1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 435: 436: 437: 438: 439: 440: 441: 442: 443: 444: 445: 446: 447: 448: 449: 450: 451: 452: 453: 454: 455: 456: 457: 458: 459: 460: 461: 462: 463: 464: 465: 466: 467: 468: 469: 470: 471: 472: 473: 474: 475: 476: 477: 478: 479: 480: 481: 482: 483: 484: 485: 486: 487: 488: 489: 490: 491: 492: 493: 494: 495: 496: 497: 498: 499: 500: 501: 502: 503: 504: 505: 506: 507: 508: 509: 510: 511: 512: 513: 514: 515: 516: 517: 518: 519: 520: 521: 522: 523: 524: 525: 526: 527: 528: 529: 530: 531: 532: 533: 534: 535: 536: 537: 538: 539: 540: 541: 542: 543: 544: 545: 546: 547: 548: 549: 550: 551: 552: 553: 554: 555: 556: 557: 558: 559: 560: 561: 562: 563: 564: 565: 566: 567: 568: 569: 570: 571: 572: 573: 574: 575: 576: 577: 578: 579: 580: 581: 582: 583: 584: 585: 586: 587: 588: 589: 590: 591: 592: 593: 594: 595: 596: 597: 598: 599: 600: 601: 602: 603: 604: 605: 606: 607: 608: 609: 610: 611: 612: 613: 614: 615: 616: 617: 618: 619: 620: 621: 622: 623: 624: 625: 626: 627: 628: 629: 630: 631: 632: 633: 634: 635: 636: 637: 638: 639: 640: 641: 642: 643: 644: 645: 646: 647: 648: 649: 650: 651: 652: 653: 654: 655: 656: 657: 658: 659: 660: 661: 662: 663: 664: 665: 666: 667: 668: 669: 670: 671: 672: 673: 674: 675: 676: 677: 678: 679: 680: 681: 682: 683: 684: 685: 686: 687: 688: 689: 690: 691: 692: 693: 694: 695: 696: 697: 698: 699: 700: 701: 702: 703: 704: 705: 706: 707: 708: 709: 710: 711: 712: 713: 714: 715: 716: 717: 718: 719: 720: 721: 722: 723: 724: 725: 726: 727: 728: 729: 730: 731: 732: 733: 734: 735: 736: 737: 738: 739: 740: 741: 742: 743: 744: 745: 746: 747: 748: 749: 750: 751: 752: 753: 754: 755: 756: 757: 758: 759: 760: 761: 762: 763: 764: 765: 766: 767: 768: 769: 770: 771: 772: 773: 774: 775: 776: 777: 778: 779: 780: 781: 782: 783: 784: 785: 786: 787: 788: 789: 790: 791: 792: 793: 794: 795: 796: 797: 798: 799: 800: 801: 802: 803: 804: 805: 806: 807: 808: 809: 810: 811: 812: 813: 814: 815: 816: 817: 818: 819: 820: 821: 822: 823: 824: 825: 826: 827: 828: 829: 830: 831: 832: 833: 834: 835: 836: 837: 838: 839: 840: 841: 842: 843: 844: 845: 846: 847: 848: 849: 850: 851: 852: 853: 854: 855: 856: 857: 858: 859: 860: 861: 862: 863: 864: 865: 866: 867: 868: 869: 870: 871: 872: 873: 874: 875: 876: 877: 878: 879: 880: 881: 882: 883: 884: 885: 886: 887: 888: 889: 890: 891: 892: 893: 894: 895: 896: 897: 898: 899: 900: 901: 902: 903: 904: 905: 906: 907: 908: 909: 910: 911: 912: 913: 914: 915: 916: 917: 918: 919: 920: 921: 922: 923: 924: 925: 926: 927: 928: 929: 930: 931: 932: 933: 934: 935: 936: 937: 938: 939: 940: 941: 942: 943: 944: 945: 946: 947: 948: 949: 950: 951: 952: 953: 954: 955: 956: 957: 958: 959: 960: 961: 962: 963: 964: 965: 966: 967: 968: 969: 970: 971: 972: 973: 974: 975: 976: 977: 978: 979: 980: 981: 982: 983: 984: 985: 986: 987: 988: 989: 990: 991: 992: 993: 994: 995: 996: 997: 998: 999: 1000: 1001: 1002: 1003: 1004: 1005: 1006: 1007: 1008: 1009: 1010: 1011:
<?php
if (!defined('SMF'))
die('No direct access...');
function Vote()
{
global $topic, $user_info, $smcFunc, $sourcedir, $modSettings;
isAllowedTo('poll_vote');
