added reply to backend

master
BodgeMaster 2021-09-05 08:12:42 +02:00
parent 99790ecb21
commit a6a7c3665a
1 changed files with 10 additions and 5 deletions

View File

@ -1,17 +1,22 @@
<?php <?php
%REQUIRE_LOGIN% %REQUIRE_LOGIN%
$title=$_POST['title']; if (isset($_GET['reply_to'])) {
$content=$_POST['content']; $reply_to = $_GET['reply_to'];
if ($title==="" || $content==="") { } else {
$reply_to = -1;
}
if ($_POST['title']==="" || $_POST['content']==="") {
echo "<section><center><h1>Please fill out both the title field and content box.</h1></center></section>"; echo "<section><center><h1>Please fill out both the title field and content box.</h1></center></section>";
} }
else { else {
$error = false; $error = false;
$error_message = ""; $error_message = "";
if (!$error) { if (!$error) {
$statement = $pdo->prepare("INSERT INTO posts (board_id, user_id, content, title) VALUES (:bid, :uid, :content, :title)"); $statement = $pdo->prepare("INSERT INTO posts (board_id, user_id, content, title, reply_to) VALUES (:bid, :uid, :content, :title, :replyto)");
$result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'content'=>$content, 'title'=>$title)); $result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'content'=>$_POST['content'], 'title'=>$_POST['title'], 'replyto'=>$reply_to));
} }
if (!$result) { if (!$result) {
$error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>"; $error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>";