Code Coverage for /data/phpBB/includes/mcp/mcp

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	0.00% covered (danger)	0.00%	0 / 3	CRAP	0.00% covered (danger)	0.00%	0 / 644
close_report				0.00% covered (danger)	0.00%	0 / 1	2162.00	0.00% covered (danger)	0.00%	0 / 243
mcp_reports	0.00% covered (danger)	0.00%	0 / 1	0.00% covered (danger)	0.00%	0 / 2	5112.00	0.00% covered (danger)	0.00%	0 / 397
__construct				0.00% covered (danger)	0.00%	0 / 1	2.00	0.00% covered (danger)	0.00%	0 / 3
main				0.00% covered (danger)	0.00%	0 / 1	4970.00	0.00% covered (danger)	0.00%	0 / 394

1	<?php
2	/**
3	*
4	* This file is part of the phpBB Forum Software package.
5	*
6	* @copyright (c) phpBB Limited <https://www.phpbb.com>
7	* @license GNU General Public License, version 2 (GPL-2.0)
8	*
9	* For full copyright and license information, please see
10	* the docs/CREDITS.txt file.
11	*
12	*/
13
14	/**
15	* @ignore
16	*/
17	if (!defined('IN_PHPBB'))
18	{
19	exit;
20	}
21
22	/**
23	* mcp_reports
24	* Handling the reports queue
25	*/
26	class mcp_reports
27	{
28	var $p_master;
29	var $u_action;
30
31	function __construct($p_master)
32	{
33	$this->p_master = $p_master;
34	}
35
36	function main($id, $mode)
37	{
38	global $auth, $db, $user, $template, $request;
39	global $config, $phpbb_root_path, $phpEx, $action, $phpbb_container, $phpbb_dispatcher;
40
41	include_once($phpbb_root_path . 'includes/functions_posting.' . $phpEx);
42
43	$forum_id = $request->variable('f', 0);
44	$start = $request->variable('start', 0);
45
46	$this->page_title = 'MCP_REPORTS';
47
48	switch ($action)
49	{
50	case 'close':
51	case 'delete':
52	include_once($phpbb_root_path . 'includes/functions_messenger.' . $phpEx);
53
54	$report_id_list = $request->variable('report_id_list', array(0));
55
56	if (!count($report_id_list))
57	{
58	trigger_error('NO_REPORT_SELECTED');
59	}
60
61	close_report($report_id_list, $mode, $action);
62
63	break;
64	}
65
66	switch ($mode)
67	{
68	case 'report_details':
69
70	$user->add_lang(array('posting', 'viewforum', 'viewtopic'));
71
72	$post_id = $request->variable('p', 0);
73
74	// closed reports are accessed by report id
75	$report_id = $request->variable('r', 0);
76
77	$sql_ary = array(
78	'SELECT' => 'r.post_id, r.user_id, r.report_id, r.report_closed, report_time, r.report_text, r.reported_post_text, r.reported_post_uid, r.reported_post_bitfield, r.reported_post_enable_magic_url, r.reported_post_enable_smilies, r.reported_post_enable_bbcode, rr.reason_title, rr.reason_description, u.username, u.username_clean, u.user_colour',
79
80	'FROM' => array(
81	REPORTS_TABLE => 'r',
82	REPORTS_REASONS_TABLE => 'rr',
83	USERS_TABLE => 'u',
84	),
85
86	'WHERE' => (($report_id) ? 'r.report_id = ' . $report_id : "r.post_id = $post_id") . '
87	AND rr.reason_id = r.reason_id
88	AND r.user_id = u.user_id
89	AND r.pm_id = 0',
90
91	'ORDER_BY' => 'report_closed ASC',
92	);
93
94	/**
95	* Allow changing the query to obtain the user-submitted report.
96	*
97	* @event core.mcp_reports_report_details_query_before
98	* @var array sql_ary The array in the format of the query builder with the query
99	* @var int forum_id The forum_id, the number in the f GET parameter
100	* @var int post_id The post_id of the report being viewed (if 0, it is meaningless)
101	* @var int report_id The report_id of the report being viewed
102	* @since 3.1.5-RC1
103	*/
104	$vars = array(
105	'sql_ary',
106	'forum_id',
107	'post_id',
108	'report_id',
109	);
110	extract($phpbb_dispatcher->trigger_event('core.mcp_reports_report_details_query_before', compact($vars)));
111
112	$sql = $db->sql_build_query('SELECT', $sql_ary);
113	$result = $db->sql_query_limit($sql, 1);
114	$report = $db->sql_fetchrow($result);
115	$db->sql_freeresult($result);
116
117	/**
118	* Allow changing the data obtained from the user-submitted report.
119	*
120	* @event core.mcp_reports_report_details_query_after
121	* @var array sql_ary The array in the format of the query builder with the query that had been executted
122	* @var int forum_id The forum_id, the number in the f GET parameter
123	* @var int post_id The post_id of the report being viewed (if 0, it is meaningless)
124	* @var int report_id The report_id of the report being viewed
125	* @var array report The query's resulting row.