loadLanguage('Post');
$request = $smcFunc['db_query']('', '
SELECT COALESCE(lp.id_choice, -1) AS selected, p.voting_locked, p.id_poll, p.expire_time, p.max_votes, p.change_vote,
p.guest_vote, p.reset_poll, p.num_guest_voters
FROM {db_prefix}topics AS t
INNER JOIN {db_prefix}polls AS p ON (p.id_poll = t.id_poll)
LEFT JOIN {db_prefix}log_polls AS lp ON (p.id_poll = lp.id_poll AND lp.id_member = {int:current_member} AND lp.id_member != {int:not_guest})
WHERE t.id_topic = {int:current_topic}
LIMIT 1',
array(
'current_member' => $user_info['id'],
'current_topic' => $topic,
'not_guest' => 0,
)
);
if ($smcFunc['db_num_rows']($request) == 0)
fatal_lang_error('poll_error', false);
$row = $smcFunc['db_fetch_assoc']($request);
$smcFunc['db_free_result']($request);
if ($user_info['is_guest'])
{
if (!$row['guest_vote'])
fatal_lang_error('guest_vote_disabled');
elseif (!empty($_COOKIE['guest_poll_vote']) && preg_match('~^[0-9,;]+$~', $_COOKIE['guest_poll_vote']) && strpos($_COOKIE['guest_poll_vote'], ';' . $row['id_poll'] . ',') !== false)
{
$guestinfo = explode(';', $_COOKIE['guest_poll_vote']);
foreach ($guestinfo as $i => $guestvoted)
{
$guestvoted = explode(',', $guestvoted);
if ($guestvoted[0] == $row['id_poll'])
break;
}
if ($row['reset_poll'] > $guestvoted[1])
{
unset($guestinfo[$i]);
if (!empty($guestinfo))
$_COOKIE['guest_poll_vote'] = ';' . implode(';', $guestinfo);
else
unset($_COOKIE['guest_poll_vote']);
}
else
fatal_lang_error('poll_error', false);
unset($guestinfo, $guestvoted, $i);
}
}
if (!empty($row['voting_locked']) || (!empty($row['expire_time']) && time() > $row['expire_time']))
fatal_lang_error('poll_error', false);
if (!$user_info['is_guest'] && $row['selected'] != -1 && empty($row['change_vote']))
fatal_lang_error('poll_error', false);
elseif (!empty($row['change_vote']) && !$user_info['is_guest'] && empty($_POST['options']))
{
checkSession('request');
$pollOptions = array();
$request = $smcFunc['db_query']('', '
SELECT id_choice
FROM {db_prefix}log_polls
WHERE id_member = {int:current_member}
AND id_poll = {int:id_poll}',
array(
'current_member' => $user_info['id'],
'id_poll' => $row['id_poll'],
)
);
while ($choice = $smcFunc['db_fetch_row']($request))
$pollOptions[] = $choice[0];
$smcFunc['db_free_result']($request);
if (!empty($pollOptions))
{
$smcFunc['db_query']('', '
UPDATE {db_prefix}poll_choices
SET votes = votes - 1
WHERE id_poll = {int:id_poll}
AND id_choice IN ({array_int:poll_options})
AND votes > {int:votes}',
array(
'poll_options' => $pollOptions,
'id_poll' => $row['id_poll'],
'votes' => 0,
)
);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}log_polls
WHERE id_member = {int:current_member}
AND id_poll = {int:id_poll}',
array(
'current_member' => $user_info['id'],
'id_poll' => $row['id_poll'],
)
);
}
if (empty($_POST['options']))
redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
}
checkSession('request');
if (empty($_POST['options']))
fatal_lang_error('didnt_select_vote', false);
if (count($_REQUEST['options']) > $row['max_votes'])
fatal_lang_error('poll_too_many_votes', false, array($row['max_votes']));
$pollOptions = array();
$inserts = array();
