybb->get_input('pid', MyBB::INPUT_INT) != 0)
{
$query = $db->simple_select("reputation", "*", "adduid='".$mybb->user['uid']."' AND uid='{$uid}' AND pid = '".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
$existing_reputation = $db->fetch_array($query);
$rid = $existing_reputation['rid'];
$was_post = true;
}
if($rid == 0 && ($mybb->input['action'] != "do_add" || ($mybb->input['action'] == "do_add" && empty($mybb->input['delete']))))
{
$message = '';
// Check if this user has reached their "maximum reputations per day" quota
if($mybb->usergroup['maxreputationsday'] != 0)
{
$timesearch = TIME_NOW - (60 * 60 * 24);
$query = $db->simple_select("reputation", "*", "adduid='{$mybb->user['uid']}' AND dateline>'$timesearch'");
$numtoday = $db->num_rows($query);
// Reached the quota - error.
if($numtoday >= $mybb->usergroup['maxreputationsday'])
{
$message = $lang->add_maxperday;
}
}
// Is the user giving too much reputation to another?
if(!$message && $mybb->usergroup['maxreputationsperuser'] != 0)
{
$timesearch = TIME_NOW - (60 * 60 * 24);
$query = $db->simple_select("reputation", "*", "uid='{$uid}' AND adduid='{$mybb->user['uid']}' AND dateline>'$timesearch'");
$numtoday = $db->num_rows($query);
if($numtoday >= $mybb->usergroup['maxreputationsperuser'])
{
$message = $lang->add_maxperuser;
}
}
// We have the correct post, but has the user given too much reputation to another in the same thread?
if(!$message && $was_post && $mybb->usergroup['maxreputationsperthread'] != 0)
{
$timesearch = TIME_NOW - (60 * 60 * 24);
$query = $db->query("
SELECT COUNT(p.pid) AS posts
FROM ".TABLE_PREFIX."reputation r
LEFT JOIN ".TABLE_PREFIX."posts p ON (p.pid = r.pid)
WHERE r.uid = '{$uid}' AND r.adduid = '{$mybb->user['uid']}' AND p.tid = '{$post['tid']}' AND r.dateline > '{$timesearch}'
");
$numtoday = $db->fetch_field($query, 'posts');
if($numtoday >= $mybb->usergroup['maxreputationsperthread'])
{
$message = $lang->add_maxperthread;
}
}
if($message)
{
if($mybb->input['nomodal'])
{
eval('$error = "'.$templates->get("reputation_add_error_nomodal", 1, 0).'";');
}
else
{
eval('$error = "'.$templates->get("reputation_add_error", 1, 0).'";');
}
echo $error;
exit;
}
}
}
// Saving the new reputation
if($mybb->input['action'] == "do_add" && $mybb->request_method == "post")
{
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));
$plugins->run_hooks("reputation_do_add_start");
// Check if the reputation power they're trying to give is within their "power limit"
$reputation = abs($mybb->get_input('reputation', MyBB::INPUT_INT));
// Deleting our current reputation of this user.
if(!empty($mybb->input['delete']))
{
// Only administrators, super moderators, as well as users who gave a specifc vote can delete one.
if($mybb->usergroup['issupermod'] != 1 && ($mybb->usergroup['candeletereputations'] != 1 || $existing_reputation['adduid'] != $mybb->user['uid'] || $mybb->user['uid'] == 0))
{
error_no_permission();
}
if($mybb->get_input('pid', MyBB::INPUT_INT) != 0)
{
$db->delete_query("reputation", "uid='{$uid}' AND adduid='".$mybb->user['uid']."' AND pid = '".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
}
else
{
$db->delete_query("reputation", "rid='{$rid}' AND uid='{$uid}' AND adduid='".$mybb->user['uid']."'");
}
// Recount the reputation of this user - keep it in sync.