126	* @since 3.1.5-RC1
127	*/
128	$vars = array(
129	'sql_ary',
130	'forum_id',
131	'post_id',
132	'report_id',
133	'report',
134	);
135	extract($phpbb_dispatcher->trigger_event('core.mcp_reports_report_details_query_after', compact($vars)));
136
137	if (!$report)
138	{
139	trigger_error('NO_REPORT');
140	}
141
142	/* @var $phpbb_notifications \phpbb\notification\manager */
143	$phpbb_notifications = $phpbb_container->get('notification_manager');
144
145	$phpbb_notifications->mark_notifications('report_post', $post_id, $user->data['user_id']);
146
147	if (!$report_id && $report['report_closed'])
148	{
149	trigger_error('REPORT_CLOSED');
150	}
151
152	$post_id = $report['post_id'];
153	$report_id = $report['report_id'];
154
155	$parse_post_flags = $report['reported_post_enable_bbcode'] ? OPTION_FLAG_BBCODE : 0;
156	$parse_post_flags += $report['reported_post_enable_smilies'] ? OPTION_FLAG_SMILIES : 0;
157	$parse_post_flags += $report['reported_post_enable_magic_url'] ? OPTION_FLAG_LINKS : 0;
158
159	$post_info = phpbb_get_post_data(array($post_id), 'm_report', true);
160
161	if (!count($post_info))
162	{
163	trigger_error('NO_REPORT_SELECTED');
164	}
165
166	$post_info = $post_info[$post_id];
167
168	$reason = array('title' => $report['reason_title'], 'description' => $report['reason_description']);
169	if (isset($user->lang['report_reasons']['TITLE'][strtoupper($reason['title'])]) && isset($user->lang['report_reasons']['DESCRIPTION'][strtoupper($reason['title'])]))
170	{
171	$reason['description'] = $user->lang['report_reasons']['DESCRIPTION'][strtoupper($reason['title'])];
172	$reason['title'] = $user->lang['report_reasons']['TITLE'][strtoupper($reason['title'])];
173	}
174
175	if (topic_review($post_info['topic_id'], $post_info['forum_id'], 'topic_review', 0, false))
176	{
177	$template->assign_vars(array(
178	'S_TOPIC_REVIEW' => true,
179	'S_BBCODE_ALLOWED' => $post_info['enable_bbcode'],
180	'TOPIC_TITLE' => $post_info['topic_title'],
181	'REPORTED_POST_ID' => $post_id,
182	));
183	}
184
185	$attachments = array();
186	// Get topic tracking info
187	if ($config['load_db_lastread'])
188	{
189	$tmp_topic_data = array($post_info['topic_id'] => $post_info);
190	$topic_tracking_info = get_topic_tracking($post_info['forum_id'], $post_info['topic_id'], $tmp_topic_data, array($post_info['forum_id'] => $post_info['forum_mark_time']));
191	unset($tmp_topic_data);
192	}
193	else
194	{
195	$topic_tracking_info = get_complete_topic_tracking($post_info['forum_id'], $post_info['topic_id']);
196	}
197
198	$post_unread = (isset($topic_tracking_info[$post_info['topic_id']]) && $post_info['post_time'] > $topic_tracking_info[$post_info['topic_id']]) ? true : false;
199	$message = generate_text_for_display(
200	$report['reported_post_text'],
201	$report['reported_post_uid'],
202	$report['reported_post_bitfield'],
203	$parse_post_flags,
204	false
205	);
206
207	$report['report_text'] = make_clickable(bbcode_nl2br($report['report_text']));
208
209	if ($post_info['post_attachment'] && $auth->acl_get('u_download') && $auth->acl_get('f_download', $post_info['forum_id']))
210	{
211	$sql = 'SELECT *
212	FROM ' . ATTACHMENTS_TABLE . '
213	WHERE post_msg_id = ' . $post_id . '
214	AND in_message = 0
215	AND filetime <= ' . (int) $report['report_time'] . '
216	ORDER BY filetime DESC';
217	$result = $db->sql_query($sql);
218
219	while ($row = $db->sql_fetchrow($result))
220	{
221	$attachments[] = $row;
222	}
223	$db->sql_freeresult($result);
224
225	if (count($attachments))
226	{
227	$update_count = array();
228	parse_attachments($post_info['forum_id'], $message, $attachments, $update_count);
229	}
230
231	// Display not already displayed Attachments for this post, we already parsed them. ;)
232	if (!empty($attachments))
233	{
234	$template->assign_var('S_HAS_ATTACHMENTS', true);
235
236	foreach ($attachments as $attachment)
237	{
238	$template->assign_block_vars('attachment', array(
239	'DISPLAY_ATTACHMENT' => $attachment)
240	);
241	}
242	}
243	}
244
245	// parse signature
246	$parse_flags = ($post_info['user_sig_bbcode_bitfield'] ? OPTION_FLAG_BBCODE : 0) \| OPTION_FLAG_SMILIES;
247	$post_info['user_sig'] = generate_text_for_display($post_info['user_sig'], $post_info['user_sig_bbcode_uid'], $post_info['user_sig_bbcode_bitfield'], $parse_flags, true);
248
249	$topic_id = (int) $post_info['topic_id'];
250
251	// So it can be sent through the event below.