foreach ($_REQUEST['options'] as $id)
{
$id = (int) $id;
$pollOptions[] = $id;
$inserts[] = array($row['id_poll'], $user_info['id'], $id);
}
$smcFunc['db_insert']('insert',
'{db_prefix}log_polls',
array('id_poll' => 'int', 'id_member' => 'int', 'id_choice' => 'int'),
$inserts,
array('id_poll', 'id_member', 'id_choice')
);
$smcFunc['db_query']('', '
UPDATE {db_prefix}poll_choices
SET votes = votes + 1
WHERE id_poll = {int:id_poll}
AND id_choice IN ({array_int:poll_options})',
array(
'poll_options' => $pollOptions,
'id_poll' => $row['id_poll'],
)
);
if ($user_info['is_guest'] && count($pollOptions) > 0)
{
$_COOKIE['guest_poll_vote'] = empty($_COOKIE['guest_poll_vote']) ? '' : $_COOKIE['guest_poll_vote'];
$_COOKIE['guest_poll_vote'] .= ';' . $row['id_poll'] . ',' . time() . ',' . implode(',', $pollOptions);
$smcFunc['db_query']('', '
UPDATE {db_prefix}polls
SET num_guest_voters = num_guest_voters + 1
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $row['id_poll'],
)
);
require_once($sourcedir . '/Subs-Auth.php');
$cookie_url = url_parts(!empty($modSettings['localCookies']), !empty($modSettings['globalCookies']));
smf_setcookie('guest_poll_vote', $_COOKIE['guest_poll_vote'], time() + 2500000, $cookie_url[1], $cookie_url[0], false, false);
}
call_integration_hook('integrate_poll_vote', array(&$row['id_poll'], &$pollOptions));
redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
}
function LockVoting()
{
global $topic, $user_info, $smcFunc;
checkSession('get');
$request = $smcFunc['db_query']('', '
SELECT t.id_member_started, t.id_poll, p.voting_locked
FROM {db_prefix}topics AS t
INNER JOIN {db_prefix}polls AS p ON (p.id_poll = t.id_poll)
WHERE t.id_topic = {int:current_topic}
LIMIT 1',
array(
'current_topic' => $topic,
)
);
list ($memberID, $pollID, $voting_locked) = $smcFunc['db_fetch_row']($request);
if (!allowedTo('poll_lock_any'))
isAllowedTo('poll_lock_' . ($user_info['id'] == $memberID ? 'own' : 'any'));
if ($voting_locked == '1')
$voting_locked = '0';
elseif ($voting_locked == '2' && allowedTo('moderate_board'))
$voting_locked = '0';
elseif ($voting_locked == '2' && !allowedTo('moderate_board'))
fatal_lang_error('locked_by_admin', 'user');
elseif ($voting_locked == '0' && allowedTo('moderate_board'))
$voting_locked = '2';
else
$voting_locked = '1';
$smcFunc['db_query']('', '
UPDATE {db_prefix}polls
SET voting_locked = {int:voting_locked}
WHERE id_poll = {int:id_poll}',
array(
'voting_locked' => $voting_locked,
'id_poll' => $pollID,
)
);
logAction(($voting_locked ? '' : 'un') . 'lock_poll', array('topic' => $topic));
redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
}
function EditPoll()
{
global $txt, $user_info, $context, $topic, $board, $smcFunc, $sourcedir, $scripturl;
if (empty($topic))
fatal_lang_error('no_access', false);
loadLanguage('Post');
loadTemplate('Poll');
$context['start'] = (int) $_REQUEST['start'];
$context['is_edit'] = isset($_REQUEST['add']) ? 0 : 1;
$request = $smcFunc['db_query']('', '
SELECT
t.id_member_started, p.id_poll, p.question, p.hide_results, p.expire_time, p.max_votes, p.change_vote,
