KXStudio
/
Website
mirror of https://github.com/KXStudio/Website
1
0
Fork 0
Code Releases 0 Activity
KXStudio Website https://kx.studio/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
203 Commits
2 Branches
188MB
Tree: 94c48bea2a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '94c48bea2a'
${ noResults }
Website/News/modules/comments/comments.php

760 lines
34KB
Raw Blame History 

  1. <?php

  2.     require_once "model.Comment.php";

  3.     require_once "lib/Akismet.php";

  4. 

  5.     class Comments extends Modules {

  6.         public function __init() {

  7.             $this->addAlias("metaWeblog_newPost_preQuery", "metaWeblog_editPost_preQuery");

  8.             $this->addAlias("comment_grab", "comments_get");

  9.         }

  10. 

  11.         static function __install() {

  12.             $sql = SQL::current();

  13.             $sql->query("CREATE TABLE IF NOT EXISTS __comments (

  14.                              id INTEGER PRIMARY KEY AUTO_INCREMENT,

  15.                              body LONGTEXT,

  16.                              author VARCHAR(250) DEFAULT '',

  17.                              author_url VARCHAR(128) DEFAULT '',

  18.                              author_email VARCHAR(128) DEFAULT '',

  19.                              author_ip INTEGER DEFAULT '0',

  20.                              author_agent VARCHAR(255) DEFAULT '',

  21.                              status VARCHAR(32) default 'denied',

  22.                              post_id INTEGER DEFAULT 0,

  23.                              user_id INTEGER DEFAULT 0,

  24.                              created_at DATETIME DEFAULT NULL,

  25.                              updated_at DATETIME DEFAULT NULL

  26.                          ) DEFAULT CHARSET=utf8");

  27. 

  28.             $config = Config::current();

  29.             $config->set("default_comment_status", "denied");

  30.             $config->set("allowed_comment_html", array("strong", "em", "blockquote", "code", "pre", "a"));

  31.             $config->set("comments_per_page", 25);

  32.             $config->set("akismet_api_key", null);

  33.             $config->set("auto_reload_comments", 30);

  34.             $config->set("enable_reload_comments", false);

  35. 

  36.             Group::add_permission("add_comment", "Add Comments");

  37.             Group::add_permission("add_comment_private", "Add Comments to Private Posts");

  38.             Group::add_permission("edit_comment", "Edit Comments");

  39.             Group::add_permission("edit_own_comment", "Edit Own Comments");

  40.             Group::add_permission("delete_comment", "Delete Comments");

  41.             Group::add_permission("delete_own_comment", "Delete Own Comments");

  42.             Group::add_permission("code_in_comments", "Can Use HTML In Comments");

  43.         }

  44. 

  45.         static function __uninstall($confirm) {

  46.             if ($confirm)

  47.                 SQL::current()->query("DROP TABLE __comments");

  48. 

  49.             $config = Config::current();

  50.             $config->remove("default_comment_status");

  51.             $config->remove("allowed_comment_html");

  52.             $config->remove("comments_per_page");

  53.             $config->remove("akismet_api_key");

  54.             $config->remove("auto_reload_comments");

  55.             $config->remove("enable_reload_comments");

  56. 

  57.             Group::remove_permission("add_comment");

  58.             Group::remove_permission("add_comment_private");

  59.             Group::remove_permission("edit_comment");

  60.             Group::remove_permission("edit_own_comment");

  61.             Group::remove_permission("delete_comment");

  62.             Group::remove_permission("delete_own_comment");

  63.             Group::remove_permission("code_in_comments");

  64.         }

  65. 

  66.         static function route_add_comment() {

  67.             $post = new Post($_POST['post_id'], array("drafts" => true));

  68.             if (!Comment::user_can($post))

  69.                 show_403(__("Access Denied"), __("You cannot comment on this post.", "comments"));

  70. 

  71.             if (empty($_POST['author'])) error(__("Error"), __("Author can't be blank.", "comments"));

  72.             if (empty($_POST['email']))  error(__("Error"), __("E-Mail address can't be blank.", "comments"));

  73.             if (empty($_POST['body']))   error(__("Error"), __("Message can't be blank.", "comments"));

  74.             Comment::create($_POST['author'],

  75.                             $_POST['email'],

  76.                             $_POST['url'],

  77.                             $_POST['body'],

  78.                             $post);

  79.         }

  80. 