252	$report_template = array(
253	'S_MCP_REPORT' => true,
254	'S_CLOSE_ACTION' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=reports&mode=report_details&p=' . $post_id),
255	'S_CAN_VIEWIP' => $auth->acl_get('m_info', $post_info['forum_id']),
256	'S_POST_REPORTED' => $post_info['post_reported'],
257	'S_POST_UNAPPROVED' => $post_info['post_visibility'] == ITEM_UNAPPROVED \|\| $post_info['post_visibility'] == ITEM_REAPPROVE,
258	'S_POST_LOCKED' => $post_info['post_edit_locked'],
259	'S_REPORT_CLOSED' => $report['report_closed'],
260	'S_USER_NOTES' => true,
261
262	'U_EDIT' => ($auth->acl_get('m_edit', $post_info['forum_id'])) ? append_sid("{$phpbb_root_path}posting.$phpEx", "mode=edit&p={$post_info['post_id']}") : '',
263	'U_MCP_APPROVE' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=queue&mode=approve_details&p=' . $post_id),
264	'U_MCP_REPORT' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=reports&mode=report_details&p=' . $post_id),
265	'U_MCP_REPORTER_NOTES' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=notes&mode=user_notes&u=' . $report['user_id']),
266	'U_MCP_USER_NOTES' => append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=notes&mode=user_notes&u=' . $post_info['user_id']),
267	'U_MCP_WARN_REPORTER' => ($auth->acl_get('m_warn')) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=warn&mode=warn_user&u=' . $report['user_id']) : '',
268	'U_MCP_WARN_USER' => ($auth->acl_get('m_warn')) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=warn&mode=warn_user&u=' . $post_info['user_id']) : '',
269	'U_VIEW_FORUM' => append_sid("{$phpbb_root_path}viewforum.$phpEx", 'f=' . $post_info['forum_id']),
270	'U_VIEW_POST' => append_sid("{$phpbb_root_path}viewtopic.$phpEx", 'p=' . $post_info['post_id'] . '#p' . $post_info['post_id']),
271	'U_VIEW_TOPIC' => append_sid("{$phpbb_root_path}viewtopic.$phpEx", 't=' . $post_info['topic_id']),
272
273	'EDIT_IMG' => $user->img('icon_post_edit', $user->lang['EDIT_POST']),
274	'MINI_POST_IMG' => ($post_unread) ? $user->img('icon_post_target_unread', 'UNREAD_POST') : $user->img('icon_post_target', 'POST'),
275	'UNAPPROVED_IMG' => $user->img('icon_topic_unapproved', $user->lang['POST_UNAPPROVED']),
276
277	'RETURN_REPORTS' => sprintf($user->lang['RETURN_REPORTS'], '<a href="' . append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=reports' . (($post_info['post_reported']) ? '&mode=reports' : '&mode=reports_closed') . '&start=' . $start . '&f=' . $post_info['forum_id']) . '">', '</a>'),
278	'REPORTED_IMG' => $user->img('icon_topic_reported', $user->lang['POST_REPORTED']),
279	'REPORT_DATE' => $user->format_date($report['report_time']),
280	'REPORT_ID' => $report_id,
281	'REPORT_REASON_TITLE' => $reason['title'],
282	'REPORT_REASON_DESCRIPTION' => $reason['description'],
283	'REPORT_TEXT' => $report['report_text'],
284
285	'POST_AUTHOR_FULL' => get_username_string('full', $post_info['user_id'], $post_info['username'], $post_info['user_colour'], $post_info['post_username']),
286	'POST_AUTHOR_COLOUR' => get_username_string('colour', $post_info['user_id'], $post_info['username'], $post_info['user_colour'], $post_info['post_username']),
287	'POST_AUTHOR' => get_username_string('username', $post_info['user_id'], $post_info['username'], $post_info['user_colour'], $post_info['post_username']),
288	'U_POST_AUTHOR' => get_username_string('profile', $post_info['user_id'], $post_info['username'], $post_info['user_colour'], $post_info['post_username']),
289
290	'REPORTER_FULL' => get_username_string('full', $report['user_id'], $report['username'], $report['user_colour']),
291	'REPORTER_COLOUR' => get_username_string('colour', $report['user_id'], $report['username'], $report['user_colour']),
292	'REPORTER_NAME' => get_username_string('username', $report['user_id'], $report['username'], $report['user_colour']),
293	'U_VIEW_REPORTER_PROFILE' => get_username_string('profile', $report['user_id'], $report['username'], $report['user_colour']),
294
295	'POST_PREVIEW' => $message,
296	'POST_SUBJECT' => ($post_info['post_subject']) ? $post_info['post_subject'] : $user->lang['NO_SUBJECT'],
297	'POST_DATE' => $user->format_date($post_info['post_time']),
298	'POST_IP' => $post_info['poster_ip'],
299	'POST_IPADDR' => ($auth->acl_get('m_info', $post_info['forum_id']) && $request->variable('lookup', '')) ? @gethostbyaddr($post_info['poster_ip']) : '',
300	'POST_ID' => $post_info['post_id'],
301	'SIGNATURE' => $post_info['user_sig'],
302
303	'U_LOOKUP_IP' => ($auth->acl_get('m_info', $post_info['forum_id'])) ? $this->u_action . '&r=' . $report_id . '&p=' . $post_id . '&lookup=' . $post_info['poster_ip'] . '#ip' : '',
304	);
305
306	/**
307	* Event to add/modify MCP report details template data.