m.subject, p.guest_vote, p.id_member AS poll_starter
FROM {db_prefix}topics AS t
INNER JOIN {db_prefix}messages AS m ON (m.id_msg = t.id_first_msg)
LEFT JOIN {db_prefix}polls AS p ON (p.id_poll = t.id_poll)
WHERE t.id_topic = {int:current_topic}
LIMIT 1',
array(
'current_topic' => $topic,
)
);
if ($smcFunc['db_num_rows']($request) == 0)
fatal_lang_error('no_board');
$pollinfo = $smcFunc['db_fetch_assoc']($request);
$smcFunc['db_free_result']($request);
if (!$context['is_edit'] && !empty($pollinfo['id_poll']))
fatal_lang_error('poll_already_exists');
elseif ($context['is_edit'] && empty($pollinfo['id_poll']))
fatal_lang_error('poll_not_found');
if ($context['is_edit'] && !allowedTo('poll_edit_any'))
isAllowedTo('poll_edit_' . ($user_info['id'] == $pollinfo['id_member_started'] || ($pollinfo['poll_starter'] != 0 && $user_info['id'] == $pollinfo['poll_starter']) ? 'own' : 'any'));
elseif (!$context['is_edit'] && !allowedTo('poll_add_any'))
isAllowedTo('poll_add_' . ($user_info['id'] == $pollinfo['id_member_started'] ? 'own' : 'any'));
$context['can_moderate_poll'] = isset($_REQUEST['add']) ? true : allowedTo('poll_edit_' . ($user_info['id'] == $pollinfo['id_member_started'] || ($pollinfo['poll_starter'] != 0 && $user_info['id'] == $pollinfo['poll_starter']) ? 'own' : 'any'));
require_once($sourcedir . '/Subs-Members.php');
$groupsAllowedVote = groupsAllowedTo('poll_vote', $board);
if (isset($_POST['preview']))
{
$question = $smcFunc['htmlspecialchars']($_POST['question']);
$context['poll'] = array(
'id' => $pollinfo['id_poll'],
'question' => $question,
'hide_results' => empty($_POST['poll_hide']) ? 0 : $_POST['poll_hide'],
'change_vote' => isset($_POST['poll_change_vote']),
'guest_vote' => isset($_POST['poll_guest_vote']),
'guest_vote_allowed' => in_array(-1, $groupsAllowedVote['allowed']),
'max_votes' => empty($_POST['poll_max_votes']) ? '1' : max(1, $_POST['poll_max_votes']),
);
$number = 1;
$last_id = 0;
if ($context['is_edit'])
{
$request = $smcFunc['db_query']('', '
SELECT label, votes, id_choice
FROM {db_prefix}poll_choices
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $pollinfo['id_poll'],
)
);
$context['choices'] = array();
while ($row = $smcFunc['db_fetch_assoc']($request))
{
if ($row['id_choice'] >= $last_id)
$last_id = $row['id_choice'] + 1;
if (!isset($_POST['options'][$row['id_choice']]) || $_POST['options'][$row['id_choice']] == '')
continue;
censorText($row['label']);
$context['choices'][$row['id_choice']] = array(
'id' => $row['id_choice'],
'number' => $number++,
'votes' => $row['votes'],
'label' => $row['label'],
'is_last' => false
);
}
$smcFunc['db_free_result']($request);
}
$totalPostOptions = 0;
foreach ($_POST['options'] as $id => $label)
if ($label != '')
$totalPostOptions++;
$count = 1;
foreach ($_POST['options'] as $id => $label)
{
$label = $smcFunc['htmlspecialchars']($label);
censorText($label);
if (isset($context['choices'][$id]))
$context['choices'][$id]['label'] = $label;
elseif ($label != '')
$context['choices'][] = array(
'id' => $last_id++,
'number' => $number++,
'label' => $label,
'votes' => -1,
'is_last' => $count++ == $totalPostOptions && $totalPostOptions > 1 ? true : false,
