";
$cm_authornames = fcm_user_names ($user_kurz);
echo "{$cm_text["commentfrom"]}: " . fcm_htmlentity ($cm_authornames[1] . " " . $cm_authornames[2]) . "
";
echo "{$cm_text["postedin"]}: $cm_pub_date
{$cm_text["title"]}:
{$cm_text["comment"]}:
({$cm_text["dontusehtml"]} {$cm_text["awmvariant"]}).
\n
";
}
function cm_createdtimeform () {
global $cm_text, $cm_docpath, $cm_langua;
global $cm_pub_date, $cm_uauthor, $cm_viewer_group;
global $cm_title, $cm_path, $cm_comment, $cm_uauthor;
echo "
\n
";
}
if ($cm_path) {
if (fcm_can_becommented ($cm_path)) {
if ($cm_confirmedpost) {
if (fcm_check_constraints (CM_SEC_COMMEN, $user_kurz, $cm_path)) {
if ($cm_title) {
$cm_title = fcm_truncate_string (fcm_htmlentity ($cm_title), 255);
}
else {
$cm_title = fcm_unspecialchars ($cm_text["untitled"]);
}
if ($cm_comment) {
$cm_comment = fcm_htmlentity ($cm_comment);
}
else {
$cm_comment = fcm_unspecialchars ($cm_text["emptycomment"]);
}
$cm_pub_date = fcm_curdate_string ();
$result2 = db_query("insert into " . CM_DB_PREFIX . "cmcomments3 values($dbIDnull,'" . CM_HITTYPE_PAGE . "','$cm_path','$cm_title','$user_kurz','$cm_pub_date','$cm_comment')") or db_die();
if ($cm_resethits_aftercomment) {
fcm_reset_updatedvisit ($cm_path, CM_HITTYPE_PAGE);
}
$cm_validops = fcm_check_validops ($user_kurz, $cm_path);
fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path)));
fcm_message ($cm_text["postedcomment"], CM_MSGSTYLE_INFORMATION);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_POST_COMMENT, "Comment posted to $cm_path.");
}
else {
fcm_title_nav2 ("", false, false, false, false, false, false, false);
fcm_message ($cm_text["needaccesstopost"], CM_MSGSTYLE_WARNING);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when posintg comment. Not enough permissions.");
}
}
elseif ($cm_post) {
// if (get_magic_quotes_gpc ()) {
$cm_title = stripslashes ($cm_title);
$cm_comment = stripslashes ($cm_comment);
// }
$cm_validops = fcm_check_validops ($user_kurz, $cm_path);
fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path)));
fcm_message ("{$cm_text["confirmpostingon"]} $cm_path. {$cm_text["oncepostedcantdel"]}", CM_MSGSTYLE_QUESTION);
cm_createdtimeform ();
}
elseif ($cm_canceledpost) {
$cm_validops = fcm_check_validops ($user_kurz, $cm_path);
fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path)));
fcm_message ($cm_text["canceledposting"], CM_MSGSTYLE_INFORMATION);
}
elseif ($cm_preview) {
$cm_validops = fcm_check_validops ($user_kurz, $cm_path);
fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path)));
// if (get_magic_quotes_gpc ()) {
$cm_title = stripslashes ($cm_title);
$cm_comment = stripslashes ($cm_comment);
// }
$cm_title = fcm_truncate_string (fcm_htmlentity ($cm_title), 255);
cm_createdtimeform ();
echo "
";
echo fcm_process_markup (fcm_htmlentity ($cm_comment), $cm_path, false);
echo " |
";
}
else {
$result1 = db_query("select cmdb_directory, cmdb_viewer_group from " . CM_DB_PREFIX . "content3 where cmdb_directory like '$cm_path'") or db_die();
$row1 = db_fetch_row($result1);
if ($row1[0]) {
if (fcm_check_constraints (CM_SEC_COMMEN, $user_kurz, $cm_path)) {
$cm_validops = fcm_check_validops ($user_kurz, $cm_path);
fcm_title_nav2 ($cm_path, $cm_validops[CM_SEC_CREATE], $cm_validops[CM_SEC_DELETE], $cm_validops[CM_SEC_CHANGE], $cm_validops[CM_SEC_DISPLA], ($cm_validops[CM_SEC_COMMEN] && fcm_can_becommented ($cm_path)), $cm_validops[CM_SEC_DISPLA], fcm_user_is_superuser($user_kurz), ($cm_validops[CM_SEC_COMMEN] && fcm_can_berated ($cm_path)));
fcm_message ("{$cm_text["writingcommenton"]} $cm_path.", CM_MSGSTYLE_INFORMATION);
cm_firsttimeform ();
}
else {
fcm_title_nav2 ($cm_path, false, false, false, false, false, false, false);
fcm_message ($cm_text["needaccesstopost"], CM_MSGSTYLE_WARNING);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when posting comment. Not enough permissions.");
}
}
else {
fcm_title_nav2 ("", false, false, false, false, false, false, false);
fcm_message ($cm_text["dirnotfound"], CM_MSGSTYLE_ERROR);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when posting comment. Not enough permissions.");
}
}
}
else {
fcm_title_nav2 ($cm_path, false, false, false, false, false, false, false);
fcm_message ($cm_text["commentsdisabled"], CM_MSGSTYLE_WARNING);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when posting comment. User comments are disabled for this page.");
}
}
else {
fcm_title_nav2 ("", false, false, false, false, false, false, false);
fcm_message ($cm_text["dirnotfound"], CM_MSGSTYLE_ERROR);
fcm_add_logentry ("", $user_kurz, CM_APPLOG_ERROR, "Error when posting comment. Dir not found.");
}
echo $cm_html_footer;
?>