$query = $db->simple_select("reputation", "SUM(reputation) AS reputation_count", "uid='{$uid}'");
$reputation_value = $db->fetch_field($query, "reputation_count");
$db->update_query("users", array('reputation' => (int)$reputation_value), "uid='{$uid}'");
eval("\$error = \"".$templates->get("reputation_deleted", 1, 0)."\";");
echo $error;
exit;
}
$mybb->input['comments'] = trim($mybb->get_input('comments')); // Trim whitespace to check for length
if(my_strlen($mybb->input['comments']) < $mybb->settings['minreplength'] && $mybb->get_input('pid', MyBB::INPUT_INT) == 0)
{
$message = $lang->add_no_comment;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// The power for the reputation they specified was invalid.
if($reputation > $mybb->usergroup['reputationpower'])
{
$message = $lang->add_invalidpower;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// The user is trying to give a negative reputation, but negative reps have been disabled.
if($mybb->get_input('reputation', MyBB::INPUT_INT) < 0 && $mybb->settings['negrep'] != 1)
{
$message = $lang->add_negative_disabled;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// This user is trying to give a neutral reputation, but neutral reps have been disabled.
if($mybb->get_input('reputation', MyBB::INPUT_INT) == 0 && $mybb->settings['neurep'] != 1)
{
$message = $lang->add_neutral_disabled;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// This user is trying to give a positive reputation, but positive reps have been disabled.
if($mybb->get_input('reputation', MyBB::INPUT_INT) > 0 && $mybb->settings['posrep'] != 1)
{
$message = $lang->add_positive_disabled;
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// The length of the comment is too long
if(my_strlen($mybb->input['comments']) > $mybb->settings['maxreplength'])
{
$message = $lang->sprintf($lang->add_toolong, $mybb->settings['maxreplength']);
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
echo $error;
exit;
}
// Build array of reputation data.
$reputation = array(
"uid" => $uid,
"adduid" => $mybb->user['uid'],
"pid" => $mybb->get_input('pid', MyBB::INPUT_INT),
"reputation" => $mybb->get_input('reputation', MyBB::INPUT_INT),
"dateline" => TIME_NOW,
"comments" => $db->escape_string($mybb->input['comments'])
);
$plugins->run_hooks("reputation_do_add_process");
// Updating an existing reputation
if(!empty($existing_reputation['uid']))
{
$db->update_query("reputation", $reputation, "rid='".$existing_reputation['rid']."'");
// Recount the reputation of this user - keep it in sync.
$query = $db->simple_select("reputation", "SUM(reputation) AS reputation_count", "uid='{$uid}'");
$reputation_value = $db->fetch_field($query, "reputation_count");
$db->update_query("users", array('reputation' => (int)$reputation_value), "uid='{$uid}'");
$lang->vote_added = $lang->vote_updated;
$lang->vote_added_message = $lang->vote_updated_message;
}
// Insert a new reputation
else
{
$db->insert_query("reputation", $reputation);
// Recount the reputation of this user - keep it in sync.
$query = $db->simple_select("reputation", "SUM(reputation) AS reputation_count", "uid='{$uid}'");
$reputation_value = $db->fetch_field($query, "reputation_count");
$db->update_query("users", array('reputation' => (int)$reputation_value), "uid='{$uid}'");
}
$plugins->run_hooks("reputation_do_add_end");
eval("\$reputation = \"".$templates->get("reputation_added", 1, 0)."\";");
echo $reputation;
exit;
}
// Adding a new reputation
if($mybb->input['action'] == "add")
{
$plugins->run_hooks("reputation_add_start");
// If we have an existing reputation for this user, the user can modify or delete it.