);
}
if ($totalPostOptions < 2)
{
if ($totalPostOptions == 0)
$context['choices'][] = array(
'id' => $last_id++,
'number' => $number++,
'label' => '',
'votes' => -1,
'is_last' => false
);
$poll_errors[] = 'poll_few';
}
$context['choices'][] = array(
'id' => $last_id++,
'number' => $number++,
'label' => '',
'votes' => -1,
'is_last' => true
);
$context['last_choice_id'] = $last_id;
if ($context['can_moderate_poll'])
$context['poll']['expiration'] = $_POST['poll_expire'];
if (trim($_POST['question']) == '' && empty($context['poll_error']))
$poll_errors[] = 'no_question';
checkSubmitOnce('free');
if (!empty($poll_errors) && empty($context['poll_error']))
{
loadLanguage('Errors');
$context['poll_error'] = array('messages' => array());
foreach ($poll_errors as $poll_error)
{
$context['poll_error'][$poll_error] = true;
$context['poll_error']['messages'][] = $txt['error_' . $poll_error];
}
}
}
else
{
$context['poll'] = array(
'id' => $pollinfo['id_poll'],
'question' => $pollinfo['question'],
'hide_results' => $pollinfo['hide_results'],
'max_votes' => $pollinfo['max_votes'],
'change_vote' => !empty($pollinfo['change_vote']),
'guest_vote' => !empty($pollinfo['guest_vote']),
'guest_vote_allowed' => in_array(-1, $groupsAllowedVote['allowed']),
);
$context['poll']['expiration'] = empty($pollinfo['expire_time']) || !$context['can_moderate_poll'] ? '' : ceil($pollinfo['expire_time'] <= time() ? -1 : ($pollinfo['expire_time'] - time()) / (3600 * 24));
if ($context['is_edit'])
{
$request = $smcFunc['db_query']('', '
SELECT label, votes, id_choice
FROM {db_prefix}poll_choices
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $pollinfo['id_poll'],
)
);
$context['choices'] = array();
$number = 1;
while ($row = $smcFunc['db_fetch_assoc']($request))
{
censorText($row['label']);
$context['choices'][$row['id_choice']] = array(
'id' => $row['id_choice'],
'number' => $number++,
'votes' => $row['votes'],
'label' => $row['label'],
'is_last' => false
);
}
$smcFunc['db_free_result']($request);
$last_id = max(array_keys($context['choices'])) + 1;
$context['choices'][] = array(
'id' => $last_id,
'number' => $number,
'votes' => -1,
'label' => '',
'is_last' => true
);
$context['last_choice_id'] = $last_id;
}
else
{
$context['poll'] = array(
'id' => 0,
'question' => '',
'hide_results' => 0,
'max_votes' => 1,
'change_vote' => 0,
'guest_vote' => 0,
'guest_vote_allowed' => in_array(-1, $groupsAllowedVote['allowed']),
'expiration' => '',
);
$context['choices'] = array(
array('id' => 0, 'number' => 1, 'votes' => -1, 'label' => '', 'is_last' => false),
array('id' => 1, 'number' => 2, 'votes' => -1, 'label' => '', 'is_last' => false),
array('id' => 2, 'number' => 3, 'votes' => -1, 'label' => '', 'is_last' => false),
array('id' => 3, 'number' => 4, 'votes' => -1, 'label' => '', 'is_last' => false),
array('id' => 4, 'number' => 5, 'votes' => -1, 'label' => '', 'is_last' => true)
);
$context['last_choice_id'] = 4;
}
}
$context['page_title'] = $context['is_edit'] ? $txt['poll_edit'] : $txt['add_poll'];
censorText($pollinfo['subject']);
$context['linktree'][] = array(
