$post_content
$post_creator_name
prepare("SELECT * FROM posts WHERE board_id=:bid ORDER BY post_time asc");
$statement->execute(array("bid"=>$id));
foreach($statement->fetchAll() as $ROW) {
// get post creator
$statement = $pdo->prepare("SELECT * FROM users WHERE id=:uid");
$statement->execute(array("uid"=>$ROW[user_id]));
$post_creator = $statement->fetch();
// get post content and make sure it doesn't mess with the website
$post_id = $ROW['id'];
$post_title = htmlspecialchars($ROW['title']);
$post_creator_name = htmlspecialchars($post_creator['name']);
$post_time = htmlspecialchars($ROW['post_time']);
$post_content = htmlspecialchars($ROW['content']);
// add line breaks to post content, to be replaced with proper makrdown support in the future (see #44)
$newlines = array("\r\n", "\n\r", "\r", "\n"); // two-character newlines first to prevent placing two line breaks instead of one
$post_content = str_replace($newlines, "
", $post_content);
// if this is a reply, build reference
$reply_to = $ROW['reply_to'];
if ($reply_to > -1) {
$reply_reference = "
This is a reply to this message.
"; } else { $reply_reference = ""; } // determine whether to put a reply button if ($login) { $reply_button = ""; } else { $reply_button = "" } echo "$post_creator_name
$post_content