$user['username'] = htmlspecialchars_uni($user['username']);
if(!empty($existing_reputation['uid']))
{
$vote_title = $lang->sprintf($lang->update_reputation_vote, $user['username']);
$vote_button = $lang->update_vote;
$comments = htmlspecialchars_uni($existing_reputation['comments']);
if($mybb->usergroup['issupermod'] == 1 || ($mybb->usergroup['candeletereputations'] == 1 && $existing_reputation['adduid'] == $mybb->user['uid'] && $mybb->user['uid'] != 0))
{
eval("\$delete_button = \"".$templates->get("reputation_add_delete")."\";");
}
}
// Otherwise we're adding an entirely new reputation for this user.
else
{
$vote_title = $lang->sprintf($lang->add_reputation_vote, $user['username']);
$vote_button = $lang->add_vote;
$comments = '';
$delete_button = '';
}
$lang->user_comments = $lang->sprintf($lang->user_comments, $user['username']);
if($mybb->get_input('pid', MyBB::INPUT_INT))
{
$post_rep_info = $lang->sprintf($lang->add_reputation_to_post, $user['username']);
$lang->user_comments = $lang->no_comment_needed;
}
else
{
$post_rep_info = '';
}
// Draw the "power" options
if($mybb->settings['negrep'] || $mybb->settings['neurep'] || $mybb->settings['posrep'])
{
$vote_check = array();
$positive_power = '';
$negative_power = '';
$reputationpower = (int)$mybb->usergroup['reputationpower'];
foreach(range(-$mybb->usergroup['reputationpower'], $mybb->usergroup['reputationpower']) as $value)
{
$vote_check[$value] = '';
}
if(!empty($existing_reputation['uid']) && !$was_post)
{
$vote_check[$existing_reputation['reputation']] = " selected=\"selected\"";
}
if($mybb->settings['neurep'])
{
$neutral_title = $lang->power_neutral;
eval("\$neutral_power = \"".$templates->get("reputation_add_neutral")."\";");
}
for($value = 1; $value <= $reputationpower; ++$value)
{
if($mybb->settings['posrep'])
{
$positive_title = $lang->sprintf($lang->power_positive, "+".$value);
eval("\$positive_power = \"".$templates->get("reputation_add_positive")."\";");
}
if($mybb->settings['negrep'])
{
$negative_title = $lang->sprintf($lang->power_negative, "-".$value);
$neg_value = "-{$value}";
eval("\$negative_power .= \"".$templates->get("reputation_add_negative")."\";");
}
}
$mybb->input['pid'] = $mybb->get_input('pid', MyBB::INPUT_INT);
$plugins->run_hooks("reputation_add_end");
eval("\$reputation_add = \"".$templates->get("reputation_add", 1, 0)."\";");
}
else
{
$message = $lang->add_all_rep_disabled;
$plugins->run_hooks("reputation_add_end_error");
if($mybb->input['nomodal'])
{
eval("\$error = \"".$templates->get("reputation_add_error_nomodal", 1, 0)."\";");
}
else
{
eval("\$error = \"".$templates->get("reputation_add_error", 1, 0)."\";");
}
}
echo $reputation_add;
exit;
}
// Delete a specific reputation from a user.
if($mybb->input['action'] == "delete")
{
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));
// Fetch the existing reputation for this user given by our current user if there is one.
$query = $db->query("
SELECT r.*, u.username
FROM ".TABLE_PREFIX."reputation r
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.adduid)
WHERE rid = '".$mybb->get_input('rid', MyBB::INPUT_INT)."'
");
$existing_reputation = $db->fetch_array($query);
// Only administrators, super moderators, as well as users who gave a specifc vote can delete one.
if($mybb->usergroup['issupermod'] != 1 && ($mybb->usergroup['candeletereputations'] != 1 || $existing_reputation['adduid'] != $mybb->user['uid'] || $mybb->user['uid'] == 0))
{
error_no_permission();
}
// Delete the specified reputation
$db->delete_query("reputation", "uid='{$uid}' AND rid='".$mybb->get_input('rid', MyBB::INPUT_INT)."'");
// Recount the reputation of this user - keep it in sync.
