SnowCode
/
threadr.lostcave.ddnss.de
forked from root/threadr.lostcave.ddnss.de
1
0
Fork 0
Code Issues 1 Pull Requests Projects Releases Wiki Activity

added reply to backend

master
BodgeMaster 2021-09-05 08:12:42 +02:00
parent 99790ecb21
commit a6a7c3665a
1 changed files with 10 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
threadr/board/submit.php
View File

@ -1,17 +1,22 @@
<?php
%REQUIRE_LOGIN%
$title=$_POST['title'];
$content=$_POST['content'];
if ($title==="" || $content==="") {
if (isset($_GET['reply_to'])) {
$reply_to = $_GET['reply_to'];
} else {
$reply_to = -1;
}
if ($_POST['title']==="" || $_POST['content']==="") {
echo "<section><center><h1>Please fill out both the title field and content box.</h1></center></section>";
}
else {
$error = false;
$error_message = "";
if (!$error) {
$statement = $pdo->prepare("INSERT INTO posts (board_id, user_id, content, title) VALUES (:bid, :uid, :content, :title)");
$result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'content'=>$content, 'title'=>$title));
$statement = $pdo->prepare("INSERT INTO posts (board_id, user_id, content, title, reply_to) VALUES (:bid, :uid, :content, :title, :replyto)");
$result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'content'=>$_POST['content'], 'title'=>$_POST['title'], 'replyto'=>$reply_to));
}
if (!$result) {
$error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>";