  81.         static function admin_update_comment() {

  82.             if (empty($_POST))

  83.                 redirect("/admin/?action=manage_comments");

  84. 

  85.             $comment = new Comment($_POST['id']);

  86.             if (!$comment->editable())

  87.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to edit this comment.", "comments"));

  88. 

  89.             $visitor = Visitor::current();

  90.             $status = ($visitor->group->can("edit_comment")) ? $_POST['status'] : $comment->status ;

  91.             $created_at = ($visitor->group->can("edit_comment")) ? datetime($_POST['created_at']) : $comment->created_at ;

  92.             $comment->update($_POST['author'],

  93.                              $_POST['author_email'],

  94.                              $_POST['author_url'],

  95.                              $_POST['body'],

  96.                              $status,

  97.                              $created_at);

  98. 

  99.             if (isset($_POST['ajax']))

  100.                 exit("{ \"comment_id\": \"".$_POST['id']."\", \"comment_timestamp\": \"".$created_at."\" }");

  101. 

  102.             if ($_POST['status'] == "spam")

  103.                 Flash::notice(__("Comment updated."), "/admin/?action=manage_spam");

  104.             else

  105.                 Flash::notice(_f("Comment updated. <a href=\"%s\">View Comment &rarr;</a>",

  106.                                  array($comment->post->url()."#comment_".$comment->id),

  107.                                  "comments"),

  108.                               "/admin/?action=manage_comments");

  109.         }

  110. 

  111.         static function admin_delete_comment($admin) {

  112.             $comment = new Comment($_GET['id']);

  113. 

  114.             if (!$comment->deletable())

  115.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to delete this comment.", "comments"));

  116. 

  117.             $admin->display("delete_comment", array("comment" => $comment));

  118.         }

  119. 

  120.         static function admin_destroy_comment() {

  121.             if (empty($_POST['id']))

  122.                 error(__("No ID Specified"), __("An ID is required to delete a comment.", "comments"));

  123. 

  124.             if ($_POST['destroy'] == "bollocks")

  125.                 redirect("/admin/?action=manage_comments");

  126. 

  127.             if (!isset($_POST['hash']) or $_POST['hash'] != Config::current()->secure_hashkey)

  128.                 show_403(__("Access Denied"), __("Invalid security key."));

  129. 

  130.             $comment = new Comment($_POST['id']);

  131.             if (!$comment->deletable())

  132.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to delete this comment.", "comments"));

  133. 

  134.             Comment::delete($_POST['id']);

  135. 

  136.             if (isset($_POST['ajax']))

  137.                 exit;

  138. 

  139.             Flash::notice(__("Comment deleted."));

  140. 

  141.             if ($comment->status == "spam")

  142.                 redirect("/admin/?action=manage_spam");

  143.             else

  144.                 redirect("/admin/?action=manage_comments");

  145.         }

  146. 

  147.         static function admin_manage_spam($admin) {

  148.             if (!Visitor::current()->group->can("edit_comment", "delete_comment", true))

  149.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to manage any comments.", "comments"));

  150. 

  151.             fallback($_GET['query'], "");

  152.             list($where, $params) = keywords($_GET['query'], "body LIKE :query");

  153. 

  154.             $where["status"] = "spam";

  155. 

  156.             $admin->display("manage_spam",

  157.                             array("comments" => new Paginator(Comment::find(array("placeholders" => true,

  158.                                                                                   "where" => $where,

  159.                                                                                   "params" => $params)),

  160.                                                               25)));

  161.         }

  162. 

  163.         static function admin_purge_spam() {

  164.             if (!Visitor::current()->group->can("delete_comment"))

  165.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to delete comments.", "comments"));

  166. 

  167.             SQL::current()->delete("comments", "status = 'spam'");

  168. 

  169.             Flash::notice(__("All spam deleted.", "comments"), "/admin/?action=manage_spam");

  170.         }

  171. 

  172.         public function post_options($fields, $post = null) {

  173.             if ($post)

  174.                 $post->comment_status = oneof(@$post->comment_status, "open");

  175. 

