docs/mods/_standard/file_storage/delete_comment.php

   1 <?php\r
   2 /****************************************************************/\r
   3 /* ATutor                                                                                                               */\r
   4 /****************************************************************/\r
   5 /* Copyright (c) 2002-2010                                      */\r
   6 /* Inclusive Design Institute                                   */\r
   7 /* http://atutor.ca                                                                                             */\r
   8 /*                                                              */\r
   9 /* This program is free software. You can redistribute it and/or*/\r
  10 /* modify it under the terms of the GNU General Public License  */\r
  11 /* as published by the Free Software Foundation.                                */\r
  12 /****************************************************************/\r
  13 // $Id$\r
  14 \r
  15 define('AT_INCLUDE_PATH', '../../../include/');\r
  16 require(AT_INCLUDE_PATH.'vitals.inc.php');\r
  17 require(AT_INCLUDE_PATH.'../mods/_standard/file_storage/file_storage.inc.php');\r
  18 \r
  19 $owner_type = abs($_REQUEST['ot']);\r
  20 $owner_id   = abs($_REQUEST['oid']);\r
  21 $owner_arg_prefix = '?ot='.$owner_type.SEP.'oid='.$owner_id. SEP;\r
  22 if (!($owner_status = fs_authenticate($owner_type, $owner_id)) || !query_bit($owner_status, WORKSPACE_AUTH_WRITE)) { \r
  23         $msg->addError('ACCESS_DENIED');\r
  24         header('Location: '.url_rewrite('mods/_standard/file_storage/index.php', AT_PRETTY_URL_IS_HEADER));\r
  25         exit;\r
  26 }\r
  27 \r
  28 $_pages['mods/_standard/file_storage/delete_comment.php']['parent'] = 'mods/_standard/file_storage/comments.php' . $owner_arg_prefix.'id='.$_GET['file_id'];\r
  29 $_pages['mods/_standard/file_storage/comments.php' . $owner_arg_prefix.'id='.$_GET['file_id']]['title_var'] = 'comments';\r
  30 $_pages['mods/_standard/file_storage/comments.php' . $owner_arg_prefix.'id='.$_GET['file_id']]['parent']    = 'mods/_standard/file_storage/index.php';\r
  31 \r
  32 $id = abs($_REQUEST['id']);\r
  33 \r
  34 if (isset($_POST['submit_no'])) {\r
  35         $msg->addFeedback('CANCELLED');\r
  36         header('Location: '.url_rewrite('mods/_standard/file_storage/comments.php'.$owner_arg_prefix.'id='.$_POST['file_id'], AT_PRETTY_URL_IS_HEADER));\r
  37         exit;\r
  38 } else if (isset($_POST['submit_yes'])) {\r
  39         $_POST['file_id'] = abs($_POST['file_id']);\r
  40         $_POST['id'] = abs($_POST['id']);\r
  41 \r
  42         $sql = "DELETE FROM ".TABLE_PREFIX."files_comments WHERE file_id=$_POST[file_id] AND comment_id=$_POST[id] AND member_id=$_SESSION[member_id]";\r
  43         $result = mysql_query($sql, $db);\r
  44         if (mysql_affected_rows($db) == 1) {\r
  45                 $sql = "UPDATE ".TABLE_PREFIX."files SET num_comments=num_comments-1, date=date WHERE owner_type=$owner_type AND owner_id=$owner_id AND file_id=$_POST[file_id]";\r
  46                 $result = mysql_query($sql, $db);\r
  47         }\r
  48 \r
  49         $msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');\r
  50         header('Location: '.url_rewrite('mods/_standard/file_storage/comments.php'.$owner_arg_prefix.'id='.$_POST['file_id'], AT_PRETTY_URL_IS_HEADER));\r
  51         exit;\r
  52 }\r
  53 \r
  54 require(AT_INCLUDE_PATH.'header.inc.php');\r
  55 \r
  56 $hidden_vars = array('id' => $id, 'ot' => $owner_type, 'oid' => $owner_id, 'file_id' => $_GET['file_id']);\r
  57 $msg->addConfirm(array('DELETE'), $hidden_vars);\r
  58 $msg->printConfirm();\r
  59 \r
  60 \r
  61 require(AT_INCLUDE_PATH.'footer.inc.php');\r
  62 ?>