308	*
309	* @event core.mcp_report_template_data
310	* @var int forum_id The forum_id, the number in the f GET parameter
311	* @var int topic_id The topic_id of the report being viewed
312	* @var int post_id The post_id of the report being viewed (if 0, it is meaningless)
313	* @var int report_id The report_id of the report being viewed
314	* @var array report Array with the report data
315	* @var array report_template Array with the report template data
316	* @var array post_info Array with the reported post data
317	* @since 3.2.5-RC1
318	*/
319	$vars = array(
320	'forum_id',
321	'topic_id',
322	'post_id',
323	'report_id',
324	'report',
325	'report_template',
326	'post_info',
327	);
328	extract($phpbb_dispatcher->trigger_event('core.mcp_report_template_data', compact($vars)));
329
330	$template->assign_vars($report_template);
331
332	$this->tpl_name = 'mcp_post';
333
334	break;
335
336	case 'reports':
337	case 'reports_closed':
338	$topic_id = $request->variable('t', 0);
339
340	if ($request->is_set_post('t'))
341	{
342	$topic_id = $request->variable('t', 0, false, \phpbb\request\request_interface::POST);
343	}
344
345	$forum_info = array();
346	$forum_list_reports = get_forum_list('m_report', false, true);
347	$forum_list_read = array_flip(get_forum_list('f_read', true, true)); // Flipped so we can isset() the forum IDs
348
349	// Remove forums we cannot read
350	foreach ($forum_list_reports as $k => $forum_data)
351	{
352	if (!isset($forum_list_read[$forum_data['forum_id']]))
353	{
354	unset($forum_list_reports[$k]);
355	}
356	}
357	unset($forum_list_read);
358
359	if ($topic_id)
360	{
361	$topic_info = phpbb_get_topic_data(array($topic_id));
362
363	if (!count($topic_info))
364	{
365	trigger_error('TOPIC_NOT_EXIST');
366	}
367
368	if ($forum_id != $topic_info[$topic_id]['forum_id'])
369	{
370	$topic_id = 0;
371	}
372	else
373	{
374	$topic_info = $topic_info[$topic_id];
375	$forum_id = (int) $topic_info['forum_id'];
376	}
377	}
378
379	$forum_list = array();
380
381	if (!$forum_id)
382	{
383	foreach ($forum_list_reports as $row)
384	{
385	$forum_list[] = $row['forum_id'];
386	}
387
388	if (!count($forum_list))
389	{
390	trigger_error('NOT_MODERATOR');
391	}
392
393	$sql = 'SELECT SUM(forum_topics_approved) as sum_forum_topics
394	FROM ' . FORUMS_TABLE . '
395	WHERE ' . $db->sql_in_set('forum_id', $forum_list);
396	$result = $db->sql_query($sql);
397	$forum_info['forum_topics_approved'] = (int) $db->sql_fetchfield('sum_forum_topics');
398	$db->sql_freeresult($result);
399	}
400	else
401	{
402	$forum_info = phpbb_get_forum_data(array($forum_id), 'm_report');
403
404	if (!count($forum_info))
405	{
406	trigger_error('NOT_MODERATOR');
407	}
408
409	$forum_list = array($forum_id);
410	}
411
412	/* @var $pagination \phpbb\pagination */
413	$pagination = $phpbb_container->get('pagination');
414	$forum_list[] = 0;
415	$forum_data = array();
416
417	$forum_options = '<option value="0"' . (($forum_id == 0) ? ' selected="selected"' : '') . '>' . $user->lang['ALL_FORUMS'] . '</option>';
418	foreach ($forum_list_reports as $row)
419	{
420	$forum_options .= '<option value="' . $row['forum_id'] . '"' . (($forum_id == $row['forum_id']) ? ' selected="selected"' : '') . '>' . str_repeat('   ', $row['padding']) . truncate_string($row['forum_name'], 30, 255, false, $user->lang('ELLIPSIS')) . '</option>';
421	$forum_data[$row['forum_id']] = $row;
422	}
423	unset($forum_list_reports);
424
425	$sort_days = $total = 0;
426	$sort_key = $sort_dir = '';
427	$sort_by_sql = $sort_order_sql = array();
428	phpbb_mcp_sorting($mode, $sort_days, $sort_key, $sort_dir, $sort_by_sql, $sort_order_sql, $total, $forum_id, $topic_id);
429
430	$limit_time_sql = ($sort_days) ? 'AND r.report_time >= ' . (time() - ($sort_days * 86400)) : '';
431
432	if ($mode == 'reports')
433	{
434	$report_state = 'AND p.post_reported = 1 AND r.report_closed = 0';
435	}
436	else
437	{
438	$report_state = 'AND r.report_closed = 1';
439	}
440
441	$sql = 'SELECT r.report_id