$query = $db->simple_select("reputation", "SUM(reputation) AS reputation_count", "uid='{$uid}'");
$reputation_value = $db->fetch_field($query, "reputation_count");
// Create moderator log
log_moderator_action(array("uid" => $user['uid'], "username" => $user['username']), $lang->sprintf($lang->delete_reputation_log, $existing_reputation['username'], $existing_reputation['adduid']));
$db->update_query("users", array('reputation' => (int)$reputation_value), "uid='{$uid}'");
redirect("reputation.php?uid={$uid}", $lang->vote_deleted_message);
}
// Otherwise, show a listing of reputations for the given user.
if(!$mybb->input['action'])
{
if($mybb->usergroup['canviewprofiles'] == 0)
{
// Reputation page is a part of a profile
error_no_permission();
}
// Set display group to their user group if they don't have a display group.
if(!$user['displaygroup'])
{
$user['displaygroup'] = $user['usergroup'];
}
// Fetch display group properties.
$displaygroupfields = array('title', 'description', 'namestyle', 'usertitle', 'stars', 'starimage', 'image', 'usereputationsystem');
$display_group = usergroup_displaygroup($user['displaygroup']);
if($user_permissions['usereputationsystem'] != 1 || $display_group['title'] && $display_group['usereputationsystem'] == 0)
{
// Group has reputation disabled or user has a display group that has reputation disabled
error($lang->reputations_disabled_group);
}
$user['username'] = htmlspecialchars_uni($user['username']);
$lang->nav_profile = $lang->sprintf($lang->nav_profile, $user['username']);
$lang->reputation_report = $lang->sprintf($lang->reputation_report, $user['username']);
// Format the user name using the group username style
$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']);
// Set display group to their user group if they don't have a display group.
if(!$user['displaygroup'])
{
$user['displaygroup'] = $user['usergroup'];
}
$usertitle = '';
// This user has a custom user title
if(trim($user['usertitle']) != '')
{
$usertitle = $user['usertitle'];
}
// Using our display group's user title
elseif(trim($display_group['usertitle']) != '')
{
$usertitle = $display_group['usertitle'];
}
// Otherwise, fetch it from our titles table for the number of posts this user has
else
{
$usertitles = $cache->read('usertitles');
foreach($usertitles as $title)
{
if($title['posts'] <= $user['postnum'])
{
$usertitle = $title['title'];
break;
}
}
unset($usertitles, $title);
}
$usertitle = htmlspecialchars_uni($usertitle);
// If the user has permission to add reputations - show the image
if($mybb->usergroup['cangivereputations'] == 1 && $mybb->user['uid'] != $user['uid'] && ($mybb->settings['posrep'] || $mybb->settings['neurep'] || $mybb->settings['negrep']))
{
eval("\$add_reputation = \"".$templates->get("reputation_addlink")."\";");
}
else
{
$add_reputation = '';
}
// Build navigation menu
add_breadcrumb($lang->nav_profile, get_profile_link($user['uid']));
add_breadcrumb($lang->nav_reputation);
// Check our specified conditionals for what type of reputations to show
$show_selected = array('all' => '', 'positive' => '', 'neutral' => '', 'negative' => '');
switch($mybb->get_input('show'))
{
case "positive":
$s_url = "&show=positive";
$conditions = 'AND r.reputation>0';
$show_selected['positive'] = 'selected="selected"';
break;
case "neutral":
$s_url = "&show=neutral";
$conditions = 'AND r.reputation=0';
$show_selected['neutral'] = 'selected="selected"';
break;
case "negative":
$s_url = "&show=negative";
$conditions = 'AND r.reputation<0';
$show_selected['negative'] = 'selected="selected"';
break;
default:
$s_url = '&show=all';
$conditions = '';
$show_select['all'] = 'selected="selected"';
break;
}
// Check the sorting options for the reputation list
$sort_selected = array('username' => '', 'last_ipdated' => '');
switch($mybb->get_input('sort'))
{
case "username":
$s_url .= "&sort=username";
$order = "u.username ASC";
$sort_selected['username'] = 'selected="selected"';
break;
default:
$s_url .= '&sort=dateline';
$order = "r.dateline DESC";
$sort_selected['last_updated'] = 'selected="selected"';
break;
}
if(empty($mybb->input['show']) && empty($mybb->input['sort']))
{
$s_url = '';
}
// Fetch the total number of reputations for this user
$query = $db->simple_select("reputation r", "COUNT(r.rid) AS reputation_count", "r.uid='{$user['uid']}' $conditions");
$reputation_count = $db->fetch_field($query, "reputation_count");
// If the user has no reputation, suspect 0...
if(!$user['reputation'])
{
$user['reputation'] = 0;
}
// Quickly check to see if we're in sync...
