Code Coverage
 
Classes and Traits
Functions and Methods
Lines
Total
0.00% covered (danger)
0.00%
0 / 1
0.00% covered (danger)
0.00%
0 / 1
CRAP
0.00% covered (danger)
0.00%
0 / 125
acp_words
0.00% covered (danger)
0.00%
0 / 1
0.00% covered (danger)
0.00%
0 / 1
380
0.00% covered (danger)
0.00%
0 / 121
 main
0.00% covered (danger)
0.00%
0 / 1
380
0.00% covered (danger)
0.00%
0 / 121
<?php
/**
*
* This file is part of the phpBB Forum Software package.
*
* @copyright (c) phpBB Limited <https://www.phpbb.com>
* @license GNU General Public License, version 2 (GPL-2.0)
*
* For full copyright and license information, please see
* the docs/CREDITS.txt file.
*
*/
/**
* @ignore
*/
if (!defined('IN_PHPBB'))
{
    exit;
}
/**
* @todo [words] check regular expressions for special char replacements (stored specialchared in db)
*/
class acp_words
{
    var $u_action;
    function main($id, $mode)
    {
        global $db, $user, $template, $cache, $phpbb_log, $request, $phpbb_container;
        $user->add_lang('acp/posting');
        // Set up general vars
        $action = $request->variable('action', '');
        $action = (isset($_POST['add'])) ? 'add' : ((isset($_POST['save'])) ? 'save' : $action);
        $s_hidden_fields = '';
        $word_info = array();
        $this->tpl_name = 'acp_words';
        $this->page_title = 'ACP_WORDS';
        $form_name = 'acp_words';
        add_form_key($form_name);
        switch ($action)
        {
            case 'edit':
                $word_id = $request->variable('id', 0);
                if (!$word_id)
                {
                    trigger_error($user->lang['NO_WORD'] . adm_back_link($this->u_action), E_USER_WARNING);
                }
                $sql = 'SELECT *
                    FROM ' . WORDS_TABLE . "
                    WHERE word_id = $word_id";
                $result = $db->sql_query($sql);
                $word_info = $db->sql_fetchrow($result);
                $db->sql_freeresult($result);
                $s_hidden_fields .= '<input type="hidden" name="id" value="' . $word_id . '" />';
            case 'add':
                $template->assign_vars(array(
                    'S_EDIT_WORD'        => true,
                    'U_ACTION'            => $this->u_action,
                    'U_BACK'            => $this->u_action,
                    'WORD'                => (isset($word_info['word'])) ? $word_info['word'] : '',
                    'REPLACEMENT'        => (isset($word_info['replacement'])) ? $word_info['replacement'] : '',
                    'S_HIDDEN_FIELDS'    => $s_hidden_fields)
                );
                return;
            break;
            case 'save':
                if (!check_form_key($form_name))
                {
                    trigger_error($user->lang['FORM_INVALID']. adm_back_link($this->u_action), E_USER_WARNING);
                }
                $word_id        = $request->variable('id', 0);
                $word            = $request->variable('word', '', true);
                $replacement    = $request->variable('replacement', '', true);
                if ($word === '' || $replacement === '')
                {
                    trigger_error($user->lang['ENTER_WORD'] . adm_back_link($this->u_action), E_USER_WARNING);
                }
                // Replace multiple consecutive asterisks with single one as those are not needed
                $word = preg_replace('#\*{2,}#', '*', $word);
                $sql_ary = array(
                    'word'            => $word,
                    'replacement'    => $replacement
                );
                if ($word_id)
                {
                    $db->sql_query('UPDATE ' . WORDS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $sql_ary) . ' WHERE word_id = ' . $word_id);
                }
                else
                {
                    $db->sql_query('INSERT INTO ' . WORDS_TABLE . ' ' . $db->sql_build_array('INSERT', $sql_ary));
                }
                $cache->destroy('_word_censors');
                $phpbb_container->get('text_formatter.cache')->invalidate();
                $log_action = ($word_id) ? 'LOG_WORD_EDIT' : 'LOG_WORD_ADD';
                $phpbb_log->add('admin', $user->data['user_id'], $user->ip, $log_action, false, array($word));
                $message = ($word_id) ? $user->lang['WORD_UPDATED'] : $user->lang['WORD_ADDED'];
                trigger_error($message . adm_back_link($this->u_action));
            break;
            case 'delete':
                $word_id = $request->variable('id', 0);
                if (!$word_id)
                {
                    trigger_error($user->lang['NO_WORD'] . adm_back_link($this->u_action), E_USER_WARNING);
                }
                if (confirm_box(true))
                {
                    $sql = 'SELECT word
                        FROM ' . WORDS_TABLE . "
                        WHERE word_id = $word_id";
                    $result = $db->sql_query($sql);
                    $deleted_word = $db->sql_fetchfield('word');
                    $db->sql_freeresult($result);
                    $sql = 'DELETE FROM ' . WORDS_TABLE . "
                        WHERE word_id = $word_id";
                    $db->sql_query($sql);
                    $cache->destroy('_word_censors');
                    $phpbb_container->get('text_formatter.cache')->invalidate();
                    $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_WORD_DELETE', false, array($deleted_word));
                    trigger_error($user->lang['WORD_REMOVED'] . adm_back_link($this->u_action));
                }
                else
                {
                    confirm_box(false, $user->lang['CONFIRM_OPERATION'], build_hidden_fields(array(
                        'i'            => $id,
                        'mode'        => $mode,
                        'id'        => $word_id,
                        'action'    => 'delete',
                    )));
                }
            break;
        }
        $template->assign_vars(array(
            'U_ACTION'            => $this->u_action,
            'S_HIDDEN_FIELDS'    => $s_hidden_fields)
        );
        $sql = 'SELECT *
            FROM ' . WORDS_TABLE . '
            ORDER BY word';
        $result = $db->sql_query($sql);
        while ($row = $db->sql_fetchrow($result))
        {
            $template->assign_block_vars('words', array(
                'WORD'            => $row['word'],
                'REPLACEMENT'    => $row['replacement'],
                'U_EDIT'        => $this->u_action . '&amp;action=edit&amp;id=' . $row['word_id'],
                'U_DELETE'        => $this->u_action . '&amp;action=delete&amp;id=' . $row['word_id'])
            );
        }
        $db->sql_freeresult($result);
    }
}