  176.             $fields[] = array("attr" => "option[comment_status]",

  177.                               "label" => __("Comment Status", "comments"),

  178.                               "type" => "select",

  179.                               "options" => array(array("name" => __("Open", "comments"),

  180.                                                        "value" => "open",

  181.                                                        "selected" => ($post ? $post->comment_status == "open" : true)),

  182.                                                  array("name" => __("Closed", "comments"),

  183.                                                        "value" => "closed",

  184.                                                        "selected" => ($post ? $post->comment_status == "closed" : false)),

  185.                                                  array("name" => __("Private", "comments"),

  186.                                                        "value" => "private",

  187.                                                        "selected" => ($post ? $post->comment_status == "private" : false)),

  188.                                                  array("name" => __("Registered Only", "comments"),

  189.                                                        "value" => "registered_only",

  190.                                                        "selected" => ($post ? $post->comment_status == "registered_only" : false))));

  191. 

  192.             return $fields;

  193.         }

  194. 

  195.         static function trackback_receive($url, $title, $excerpt, $blog_name) {

  196.             $sql = SQL::current();

  197.             $count = $sql->count("comments",

  198.                                  array("post_id" => $_GET['id'],

  199.                                        "author_url" => $_POST['url']));

  200.             if ($count)

  201.                 trackback_respond(true, __("A ping from that URL is already registered.", "comments"));

  202. 

  203.             $post = new Post($_GET["id"]);

  204.             if ($post->no_results)

  205.                 return false;

  206. 

  207.             Comment::create($blog_name,

  208.                             "",

  209.                             $_POST["url"],

  210.                             '<strong><a href="'.fix($url).'">'.fix($title).'</a></strong>'."\n".$excerpt,

  211.                             $post,

  212.                             "trackback");

  213.         }

  214. 

  215.         public function pingback($post, $to, $from, $title, $excerpt) {

  216.             $sql = SQL::current();

  217.             $count = $sql->count("comments",

  218.                                  array("post_id" => $post->id,

  219.                                        "author_url" => $from));

  220.             if ($count)

  221.                 return new IXR_Error(48, __("A ping from that URL is already registered.", "comments"));

  222. 

  223.             Comment::create($title,

  224.                             "",

  225.                             $from,

  226.                             $excerpt,

  227.                             $post,

  228.                             "pingback");

  229.         }

  230. 

  231.         static function delete_post($post) {

  232.             SQL::current()->delete("comments", array("post_id" => $post->id));

  233.         }

  234. 

  235.         static function delete_user($user) {

  236.             SQL::current()->update("comments", array("user_id" => $user->id), array("user_id" => 0));

  237.         }

  238. 

  239.         static function admin_comment_settings($admin) {

  240.             if (!Visitor::current()->group->can("change_settings"))

  241.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to change settings."));

  242. 

  243.             if (empty($_POST))

  244.                 return $admin->display("comment_settings");

  245. 

  246.             if (!isset($_POST['hash']) or $_POST['hash'] != Config::current()->secure_hashkey)

  247.                 show_403(__("Access Denied"), __("Invalid security key."));

  248. 

  249.             $config = Config::current();

  250.             $set = array($config->set("allowed_comment_html", explode(", ", $_POST['allowed_comment_html'])),

  251.                          $config->set("default_comment_status", $_POST['default_comment_status']),

  252.                          $config->set("comments_per_page", $_POST['comments_per_page']),

  253.                          $config->set("auto_reload_comments", $_POST['auto_reload_comments']),

  254.                          $config->set("enable_reload_comments", isset($_POST['enable_reload_comments'])));

  255. 

  256.             if (!empty($_POST['akismet_api_key'])) {

  257.                 $_POST['akismet_api_key'] = trim($_POST['akismet_api_key']);

  258.                 $akismet = new Akismet($config->url, $_POST['akismet_api_key']);

  259.                 if (!$akismet->isKeyValid()) {

  260.                     Flash::warning(__("Invalid Akismet API key."), "/admin/?action=comment_settings");

  261.                     $set[] = false;

  262.                 } else

  263.                     $set[] = $config->set("akismet_api_key", $_POST['akismet_api_key']);

  264.             }

  265. 