442	FROM ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . REPORTS_TABLE . ' r ' . (($sort_order_sql[0] == 'u') ? ', ' . USERS_TABLE . ' u' : '') . (($sort_order_sql[0] == 'r') ? ', ' . USERS_TABLE . ' ru' : '') . '
443	WHERE ' . $db->sql_in_set('p.forum_id', $forum_list) . "
444	$report_state
445	AND r.post_id = p.post_id
446	" . (($sort_order_sql[0] == 'u') ? 'AND u.user_id = p.poster_id' : '') . '
447	' . (($sort_order_sql[0] == 'r') ? 'AND ru.user_id = r.user_id' : '') . '
448	' . (($topic_id) ? 'AND p.topic_id = ' . $topic_id : '') . "
449	AND t.topic_id = p.topic_id
450	AND r.pm_id = 0
451	$limit_time_sql
452	ORDER BY $sort_order_sql";
453
454	/**
455	* Alter sql query to get report id of all reports for requested forum and topic or just forum
456	*
457	* @event core.mcp_reports_get_reports_query_before
458	* @var string sql String with the query to be executed
459	* @var array forum_list List of forums that contain the posts
460	* @var int topic_id topic_id in the page request
461	* @var string limit_time_sql String with the SQL code to limit the time interval of the post (Note: May be empty string)
462	* @var string sort_order_sql String with the ORDER BY SQL code used in this query
463	* @since 3.1.0-RC4
464	*/
465	$vars = array(
466	'sql',
467	'forum_list',
468	'topic_id',
469	'limit_time_sql',
470	'sort_order_sql',
471	);
472	extract($phpbb_dispatcher->trigger_event('core.mcp_reports_get_reports_query_before', compact($vars)));
473
474	$result = $db->sql_query_limit($sql, $config['topics_per_page'], $start);
475
476	$i = 0;
477	$report_ids = array();
478	while ($row = $db->sql_fetchrow($result))
479	{
480	$report_ids[] = $row['report_id'];
481	$row_num[$row['report_id']] = $i++;
482	}
483	$db->sql_freeresult($result);
484
485	if (count($report_ids))
486	{
487	$sql = 'SELECT t.forum_id, t.topic_id, t.topic_title, p.post_id, p.post_subject, p.post_username, p.poster_id, p.post_time, p.post_attachment, u.username, u.username_clean, u.user_colour, r.user_id as reporter_id, ru.username as reporter_name, ru.user_colour as reporter_colour, r.report_time, r.report_id
488	FROM ' . REPORTS_TABLE . ' r, ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . USERS_TABLE . ' u, ' . USERS_TABLE . ' ru
489	WHERE ' . $db->sql_in_set('r.report_id', $report_ids) . '
490	AND t.topic_id = p.topic_id
491	AND r.post_id = p.post_id
492	AND u.user_id = p.poster_id
493	AND ru.user_id = r.user_id
494	AND r.pm_id = 0
495	ORDER BY ' . $sort_order_sql;
496
497	/**
498	* Alter sql query to get reports data for requested forum and topic or just forum
499	*
500	* @event core.mcp_reports_modify_reports_data_sql
501	* @var string sql String with the query to be executed
502	* @var array forum_list List of forums that contain the posts
503	* @var int topic_id topic_id in the page request
504	* @var string sort_order_sql String with the ORDER BY SQL code used in this query
505	* @since 3.3.5-RC1
506	*/
507	$vars = [
508	'sql',
509	'forum_list',
510	'topic_id',
511	'sort_order_sql',
512	];
513	extract($phpbb_dispatcher->trigger_event('core.mcp_reports_modify_reports_data_sql', compact($vars)));
514
515	$result = $db->sql_query($sql);
516
517	while ($row = $db->sql_fetchrow($result))
518	{
519	$post_row = [
520	'U_VIEWFORUM' => append_sid("{$phpbb_root_path}viewforum.$phpEx", 'f=' . $row['forum_id']),
521	'U_VIEWPOST' => append_sid("{$phpbb_root_path}viewtopic.$phpEx", 'p=' . $row['post_id']) . '#p' . $row['post_id'],
522	'U_VIEW_DETAILS' => append_sid("{$phpbb_root_path}mcp.$phpEx", "i=reports&start=$start&mode=report_details&r={$row['report_id']}"),
523
524	'POST_AUTHOR_FULL' => get_username_string('full', $row['poster_id'], $row['username'], $row['user_colour'], $row['post_username']),
525	'POST_AUTHOR_COLOUR' => get_username_string('colour', $row['poster_id'], $row['username'], $row['user_colour'], $row['post_username']),
526	'POST_AUTHOR' => get_username_string('username', $row['poster_id'], $row['username'], $row['user_colour'], $row['post_username']),