'url' => $scripturl . '?topic=' . $topic . '.0',
'name' => $pollinfo['subject'],
);
$context['linktree'][] = array(
'name' => $context['page_title'],
);
checkSubmitOnce('register');
}
function EditPoll2()
{
global $txt, $topic, $board, $context;
global $user_info, $smcFunc, $sourcedir;
if (empty($_POST))
redirectexit('action=editpoll;topic=' . $topic . '.0');
if (checkSession('post', '', false) != '')
$poll_errors[] = 'session_timeout';
if (isset($_POST['preview']))
return EditPoll();
if (empty($topic))
fatal_lang_error('no_access', false);
$isEdit = isset($_REQUEST['add']) ? 0 : 1;
$request = $smcFunc['db_query']('', '
SELECT t.id_member_started, t.id_poll, p.id_member AS poll_starter, p.expire_time
FROM {db_prefix}topics AS t
LEFT JOIN {db_prefix}polls AS p ON (p.id_poll = t.id_poll)
WHERE t.id_topic = {int:current_topic}
LIMIT 1',
array(
'current_topic' => $topic,
)
);
if ($smcFunc['db_num_rows']($request) == 0)
fatal_lang_error('no_board');
$bcinfo = $smcFunc['db_fetch_assoc']($request);
$smcFunc['db_free_result']($request);
if (!$isEdit && !empty($bcinfo['id_poll']))
fatal_lang_error('poll_already_exists');
elseif ($isEdit && empty($bcinfo['id_poll']))
fatal_lang_error('poll_not_found');
if ($isEdit && !allowedTo('poll_edit_any'))
isAllowedTo('poll_edit_' . ($user_info['id'] == $bcinfo['id_member_started'] || ($bcinfo['poll_starter'] != 0 && $user_info['id'] == $bcinfo['poll_starter']) ? 'own' : 'any'));
elseif (!$isEdit && !allowedTo('poll_add_any'))
isAllowedTo('poll_add_' . ($user_info['id'] == $bcinfo['id_member_started'] ? 'own' : 'any'));
$optionCount = 0;
$idCount = 0;
foreach ($_POST['options'] as $k => $option)
{
if (trim($option) != '')
{
$optionCount++;
$idCount = max($idCount, $k);
}
}
if ($optionCount < 2)
$poll_errors[] = 'poll_few';
elseif ($optionCount > 256 || $idCount > 255)
$poll_errors[] = 'poll_many';
if (trim($_POST['question']) == '')
$poll_errors[] = 'no_question';
if (!empty($poll_errors))
{
loadLanguage('Errors');
$_POST['preview'] = true;
$context['poll_error'] = array('messages' => array());
foreach ($poll_errors as $poll_error)
{
$context['poll_error'][$poll_error] = true;
$context['poll_error']['messages'][] = $txt['error_' . $poll_error];
}
return EditPoll();
}
checkSubmitOnce('check');
$_POST['question'] = $smcFunc['htmlspecialchars']($_POST['question']);
$_POST['question'] = $smcFunc['truncate']($_POST['question'], 255);
$_POST['poll_hide'] = (int) $_POST['poll_hide'];
$_POST['poll_expire'] = isset($_POST['poll_expire']) ? (int) $_POST['poll_expire'] : 0;
$_POST['poll_change_vote'] = isset($_POST['poll_change_vote']) ? 1 : 0;
$_POST['poll_guest_vote'] = isset($_POST['poll_guest_vote']) ? 1 : 0;
if ($_POST['poll_guest_vote'])
{
require_once($sourcedir . '/Subs-Members.php');
$allowedGroups = groupsAllowedTo('poll_vote', $board);
if (!in_array(-1, $allowedGroups['allowed']))
$_POST['poll_guest_vote'] = 0;
}
if (!$isEdit || allowedTo('moderate_board'))
{
$_POST['poll_expire'] = $_POST['poll_expire'] > 9999 ? 9999 : ($_POST['poll_expire'] < 0 ? 0 : $_POST['poll_expire']);
if (empty($_POST['poll_expire']) && $_POST['poll_hide'] == 2)
$_POST['poll_hide'] = 1;