  266.             if (!in_array(false, $set))

  267.                 Flash::notice(__("Settings updated."), "/admin/?action=comment_settings");

  268.         }

  269. 

  270.         static function settings_nav($navs) {

  271.             if (Visitor::current()->group->can("change_settings"))

  272.                 $navs["comment_settings"] = array("title" => __("Comments", "comments"));

  273. 

  274.             return $navs;

  275.         }

  276. 

  277.         static function manage_nav($navs) {

  278.             if (!Comment::any_editable() and !Comment::any_deletable())

  279.                 return $navs;

  280. 

  281.             $sql = SQL::current();

  282.             $comment_count = $sql->count("comments", array("status not" => "spam"));

  283.             $spam_count = $sql->count("comments", array("status" => "spam"));

  284.             $navs["manage_comments"] = array("title" => _f("Comments (%d)", $comment_count, "comments"),

  285.                                              "selected" => array("edit_comment", "delete_comment"));

  286. 

  287.             if (Visitor::current()->group->can("edit_comment", "delete_comment"))

  288.                 $navs["manage_spam"]     = array("title" => _f("Spam (%d)", $spam_count, "comments"));

  289. 

  290.             return $navs;

  291.         }

  292. 

  293.         static function manage_nav_pages($pages) {

  294.             array_push($pages, "manage_comments", "manage_spam", "edit_comment", "delete_comment");

  295.             return $pages;

  296.         }

  297. 

  298.         public function admin_edit_comment($admin) {

  299.             if (empty($_GET['id']))

  300.                 error(__("No ID Specified"), __("An ID is required to edit a comment.", "comments"));

  301. 

  302.             $comment = new Comment($_GET['id'], array("filter" => false));

  303. 

  304.             if (!$comment->editable())

  305.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to edit this comment.", "comments"));

  306. 

  307.             $admin->display("edit_comment", array("comment" => $comment));

  308.         }

  309. 

  310.         static function admin_manage_comments($admin) {

  311.             if (!Comment::any_editable() and !Comment::any_deletable())

  312.                 show_403(__("Access Denied"), __("You do not have sufficient privileges to manage any comments.", "comments"));

  313. 

  314.             fallback($_GET['query'], "");

  315.             list($where, $params) = keywords($_GET['query'], "body LIKE :query");

  316. 

  317.             $where[] = "status != 'spam'";

  318. 

  319.             $visitor = Visitor::current();

  320.             if (!$visitor->group->can("edit_comment", "delete_comment", true))

  321.                 $where["user_id"] = $visitor->id;

  322. 

  323.             $admin->display("manage_comments",

  324.                             array("comments" => new Paginator(Comment::find(array("placeholders" => true,

  325.                                                                                   "where" => $where,

  326.                                                                                   "params" => $params)),

  327.                                                               25)));

  328.         }

  329. 

  330.         static function admin_bulk_comments() {

  331.             $from = (!isset($_GET['from'])) ? "manage_comments" : "manage_spam" ;

  332. 

  333.             if (!isset($_POST['comment']))

  334.                 Flash::warning(__("No comments selected."), "/admin/?action=".$from);

  335. 

  336.             $comments = array_keys($_POST['comment']);

  337. 

  338.             if (isset($_POST['delete'])) {

  339.                 foreach ($comments as $comment) {

  340.                     $comment = new Comment($comment);

  341.                     if ($comment->deletable())

  342.                         Comment::delete($comment->id);

  343.                 }

  344. 

  345.                 Flash::notice(__("Selected comments deleted.", "comments"));

  346.             }

  347. 

  348.             $false_positives = array();

  349.             $false_negatives = array();

  350. 

  351.             $sql = SQL::current();

  352.             $config = Config::current();

  353. 

  354.             if (isset($_POST['deny'])) {

  355.                 foreach ($comments as $comment) {

  356.                     $comment = new Comment($comment);

  357.                     if (!$comment->editable())

  358.                         continue;

  359. 

  360.                     if ($comment->status == "spam")

  361.                         $false_positives[] = $comment;

  362. 

  363.                     $sql->update("comments", array("id" => $comment->id), array("status" => "denied"));

  364.                 }

  365. 

  366.                 Flash::notice(__("Selected comments denied.", "comments"));

  367.             }

  368. 