527	'U_POST_AUTHOR' => get_username_string('profile', $row['poster_id'], $row['username'], $row['user_colour'], $row['post_username']),
528
529	'REPORTER_FULL' => get_username_string('full', $row['reporter_id'], $row['reporter_name'], $row['reporter_colour']),
530	'REPORTER_COLOUR' => get_username_string('colour', $row['reporter_id'], $row['reporter_name'], $row['reporter_colour']),
531	'REPORTER' => get_username_string('username', $row['reporter_id'], $row['reporter_name'], $row['reporter_colour']),
532	'U_REPORTER' => get_username_string('profile', $row['reporter_id'], $row['reporter_name'], $row['reporter_colour']),
533
534	'FORUM_NAME' => $forum_data[$row['forum_id']]['forum_name'],
535	'POST_ID' => $row['post_id'],
536	'POST_SUBJECT' => ($row['post_subject']) ? $row['post_subject'] : $user->lang['NO_SUBJECT'],
537	'POST_TIME' => $user->format_date($row['post_time']),
538	'REPORT_ID' => $row['report_id'],
539	'REPORT_TIME' => $user->format_date($row['report_time']),
540	'TOPIC_TITLE' => $row['topic_title'],
541	'ATTACH_ICON_IMG' => ($auth->acl_get('u_download') && $auth->acl_get('f_download', $row['forum_id']) && $row['post_attachment']) ? $user->img('icon_topic_attach', $user->lang['TOTAL_ATTACHMENTS']) : '',
542	];
543
544	/**
545	* Alter posts template block for MCP reports
546	*
547	* @event core.mcp_reports_modify_post_row
548	* @var string mode Post report mode
549	* @var array forum_data Array containing forum data
550	* @var array post_row Template block array of the post
551	* @var array row Array with original post and report data
552	* @var int start Start item of this page
553	* @var int topic_id topic_id in the page request
554	* @since 3.3.5-RC1
555	*/
556	$vars = [
557	'mode',
558	'forum_data',
559	'post_row',
560	'row',
561	'start',
562	'topic_id',
563	];
564	extract($phpbb_dispatcher->trigger_event('core.mcp_reports_modify_post_row', compact($vars)));
565
566	$template->assign_block_vars('postrow', $post_row);
567	}
568	$db->sql_freeresult($result);
569	unset($report_ids, $row);
570	}
571
572	$base_url = $this->u_action . "&t=$topic_id&st=$sort_days&sk=$sort_key&sd=$sort_dir";
573	$pagination->generate_template_pagination($base_url, 'pagination', 'start', $total, $config['topics_per_page'], $start);
574
575	// Now display the page
576	$template->assign_vars(array(
577	'L_EXPLAIN' => ($mode == 'reports') ? $user->lang['MCP_REPORTS_OPEN_EXPLAIN'] : $user->lang['MCP_REPORTS_CLOSED_EXPLAIN'],
578	'L_TITLE' => ($mode == 'reports') ? $user->lang['MCP_REPORTS_OPEN'] : $user->lang['MCP_REPORTS_CLOSED'],
579	'L_ONLY_TOPIC' => ($topic_id) ? sprintf($user->lang['ONLY_TOPIC'], $topic_info['topic_title']) : '',
580
581	'S_MCP_ACTION' => $this->u_action,
582	'S_FORUM_OPTIONS' => $forum_options,
583	'S_CLOSED' => ($mode == 'reports_closed') ? true : false,
584
585	'TOPIC_ID' => $topic_id,
586	'TOTAL' => $total,
587	'TOTAL_REPORTS' => $user->lang('LIST_REPORTS', (int) $total),
588	)
589	);
590
591	$this->tpl_name = 'mcp_reports';
592	break;
593	}
594	}
595	}
596
597	/**
598	* Closes a report
599	*/
600	function close_report($report_id_list, $mode, $action, $pm = false)
601	{
602	global $db, $user, $auth, $phpbb_log, $request;
603	global $phpEx, $phpbb_root_path, $phpbb_container;
604
605	$pm_where = ($pm) ? ' AND r.post_id = 0 ' : ' AND r.pm_id = 0 ';
606	$id_column = ($pm) ? 'pm_id' : 'post_id';
607	$module = ($pm) ? 'pm_reports' : 'reports';
608	$pm_prefix = ($pm) ? 'PM_' : '';
609
610	$sql = "SELECT r.$id_column
611	FROM " . REPORTS_TABLE . ' r
612	WHERE ' . $db->sql_in_set('r.report_id', $report_id_list) . $pm_where;
613	$result = $db->sql_query($sql);
614
615	$post_id_list = array();
616	while ($row = $db->sql_fetchrow($result))
617	{
618	$post_id_list[] = $row[$id_column];
619	}
620	$db->sql_freeresult($result);
621	$post_id_list = array_unique($post_id_list);
622
623	if ($pm)
624	{
625	if (!$auth->acl_getf_global('m_report'))
626	{
627	send_status_line(403, 'Forbidden');