$query = $db->simple_select("reputation", "SUM(reputation) AS reputation, COUNT(rid) AS total_reputation", "uid = '".$user['uid']."'");
$reputation = $db->fetch_array($query);
$sync_reputation = (int)$reputation['reputation'];
$total_reputation = $reputation['total_reputation'];
if($sync_reputation != $user['reputation'])
{
// We're out of sync! Oh noes!
$db->update_query("users", array("reputation" => $sync_reputation), "uid = '".$user['uid']."'");
$user['reputation'] = $sync_reputation;
}
// Set default count variables to 0
$positive_count = $negative_count = $neutral_count = 0;
$positive_week = $negative_week = $neutral_week = 0;
$positive_month = $negative_month = $neutral_month = 0;
$positive_6months = $negative_6months = $neutral_6months = 0;
// Unix timestamps for when this week, month and last 6 months started
$last_week = TIME_NOW-604800;
$last_month = TIME_NOW-2678400;
$last_6months = TIME_NOW-16070400;
// Query reputations for the "reputation card"
$query = $db->simple_select("reputation", "reputation, dateline", "uid='{$user['uid']}'");
while($reputation_vote = $db->fetch_array($query))
{
// This is a positive reputation
if($reputation_vote['reputation'] > 0)
{
$positive_count++;
if($reputation_vote['dateline'] >= $last_week)
{
$positive_week++;
}
if($reputation_vote['dateline'] >= $last_month)
{
$positive_month++;
}
if($reputation_vote['dateline'] >= $last_6months)
{
$positive_6months++;
}
}
// Negative reputation given
else if($reputation_vote['reputation'] < 0)
{
$negative_count++;
if($reputation_vote['dateline'] >= $last_week)
{
$negative_week++;
}
if($reputation_vote['dateline'] >= $last_month)
{
$negative_month++;
}
if($reputation_vote['dateline'] >= $last_6months)
{
$negative_6months++;
}
}
// Neutral reputation given
else
{
$neutral_count++;
if($reputation_vote['dateline'] >= $last_week)
{
$neutral_week++;
}
if($reputation_vote['dateline'] >= $last_month)
{
$neutral_month++;
}
if($reputation_vote['dateline'] >= $last_6months)
{
$neutral_6months++;
}
}
}
// Format all reputation numbers
$rep_total = my_number_format($user['reputation']);
$f_positive_count = my_number_format($positive_count);
$f_negative_count = my_number_format($negative_count);
$f_neutral_count = my_number_format($neutral_count);
$f_positive_week = my_number_format($positive_week);
$f_negative_week = my_number_format($negative_week);
$f_neutral_week = my_number_format($neutral_week);
$f_positive_month = my_number_format($positive_month);
$f_negative_month = my_number_format($negative_month);
$f_neutral_month = my_number_format($neutral_month);
$f_positive_6months = my_number_format($positive_6months);
$f_negative_6months = my_number_format($negative_6months);
$f_neutral_6months = my_number_format($neutral_6months);
// Format the user's 'total' reputation
if($user['reputation'] < 0)
{
$total_class = "_minus";
}
elseif($user['reputation'] > 0)
{
$total_class = "_plus";
}
else
{
$total_class = "_neutral";
}
// Figure out how many reps have come from posts / 'general'
// Posts
$query = $db->simple_select("reputation", "COUNT(rid) AS rep_posts", "uid = '".$user['uid']."' AND pid > 0");
$rep_post_count = $db->fetch_field($query, "rep_posts");
$rep_posts = my_number_format($rep_post_count);
// General
// We count how many reps in total, then subtract the reps from posts
$rep_members = my_number_format($total_reputation - $rep_post_count);
// Is negative reputation disabled? If so, tell the user