  369.             if (isset($_POST['approve'])) {

  370.                 foreach ($comments as $comment) {

  371.                     $comment = new Comment($comment);

  372.                     if (!$comment->editable())

  373.                         continue;

  374. 

  375.                     if ($comment->status == "spam")

  376.                         $false_positives[] = $comment;

  377. 

  378.                     $sql->update("comments", array("id" => $comment->id), array("status" => "approved"));

  379.                 }

  380. 

  381.                 Flash::notice(__("Selected comments approved.", "comments"));

  382.             }

  383. 

  384.             if (isset($_POST['spam'])) {

  385.                 foreach ($comments as $comment) {

  386.                     $comment = new Comment($comment);

  387.                     if (!$comment->editable())

  388.                         continue;

  389. 

  390.                     $sql->update("comments", array("id" => $comment->id), array("status" => "spam"));

  391. 

  392.                     $false_negatives[] = $comment;

  393.                 }

  394. 

  395.                 Flash::notice(__("Selected comments marked as spam.", "comments"));

  396.             }

  397. 

  398.             if (!empty($config->akismet_api_key)) {

  399.                 if (!empty($false_positives))

  400.                     self::reportHam($false_positives);

  401.                 if (!empty($false_negatives))

  402.                     self::reportSpam($false_negatives);

  403.             }

  404. 

  405.             redirect("/admin/?action=".$from);

  406.         }

  407. 

  408.         static function reportHam($comments) {

  409.             $config = Config::current();

  410.             foreach($comments as $comment) {

  411.                 $akismet = new Akismet($config->url, $config->akismet_api_key);

  412.                 $akismet->setCommentAuthor($comment->author);

  413.                 $akismet->setCommentAuthorEmail($comment->author_email);

  414.                 $akismet->setCommentAuthorURL($comment->author_url);

  415.                 $akismet->setCommentContent($comment->body);

  416.                 $akismet->setPermalink($comment->post_id);

  417.                 $akismet->setReferrer($comment->author_agent);

  418.                 $akismet->setUserIP($comment->author_ip);

  419.                 $akismet->submitHam();

  420.             }

  421.         }

  422. 

  423.         static function reportSpam($comments) {

  424.             $config = Config::current();

  425.             foreach($comments as $comment) {

  426.                 $akismet = new Akismet($config->url, $config->akismet_api_key);

  427.                 $akismet->setCommentAuthor($comment->author);

  428.                 $akismet->setCommentAuthorEmail($comment->author_email);

  429.                 $akismet->setCommentAuthorURL($comment->author_url);

  430.                 $akismet->setCommentContent($comment->body);

  431.                 $akismet->setPermalink($comment->post_id);

  432.                 $akismet->setReferrer($comment->author_agent);

  433.                 $akismet->setUserIP($comment->author_ip);

  434.                 $akismet->submitSpam();

  435.             }

  436.         }

  437. 

  438.         static function manage_posts_column_header() {

  439.             echo '<th>'.__("Comments", "comments").'</th>';

  440.         }

  441. 

  442.         static function manage_posts_column($post) {

  443.             echo '<td align="center"><a href="'.$post->url().'#comments">'.$post->comment_count.'</a></td>';

  444.         }

  445. 

  446.         static function scripts($scripts) {

  447.             $scripts[] = Config::current()->chyrp_url."/modules/comments/javascript.php";

  448.             return $scripts;

  449.         }

  450. 

  451.         static function ajax() {

  452.             header("Content-Type: application/x-javascript", true);

  453. 

  454.             $config  = Config::current();

  455.             $sql     = SQL::current();

  456.             $trigger = Trigger::current();

  457.             $visitor = Visitor::current();

  458.             $theme   = Theme::current();

  459.             $main    = MainController::current();

  460. 

  461.             switch($_POST['action']) {

  462.                 case "reload_comments":

  463.                     $post = new Post($_POST['post_id']);

  464. 

  465.                     if ($post->no_results)

  466.                         break;

  467. 

  468.                     if ($post->latest_comment > $_POST['last_comment']) {

  469.                         $new_comments = $sql->select("comments",

  470.                                                      "id, created_at",

  471.                                                      array("post_id" => $_POST['post_id'],

  472.                                                            "created_at >" => $_POST['last_comment'],

  473.                                                            "status not" => "spam", "status != 'denied' OR (

  474.                                                               (user_id != 0 AND user_id = :visitor_id) OR (

  475.                                                                     id IN ".self::visitor_comments()."))"