628	trigger_error('NOT_AUTHORISED');
629	}
630	}
631	else
632	{
633	if (!phpbb_check_ids($post_id_list, POSTS_TABLE, 'post_id', array('m_report')))
634	{
635	send_status_line(403, 'Forbidden');
636	trigger_error('NOT_AUTHORISED');
637	}
638	}
639
640	if ($action == 'delete' && strpos($user->data['session_page'], 'mode=report_details') !== false)
641	{
642	$redirect = $request->variable('redirect', build_url(array('mode', 'r', 'quickmod')) . '&mode=reports');
643	}
644	else if ($action == 'delete' && strpos($user->data['session_page'], 'mode=pm_report_details') !== false)
645	{
646	$redirect = $request->variable('redirect', build_url(array('mode', 'r', 'quickmod')) . '&mode=pm_reports');
647	}
648	else if ($action == 'close' && !$request->variable('r', 0))
649	{
650	$redirect = $request->variable('redirect', build_url(array('mode', 'p', 'quickmod')) . '&mode=' . $module);
651	}
652	else
653	{
654	$redirect = $request->variable('redirect', build_url(array('quickmod')));
655	}
656	$success_msg = '';
657	$forum_ids = array();
658	$topic_ids = array();
659
660	$s_hidden_fields = build_hidden_fields(array(
661	'i' => $module,
662	'mode' => $mode,
663	'report_id_list' => $report_id_list,
664	'action' => $action,
665	'redirect' => $redirect)
666	);
667
668	if (confirm_box(true))
669	{
670	$post_info = ($pm) ? phpbb_get_pm_data($post_id_list) : phpbb_get_post_data($post_id_list, 'm_report');
671
672	$sql = "SELECT r.report_id, r.$id_column, r.report_closed, r.user_id, r.user_notify, u.username, u.username_clean, u.user_email, u.user_jabber, u.user_lang, u.user_notify_type
673	FROM " . REPORTS_TABLE . ' r, ' . USERS_TABLE . ' u
674	WHERE ' . $db->sql_in_set('r.report_id', $report_id_list) . '
675	' . (($action == 'close') ? 'AND r.report_closed = 0' : '') . '
676	AND r.user_id = u.user_id' . $pm_where;
677	$result = $db->sql_query($sql);
678
679	$reports = $close_report_posts = $close_report_topics = $notify_reporters = $report_id_list = array();
680	while ($report = $db->sql_fetchrow($result))
681	{
682	$reports[$report['report_id']] = $report;
683	$report_id_list[] = $report['report_id'];
684
685	if (!$report['report_closed'])
686	{
687	$close_report_posts[] = $report[$id_column];
688
689	if (!$pm)
690	{
691	$close_report_topics[] = $post_info[$report['post_id']]['topic_id'];
692	}
693	}
694
695	if ($report['user_notify'] && !$report['report_closed'])
696	{
697	$notify_reporters[$report['report_id']] = &$reports[$report['report_id']];
698	}
699	}
700	$db->sql_freeresult($result);
701
702	if (count($reports))
703	{
704	$close_report_posts = array_unique($close_report_posts);
705	$close_report_topics = array_unique($close_report_topics);
706
707	if (!$pm && count($close_report_posts))
708	{
709	// Get a list of topics that still contain reported posts
710	$sql = 'SELECT DISTINCT topic_id
711	FROM ' . POSTS_TABLE . '
712	WHERE ' . $db->sql_in_set('topic_id', $close_report_topics) . '
713	AND post_reported = 1
714	AND ' . $db->sql_in_set('post_id', $close_report_posts, true);
715	$result = $db->sql_query($sql);
716
717	$keep_report_topics = array();
718	while ($row = $db->sql_fetchrow($result))
719	{
720	$keep_report_topics[] = $row['topic_id'];
721	}
722	$db->sql_freeresult($result);
723
724	$close_report_topics = array_diff($close_report_topics, $keep_report_topics);
725	unset($keep_report_topics);
726	}
727
728	$db->sql_transaction('begin');
729
730	if ($action == 'close')
731	{
732	$sql = 'UPDATE ' . REPORTS_TABLE . '
733	SET report_closed = 1
734	WHERE ' . $db->sql_in_set('report_id', $report_id_list);
735	}
736	else
737	{
738	$sql = 'DELETE FROM ' . REPORTS_TABLE . '
739	WHERE ' . $db->sql_in_set('report_id', $report_id_list);
740	}
741	$db->sql_query($sql);
742
743	if (count($close_report_posts))
744	{
745	if ($pm)
746	{
747	$sql = 'UPDATE ' . PRIVMSGS_TABLE . '
748	SET message_reported = 0
749	WHERE ' . $db->sql_in_set('msg_id', $close_report_posts);
750	$db->sql_query($sql);
751
752	if ($action == 'delete')
