iframe_thread.php 3.6 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899
  1. <?php
  2. /* For licensing terms, see /license.txt */
  3. /**
  4. * These files are a complete rework of the forum. The database structure is
  5. * based on phpBB but all the code is rewritten. A lot of new functionalities
  6. * are added:
  7. * - forum categories and forums can be sorted up or down, locked or made invisible
  8. * - consistent and integrated forum administration
  9. * - forum options: are students allowed to edit their post?
  10. * moderation of posts (approval)
  11. * reply only forums (students cannot create new threads)
  12. * multiple forums per group
  13. * - sticky messages
  14. * - new view option: nested view
  15. * - quoting a message
  16. *
  17. * @author Patrick Cool <patrick.cool@UGent.be>, Ghent University
  18. * @copyright Ghent University
  19. *
  20. * @package chamilo.forum
  21. */
  22. require_once __DIR__.'/../inc/global.inc.php';
  23. // A notice for unauthorized people.
  24. api_protect_course_script(true);
  25. $nameTools = get_lang('ToolForum');
  26. Display::display_reduced_header();
  27. /* Including necessary files */
  28. require 'forumconfig.inc.php';
  29. require_once 'forumfunction.inc.php';
  30. /* Retrieving forum and forum categorie information */
  31. // We are getting all the information about the current forum and forum category.
  32. // Note pcool: I tried to use only one sql statement (and function) for this,
  33. // but the problem is that the visibility of the forum AND forum cateogory are stored in the item_property table.
  34. $current_thread = get_thread_information(
  35. $_GET['forum'],
  36. $_GET['thread']
  37. ); // Note: this has to be validated that it is an existing thread.
  38. $current_forum = get_forum_information($current_thread['forum_id']);
  39. // Note: this has to be validated that it is an existing forum.
  40. $current_forum_category = get_forumcategory_information(
  41. $current_forum['forum_category']
  42. );
  43. /* Is the user allowed here? */
  44. // if the user is not a course administrator and the forum is hidden
  45. // then the user is not allowed here.
  46. if (!api_is_allowed_to_edit(false, true) && ($current_forum['visibility'] == 0 || $current_thread['visibility'] == 0)) {
  47. api_not_allowed(false);
  48. }
  49. $course_id = api_get_course_int_id();
  50. /* Display Forum Category and the Forum information */
  51. // We are getting all the information about the current forum and forum category.
  52. // Note pcool: I tried to use only one sql statement (and function) for this,
  53. // but the problem is that the visibility of the forum AND forum cateogory are stored in the item_property table.
  54. $sql = "SELECT * FROM $table_posts posts, $table_users users
  55. WHERE
  56. posts.c_id = $course_id AND
  57. posts.thread_id='".$current_thread['thread_id']."' AND
  58. posts.poster_id=users.user_id
  59. ORDER BY posts.post_id ASC";
  60. $result = Database::query($sql);
  61. echo "<table width=\"100%\" height=\"100%\" cellspacing=\"5\" border=\"0\">";
  62. while ($row = Database::fetch_array($result)) {
  63. echo "<tr>";
  64. echo "<td rowspan=\"2\" class=\"forum_message_left\">";
  65. $username = api_htmlentities(sprintf(get_lang('LoginX'), $row['username']), ENT_QUOTES);
  66. if ($row['user_id'] == '0') {
  67. $name = $row['poster_name'];
  68. } else {
  69. $name = api_get_person_name($row['firstname'], $row['lastname']);
  70. }
  71. echo Display::tag('span', $name, array('title'=>$username)).'<br />';
  72. echo api_convert_and_format_date($row['post_date']).'<br /><br />';
  73. echo "</td>";
  74. echo "<td class=\"forum_message_post_title\">".Security::remove_XSS($row['post_title'])."</td>";
  75. echo "</tr>";
  76. echo "<tr>";
  77. echo "<td class=\"forum_message_post_text\">".Security::remove_XSS($row['post_text'], STUDENT)."</td>";
  78. echo "</tr>";
  79. }
  80. echo "</table>";
  81. ?>
  82. </body>
  83. </html>