  476.                                                            ),

  477.                                                      "created_at ASC",

  478.                                                      array(":visitor_id" => $visitor->id));

  479. 

  480.                         $ids = array();

  481.                         $last_comment = "";

  482.                         while ($the_comment = $new_comments->fetchObject()) {

  483.                             $ids[] = $the_comment->id;

  484. 

  485.                             if (strtotime($last_comment) < strtotime($the_comment->created_at))

  486.                                 $last_comment = $the_comment->created_at;

  487.                         }

  488. ?>

  489. { comment_ids: [ <?php echo implode(", ", $ids); ?> ], last_comment: "<?php echo $last_comment; ?>" }

  490. <?php

  491.                     }

  492.                     break;

  493.                 case "show_comment":

  494.                     $comment = new Comment($_POST['comment_id']);

  495.                     $trigger->call("show_comment", $comment);

  496. 

  497.                     $main->display("content/comment", array("comment" => $comment));

  498.                     break;

  499.                 case "delete_comment":

  500.                     $comment = new Comment($_POST['id']);

  501.                     if (!$comment->deletable())

  502.                         break;

  503. 

  504.                     Comment::delete($_POST['id']);

  505.                     break;

  506.                 case "edit_comment":

  507.                     $comment = new Comment($_POST['comment_id'], array("filter" => false));

  508.                     if (!$comment->editable())

  509.                         break;

  510. 

  511.                     if ($theme->file_exists("forms/comment/edit"))

  512.                         $main->display("forms/comment/edit", array("comment" => $comment));

  513.                     else

  514.                         require "edit_form.php";

  515. 

  516.                     break;

  517.             }

  518.         }

  519. 

  520.         public function import_chyrp_post($entry, $post) {

  521.             $chyrp = $entry->children("http://chyrp.net/export/1.0/");

  522.             if (!isset($chyrp->comment)) return;

  523. 

  524.             $sql = SQL::current();

  525. 

  526.             foreach ($chyrp->comment as $comment) {

  527.                 $chyrp = $comment->children("http://chyrp.net/export/1.0/");

  528.                 $comment = $comment->children("http://www.w3.org/2005/Atom");

  529. 

  530.                 $login = $comment->author->children("http://chyrp.net/export/1.0/")->login;

  531.                 $user_id = $sql->select("users", "id", array("login" => $login), "id DESC")->fetchColumn();

  532. 

  533.                 Comment::add(unfix($comment->content),

  534.                              unfix($comment->author->name),

  535.                              unfix($comment->author->uri),

  536.                              unfix($comment->author->email),

  537.                              $chyrp->author->ip,

  538.                              unfix($chyrp->author->agent),

  539.                              $chyrp->status,

  540.                              datetime($comment->published),

  541.                              ($comment->published == $comment->updated) ? null : datetime($comment->updated),

  542.                              $post,

  543.                              ($user_id ? $user_id : 0));

  544.             }

  545.         }

  546. 

  547.         static function import_wordpress_post($item, $post) {

  548.             $wordpress = $item->children("http://wordpress.org/export/1.0/");

  549.             if (!isset($wordpress->comment)) return;

  550. 

  551.             foreach ($wordpress->comment as $comment) {

  552.                 $comment = $comment->children("http://wordpress.org/export/1.0/");

  553.                 fallback($comment->comment_content, "");

  554.                 fallback($comment->comment_author, "");

  555.                 fallback($comment->comment_author_url, "");

  556.                 fallback($comment->comment_author_email, "");

  557.                 fallback($comment->comment_author_IP, "");

  558. 

  559.                 Comment::add($comment->comment_content,

  560.                              $comment->comment_author,

  561.                              $comment->comment_author_url,

  562.                              $comment->comment_author_email,

  563.                              $comment->comment_author_IP,

  564.                              "",

  565.                              ((isset($comment->comment_approved) and $comment->comment_approved == "1") ? "approved" : "denied"),

  566.                              $comment->comment_date,

  567.                              null,

  568.                              $post,

  569.                              0);

  570.             }

  571.         }

  572. 