elseif (!$isEdit || $_POST['poll_expire'] != ceil($bcinfo['expire_time'] <= time() ? -1 : ($bcinfo['expire_time'] - time()) / (3600 * 24)))
$_POST['poll_expire'] = empty($_POST['poll_expire']) ? '0' : time() + $_POST['poll_expire'] * 3600 * 24;
else
$_POST['poll_expire'] = $bcinfo['expire_time'];
if (empty($_POST['poll_max_votes']) || $_POST['poll_max_votes'] <= 0)
$_POST['poll_max_votes'] = 1;
else
$_POST['poll_max_votes'] = (int) $_POST['poll_max_votes'];
}
if ($isEdit)
{
$smcFunc['db_query']('', '
UPDATE {db_prefix}polls
SET question = {string:question}, change_vote = {int:change_vote},' . (allowedTo('moderate_board') ? '
hide_results = {int:hide_results}, expire_time = {int:expire_time}, max_votes = {int:max_votes},
guest_vote = {int:guest_vote}' : '
hide_results = CASE WHEN expire_time = {int:expire_time_zero} AND {int:hide_results} = 2 THEN 1 ELSE {int:hide_results} END') . '
WHERE id_poll = {int:id_poll}',
array(
'change_vote' => $_POST['poll_change_vote'],
'hide_results' => $_POST['poll_hide'],
'expire_time' => !empty($_POST['poll_expire']) ? $_POST['poll_expire'] : 0,
'max_votes' => !empty($_POST['poll_max_votes']) ? $_POST['poll_max_votes'] : 0,
'guest_vote' => $_POST['poll_guest_vote'],
'expire_time_zero' => 0,
'id_poll' => $bcinfo['id_poll'],
'question' => $_POST['question'],
)
);
}
else
{
$bcinfo['id_poll'] = $smcFunc['db_insert']('',
'{db_prefix}polls',
array(
'question' => 'string-255', 'hide_results' => 'int', 'max_votes' => 'int', 'expire_time' => 'int', 'id_member' => 'int',
'poster_name' => 'string-255', 'change_vote' => 'int', 'guest_vote' => 'int'
),
array(
$_POST['question'], $_POST['poll_hide'], $_POST['poll_max_votes'], $_POST['poll_expire'], $user_info['id'],
$user_info['username'], $_POST['poll_change_vote'], $_POST['poll_guest_vote'],
),
array('id_poll'),
1
);
$smcFunc['db_query']('', '
UPDATE {db_prefix}topics
SET id_poll = {int:id_poll}
WHERE id_topic = {int:current_topic}',
array(
'current_topic' => $topic,
'id_poll' => $bcinfo['id_poll'],
)
);
}
$request = $smcFunc['db_query']('', '
SELECT id_choice
FROM {db_prefix}poll_choices
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $bcinfo['id_poll'],
)
);
$choices = array();
while ($row = $smcFunc['db_fetch_assoc']($request))
$choices[] = $row['id_choice'];
$smcFunc['db_free_result']($request);
$delete_options = array();
foreach ($_POST['options'] as $k => $option)
{
$k = (int) $k;
if (trim($option) == '')
{
if (in_array($k, $choices))
$delete_options[] = $k;
continue;
}
$option = $smcFunc['htmlspecialchars']($option);
if (in_array($k, $choices))
$smcFunc['db_query']('', '
UPDATE {db_prefix}poll_choices
SET label = {string:option_name}
WHERE id_poll = {int:id_poll}
AND id_choice = {int:id_choice}',
array(
'id_poll' => $bcinfo['id_poll'],
'id_choice' => $k,
'option_name' => $option,
)
);
else
$smcFunc['db_insert']('',
'{db_prefix}poll_choices',
array(
'id_poll' => 'int', 'id_choice' => 'int', 'label' => 'string-255', 'votes' => 'int',
),
array(
$bcinfo['id_poll'], $k, $option, 0,
),
array()
);
}
if (!empty($delete_options))
{
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}log_polls