if($mybb->settings['negrep'] == 0)
{
$neg_rep_info = $lang->neg_rep_disabled;
}
if($mybb->settings['posrep'] == 0)
{
$pos_rep_info = $lang->pos_rep_disabled;
}
if($mybb->settings['neurep'] == 0)
{
$neu_rep_info = $lang->neu_rep_disabled;
}
$perpage = (int)$mybb->settings['repsperpage'];
if($perpage < 1)
{
$perpage = 15;
}
// Check if we're browsing a specific page of results
if($mybb->get_input('page', MyBB::INPUT_INT) > 0)
{
$page = $mybb->get_input('page', MyBB::INPUT_INT);
$start = ($page-1) * $perpage;
$pages = $reputation_count / $perpage;
$pages = ceil($pages);
if($page > $pages)
{
$start = 0;
$page = 1;
}
}
else
{
$start = 0;
$page = 1;
}
$multipage = '';
// Build out multipage navigation
if($reputation_count > 0)
{
$multipage = multipage($reputation_count, $perpage, $page, "reputation.php?uid={$user['uid']}".$s_url);
}
// Fetch the reputations which will be displayed on this page
$query = $db->query("
SELECT r.*, r.uid AS rated_uid, u.uid, u.username, u.reputation AS user_reputation, u.usergroup AS user_usergroup, u.displaygroup AS user_displaygroup
FROM ".TABLE_PREFIX."reputation r
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=r.adduid)
WHERE r.uid='{$user['uid']}' $conditions
ORDER BY $order
LIMIT $start, {$perpage}
");
// Gather a list of items that have post reputation
$reputation_cache = $post_cache = $post_reputation = array();
while($reputation_vote = $db->fetch_array($query))
{
$reputation_cache[] = $reputation_vote;
// If this is a post, hold it and gather some information about it
if($reputation_vote['pid'] && !isset($post_cache[$reputation_vote['pid']]))
{
$post_cache[$reputation_vote['pid']] = $reputation_vote['pid'];
}
}
if(!empty($post_cache))
{
$pids = implode(',', $post_cache);
$sql = array("p.pid IN ({$pids})");
// get forums user cannot view
$unviewable = get_unviewable_forums(true);
if($unviewable)
{
$sql[] = "p.fid NOT IN ({$unviewable})";
}
// get inactive forums
$inactive = get_inactive_forums();
if($inactive)
{
$sql[] = "p.fid NOT IN ({$inactive})";
}
if(!$mybb->user['ismoderator'])
{
$sql[] = "p.visible='1'";
$sql[] = "t.visible='1'";
}
$sql = implode(' AND ', $sql);
$query = $db->query("
SELECT p.pid, p.uid, p.fid, p.visible, p.message, t.tid, t.subject, t.visible AS thread_visible
FROM ".TABLE_PREFIX."posts p
LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
WHERE {$sql}
");
$forumpermissions = array();
while($post = $db->fetch_array($query))
{
if(($post['visible'] == 0 || $post['thread_visible'] == 0) && !is_moderator($post['fid'], 'canviewunapprove'))
{
continue;
}
if(($post['visible'] == -1 || $post['thread_visible'] == -1) && !is_moderator($post['fid'], 'canviewdeleted'))
{
continue;
}
if(!isset($forumpermissions[$post['fid']]))
{
$forumpermissions[$post['fid']] = forum_permissions($post['fid']);
}
// Make sure we can view this post
if(isset($forumpermissions[$post['fid']]['canonlyviewownthreads']) && $forumpermissions[$post['fid']]['canonlyviewownthreads'] == 1 && $post['uid'] != $mybb->user['uid'])
{
continue;
}
$post_reputation[$post['pid']] = $post;
}
}
$reputation_votes = '';
foreach($reputation_cache as $reputation_vote)
{
// Get the reputation for the user who posted this comment
if($reputation_vote['adduid'] == 0)
{
$reputation_vote['user_reputation'] = 0;
}
$reputation_vote['user_reputation'] = get_reputation($reputation_vote['user_reputation'], $reputation_vote['adduid']);