  573.         static function import_textpattern_post($array, $post, $link) {

  574.             $get_comments = mysql_query("SELECT * FROM {$_POST['prefix']}txp_discuss WHERE parentid = {$array["ID"]} ORDER BY discussid ASC", $link) or error(__("Database Error"), mysql_error());

  575. 

  576.             while ($comment = mysql_fetch_array($get_comments)) {

  577.                 $translate_status = array(-1 => "spam",

  578.                                           0 => "denied",

  579.                                           1 => "approved");

  580.                 $status = str_replace(array_keys($translate_status), array_values($translate_status), $comment["visible"]);

  581. 

  582.                 Comment::add($comment["message"],

  583.                              $comment["name"],

  584.                              $comment["web"],

  585.                              $comment["email"],

  586.                              $comment["ip"],

  587.                              "",

  588.                              $status,

  589.                              $comment["posted"],

  590.                              null,

  591.                              $post,

  592.                              0);

  593.             }

  594.         }

  595. 

  596.         static function import_movabletype_post($array, $post, $link) {

  597.             $get_comments = mysql_query("SELECT * FROM mt_comment WHERE comment_entry_id = {$array["entry_id"]} ORDER BY comment_id ASC", $link) or error(__("Database Error"), mysql_error());

  598. 

  599.             while ($comment = mysql_fetch_array($get_comments))

  600.                 Comment::add($comment["comment_text"],

  601.                              $comment["comment_author"],

  602.                              $comment["comment_url"],

  603.                              $comment["comment_email"],

  604.                              $comment["comment_ip"],

  605.                              "",

  606.                              ($comment["comment_visible"] ? "approved" : "denied"),

  607.                              $comment["comment_created_on"],

  608.                              $comment["comment_modified_on"],

  609.                              $post,

  610.                              0);

  611.         }

  612. 

  613.         static function view_feed($context) {

  614.             $post = $context["post"];

  615. 

  616.             $title = $post->title();

  617.             fallback($title, ucfirst($post->feather)." Post #".$post->id);

  618. 

  619.             $title = _f("Comments on &#8220;%s&#8221;", array(fix($title)), "comments");

  620. 

  621.             $comments = $post->comments;

  622. 

  623.             require "pages/comments_feed.php";

  624.         }

  625. 

  626.         static function metaWeblog_getPost($struct, $post) {

  627.             if (isset($post->comment_status))

  628.                 $struct['mt_allow_comments'] = intval($post->comment_status == 'open');

  629.             else

  630.                 $struct['mt_allow_comments'] = 1;

  631. 

  632.             return $struct;

  633.         }

  634. 

  635.         static function metaWeblog_editPost_preQuery($struct, $post = null) {

  636.             if (isset($struct['mt_allow_comments']))

  637.                 $_POST['option']['comment_status'] = ($struct['mt_allow_comments'] == 1) ? 'open' : 'closed';

  638.         }

  639. 

  640.         public function post($post) {

  641.             $post->has_many[] = "comments";

  642.         }

  643. 

  644.         public function post_comment_count_attr($attr, $post) {

  645.             if (isset($this->comment_counts))

  646.                 return oneof(@$this->comment_counts[$post->id], 0);

  647. 

  648.             $counts = SQL::current()->select("comments",

  649.                                              array("COUNT(post_id) AS total", "post_id as post_id"),

  650.                                              array("status not" => "spam", "status != 'denied' OR (

  651.                                                       (user_id != 0 AND user_id = :visitor_id) OR (

  652.                                                             id IN ".self::visitor_comments()."))"

  653.                                                   ),

  654.                                              null,

  655.                                              array(":visitor_id" => Visitor::current()->id),

  656.                                              null,

  657.                                              null,

  658.                                              "post_id");

  659. 

  660.             foreach ($counts->fetchAll() as $count)

  661.                 $this->comment_counts[$count["post_id"]] = (int) $count["total"];

  662. 

  663.             return oneof(@$this->comment_counts[$post->id], 0);

  664.         }

  665. 

  666.         public function post_latest_comment_attr($attr, $post) {

  667.             if (isset($this->latest_comments))

  668.                 return fallback($this->latest_comments[$post->id], null);

  669. 