753	{
754	delete_pm(ANONYMOUS, $close_report_posts, PRIVMSGS_INBOX);
755	}
756	}
757	else
758	{
759	$sql = 'UPDATE ' . POSTS_TABLE . '
760	SET post_reported = 0
761	WHERE ' . $db->sql_in_set('post_id', $close_report_posts);
762	$db->sql_query($sql);
763
764	if (count($close_report_topics))
765	{
766	$sql = 'UPDATE ' . TOPICS_TABLE . '
767	SET topic_reported = 0
768	WHERE ' . $db->sql_in_set('topic_id', $close_report_topics) . '
769	OR ' . $db->sql_in_set('topic_moved_id', $close_report_topics);
770	$db->sql_query($sql);
771	}
772	}
773	}
774
775	$db->sql_transaction('commit');
776	}
777	unset($close_report_posts, $close_report_topics);
778
779	/* @var $phpbb_notifications \phpbb\notification\manager */
780	$phpbb_notifications = $phpbb_container->get('notification_manager');
781
782	foreach ($reports as $report)
783	{
784	if ($pm)
785	{
786	$phpbb_log->add('mod', $user->data['user_id'], $user->ip, 'LOG_PM_REPORT_' . strtoupper($action) . 'D', false, array(
787	'forum_id' => 0,
788	'topic_id' => 0,
789	$post_info[$report['pm_id']]['message_subject']
790	));
791	$phpbb_notifications->delete_notifications('notification.type.report_pm', $report['pm_id']);
792	}
793	else
794	{
795	$phpbb_log->add('mod', $user->data['user_id'], $user->ip, 'LOG_REPORT_' . strtoupper($action) . 'D', false, array(
796	'forum_id' => $post_info[$report['post_id']]['forum_id'],
797	'topic_id' => $post_info[$report['post_id']]['topic_id'],
798	'post_id' => $report['post_id'],
799	$post_info[$report['post_id']]['post_subject']
800	));
801	$phpbb_notifications->delete_notifications('notification.type.report_post', $report['post_id']);
802	}
803	}
804
805	// Notify reporters
806	if (count($notify_reporters))
807	{
808	foreach ($notify_reporters as $report_id => $reporter)
809	{
810	if ($reporter['user_id'] == ANONYMOUS)
811	{
812	continue;
813	}
814
815	$post_id = $reporter[$id_column];
816
817	if ($pm)
818	{
819	$phpbb_notifications->add_notifications('notification.type.report_pm_closed', array_merge($post_info[$post_id], array(
820	'reporter' => $reporter['user_id'],
821	'closer_id' => $user->data['user_id'],
822	'from_user_id' => $post_info[$post_id]['author_id'],
823	)));
824	}
825	else
826	{
827	$phpbb_notifications->add_notifications('notification.type.report_post_closed', array_merge($post_info[$post_id], array(
828	'reporter' => $reporter['user_id'],
829	'closer_id' => $user->data['user_id'],
830	)));
831	}
832	}
833	}
834
835	if (!$pm)
836	{
837	foreach ($post_info as $post)
838	{
839	$forum_ids[$post['forum_id']] = $post['forum_id'];
840	$topic_ids[$post['topic_id']] = $post['topic_id'];
841	}
842	}
843
844	unset($notify_reporters, $post_info, $reports);
845
846	$success_msg = (count($report_id_list) == 1) ? "{$pm_prefix}REPORT_" . strtoupper($action) . 'D_SUCCESS' : "{$pm_prefix}REPORTS_" . strtoupper($action) . 'D_SUCCESS';
847	}
848	else
849	{
850	confirm_box(false, $user->lang[strtoupper($action) . "_{$pm_prefix}REPORT" . ((count($report_id_list) == 1) ? '' : 'S') . '_CONFIRM'], $s_hidden_fields);
851	}
852
853	$redirect = $request->variable('redirect', "index.$phpEx");
854	$redirect = reapply_sid($redirect);
855
856	if (!$success_msg)
857	{
858	redirect($redirect);
859	}
860	else
861	{
862	meta_refresh(3, $redirect);
863
864	$return_forum = '';
865	$return_topic = '';
866
867	if (!$pm)
868	{
869	if (count($forum_ids) === 1)
870	{
871	$return_forum = sprintf($user->lang['RETURN_FORUM'], '<a href="' . append_sid("{$phpbb_root_path}viewforum.$phpEx", 'f=' . current($forum_ids)) . '">', '</a>') . '<br /><br />';
872	}
873
874	if (count($topic_ids) === 1)
875	{
876	$return_topic = sprintf($user->lang['RETURN_TOPIC'], '<a href="' . append_sid("{$phpbb_root_path}viewtopic.$phpEx", 't=' . current($topic_ids)) . '">', '</a>') . '<br /><br />';
877	}
878	}
879
880	trigger_error($user->lang[$success_msg] . '<br /><br />' . $return_forum . $return_topic . sprintf($user->lang['RETURN_PAGE'], "<a href=\"$redirect\">", '</a>'));
881	}
882	}