// Format the username of this poster
if(!$reputation_vote['username'])
{
$reputation_vote['username'] = $lang->na;
$reputation_vote['user_reputation'] = '';
}
else
{
$reputation_vote['username'] = format_name(htmlspecialchars_uni($reputation_vote['username']), $reputation_vote['user_usergroup'], $reputation_vote['user_displaygroup']);
$reputation_vote['username'] = build_profile_link($reputation_vote['username'], $reputation_vote['uid']);
$reputation_vote['user_reputation'] = "({$reputation_vote['user_reputation']})";
}
$vote_reputation = (int)$reputation_vote['reputation'];
// This is a negative reputation
if($vote_reputation < 0)
{
$status_class = "trow_reputation_negative";
$vote_type_class = "reputation_negative";
$vote_type = $lang->negative;
}
// This is a neutral reputation
else if($vote_reputation == 0)
{
$status_class = "trow_reputation_neutral";
$vote_type_class = "reputation_neutral";
$vote_type = $lang->neutral;
}
// Otherwise, this is a positive reputation
else
{
$vote_reputation = "+{$vote_reputation}";
$status_class = "trow_reputation_positive";
$vote_type_class = "reputation_positive";
$vote_type = $lang->positive;
}
$vote_reputation = "({$vote_reputation})";
// Format the date this reputation was last modified
$last_updated_date = my_date('relative', $reputation_vote['dateline']);
$last_updated = $lang->sprintf($lang->last_updated, $last_updated_date);
$user['username'] = htmlspecialchars_uni($user['username']);
// Is this rating specific to a post?
$postrep_given = '';
if($reputation_vote['pid'])
{
$postrep_given = $lang->sprintf($lang->postrep_given_nolink, $user['username']);
if(isset($post_reputation[$reputation_vote['pid']]))
{
$thread_link = get_thread_link($post_reputation[$reputation_vote['pid']]['tid']);
$subject = htmlspecialchars_uni($parser->parse_badwords($post_reputation[$reputation_vote['pid']]['subject']));
$thread_link = $lang->sprintf($lang->postrep_given_thread, $thread_link, $subject);
$link = get_post_link($reputation_vote['pid'])."#pid{$reputation_vote['pid']}";
$postrep_given = $lang->sprintf($lang->postrep_given, $link, $user['username'], $thread_link);
}
}
// Does the current user have permission to delete this reputation? Show delete link
$delete_link = '';
if($mybb->usergroup['issupermod'] == 1 || ($mybb->usergroup['candeletereputations'] == 1 && $reputation_vote['adduid'] == $mybb->user['uid'] && $mybb->user['uid'] != 0))
{
eval("\$delete_link = \"".$templates->get("reputation_vote_delete")."\";");
}
$report_link = '';
if($mybb->user['uid'] != 0)
{
eval("\$report_link = \"".$templates->get("reputation_vote_report")."\";");
}
// Parse smilies in the reputation vote
$reputation_parser = array(
"allow_html" => 0,
"allow_mycode" => 0,
"allow_smilies" => 1,
"allow_imgcode" => 0,
"filter_badwords" => 1
);
$reputation_vote['comments'] = $parser->parse_message($reputation_vote['comments'], $reputation_parser);
if($reputation_vote['comments'] == '')
{
$reputation_vote['comments'] = $lang->no_comment;
}
$plugins->run_hooks("reputation_vote");
eval("\$reputation_votes .= \"".$templates->get("reputation_vote")."\";");
}
// If we don't have any reputations display a nice message.
if(!$reputation_votes)
{
eval("\$reputation_votes = \"".$templates->get("reputation_no_votes")."\";");
}
$plugins->run_hooks("reputation_end");
eval("\$reputation = \"".$templates->get("reputation")."\";");
output_page($reputation);
}