  670.             $times = SQL::current()->select("comments",

  671.                                             array("MAX(created_at) AS latest", "post_id"),

  672.                                             array("status not" => "spam", "status != 'denied' OR (

  673.                                                      (user_id != 0 AND user_id = :visitor_id) OR (

  674.                                                            id IN ".self::visitor_comments()."))"

  675.                                                  ),

  676.                                             null,

  677.                                             array(":visitor_id" => Visitor::current()->id),

  678.                                             null,

  679.                                             null,

  680.                                             "post_id");

  681. 

  682.             foreach ($times->fetchAll() as $row)

  683.                 $this->latest_comments[$row["post_id"]] = $row["latest"];

  684. 

  685.             return fallback($this->latest_comments[$post->id], null);

  686.         }

  687. 

  688.         public function comments_get($options) {

  689.             if (ADMIN)

  690.                 return;

  691. 

  692.             $options["where"]["status not"] = "spam";

  693.             $options["where"][] = "status != 'denied' OR (

  694.                                  (user_id != 0 AND user_id = :visitor_id) OR (

  695.                                        id IN ".self::visitor_comments()."))";

  696.             $options["order"] = "created_at ASC";

  697.             $options["params"][":visitor_id"] = Visitor::current()->id;

  698.         }

  699. 

  700.         public function post_commentable_attr($attr, $post) {

  701.             return Comment::user_can($post);

  702.         }

  703. 

  704.         public function cacher_regenerate_posts_triggers($array) {

  705.             $array = array_merge($array, array("add_comment", "update_comment", "delete_comment"));

  706.             return $array;

  707.         }

  708. 

  709.         public function posts_export($atom, $post) {

  710.             $comments = Comment::find(array("where" => array("post_id" => $post->id)),

  711.                                       array("filter" => false));

  712. 

  713.             foreach ($comments as $comment) {

  714.                 $updated = ($comment->updated) ? $comment->updated_at : $comment->created_at ;

  715. 

  716.                 $atom.= "        <chyrp:comment>\r";

  717.                 $atom.= '            <updated>'.when("c", $updated).'</updated>'."\r";

  718.                 $atom.= '            <published>'.when("c", $comment->created_at).'</published>'."\r";

  719.                 $atom.= '            <author chyrp:user_id="'.$comment->user_id.'">'."\r";

  720.                 $atom.= "                <name>".fix($comment->author)."</name>\r";

  721.                 if (!empty($comment->author_url))

  722.                 $atom.= "                <uri>".fix($comment->author_url)."</uri>\r";

  723.                 $atom.= "                <email>".fix($comment->author_email)."</email>\r";

  724.                 $atom.= "                <chyrp:login>".fix(@$comment->user->login)."</chyrp:login>\r";

  725.                 $atom.= "                <chyrp:ip>".long2ip($comment->author_ip)."</chyrp:ip>\r";

  726.                 $atom.= "                <chyrp:agent>".fix($comment->author_agent)."</chyrp:agent>\r";

  727.                 $atom.= "            </author>\r";

  728.                 $atom.= "            <content>".fix($comment->body)."</content>\r";

  729.                 $atom.= "                <chyrp:status>".fix($comment->status)."</chyrp:status>\r";

  730.                 $atom.= "        </chyrp:comment>\r";

  731.             }

  732. 

  733.             return $atom;

  734.         }

  735. 

  736.         public function manage_nav_show($possibilities) {

  737.             $possibilities[] = (Comment::any_editable() or Comment::any_deletable());

  738.             return $possibilities;

  739.         }

  740. 

  741.         public function determine_action($action) {

  742.             if ($action != "manage") return;

  743. 

  744.             if (Comment::any_editable() or Comment::any_deletable())

  745.                 return "manage_comments";

  746.         }

  747. 

  748.         public function route_comments_rss() {

  749.             header("HTTP/1.1 301 Moved Permanently");

  750.             redirect("comments_feed/");

  751.         }

  752. 

  753.         static function visitor_comments() {

  754.             if (empty($_SESSION['comments']))

  755.                 return "(0)";

  756.             else

  757.                 return QueryBuilder::build_list($_SESSION['comments']);

  758.         }

  759.     }