WHERE id_poll = {int:id_poll}
AND id_choice IN ({array_int:delete_options})',
array(
'delete_options' => $delete_options,
'id_poll' => $bcinfo['id_poll'],
)
);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}poll_choices
WHERE id_poll = {int:id_poll}
AND id_choice IN ({array_int:delete_options})',
array(
'delete_options' => $delete_options,
'id_poll' => $bcinfo['id_poll'],
)
);
}
if (isset($_POST['resetVoteCount']))
{
$smcFunc['db_query']('', '
UPDATE {db_prefix}polls
SET num_guest_voters = {int:no_votes}, reset_poll = {int:time}
WHERE id_poll = {int:id_poll}',
array(
'no_votes' => 0,
'id_poll' => $bcinfo['id_poll'],
'time' => time(),
)
);
$smcFunc['db_query']('', '
UPDATE {db_prefix}poll_choices
SET votes = {int:no_votes}
WHERE id_poll = {int:id_poll}',
array(
'no_votes' => 0,
'id_poll' => $bcinfo['id_poll'],
)
);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}log_polls
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $bcinfo['id_poll'],
)
);
}
call_integration_hook('integrate_poll_add_edit', array($bcinfo['id_poll'], $isEdit));
if (isset($_REQUEST['add']))
{
logAction('add_poll', array('topic' => $topic));
}
elseif (isset($_REQUEST['deletevotes']))
{
logAction('reset_poll', array('topic' => $topic));
}
else
{
logAction('edit_poll', array('topic' => $topic));
}
redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
}
function RemovePoll()
{
global $topic, $user_info, $smcFunc;
if (empty($topic))
fatal_lang_error('no_access', false);
checkSession('get');
if (!allowedTo('poll_remove_any'))
{
$request = $smcFunc['db_query']('', '
SELECT t.id_member_started, p.id_member AS poll_starter
FROM {db_prefix}topics AS t
INNER JOIN {db_prefix}polls AS p ON (p.id_poll = t.id_poll)
WHERE t.id_topic = {int:current_topic}
LIMIT 1',
array(
'current_topic' => $topic,
)
);
if ($smcFunc['db_num_rows']($request) == 0)
fatal_lang_error('no_access', false);
list ($topicStarter, $pollStarter) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
isAllowedTo('poll_remove_' . ($topicStarter == $user_info['id'] || ($pollStarter != 0 && $user_info['id'] == $pollStarter) ? 'own' : 'any'));
}
$request = $smcFunc['db_query']('', '
SELECT id_poll
FROM {db_prefix}topics
WHERE id_topic = {int:current_topic}
LIMIT 1',
array(
'current_topic' => $topic,
)
);
list ($pollID) = $smcFunc['db_fetch_row']($request);
$smcFunc['db_free_result']($request);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}log_polls
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $pollID,
)
);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}poll_choices
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $pollID,
)
);
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}polls
WHERE id_poll = {int:id_poll}',
array(
'id_poll' => $pollID,
)
);
$smcFunc['db_query']('', '
UPDATE {db_prefix}topics
SET id_poll = {int:no_poll}
WHERE id_topic = {int:current_topic}',
array(
'current_topic' => $topic,
'no_poll' => 0,
)
);
call_integration_hook('integrate_poll_remove', array($pollID));
logAction('remove_poll', array('topic' => $topic));
redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
}
?>