X-Git-Url: https://disinclined.org/git/?a=blobdiff_plain;f=model%2Fnote.php;h=f0c54cbec01e9fbe7d17dcf04184e35107c0168b;hb=5f6c05fb2e7147dd96f16e00ba9e48aba978823c;hp=d5ab563d6205d0f2d4e0ef59feda3595382cac70;hpb=a99ed12dc9a0d7d02721fa6b781b47116b976e3b;p=dylansserver.git
diff --git a/model/note.php b/model/note.php
index d5ab563..f0c54cb 100644
--- a/model/note.php
+++ b/model/note.php
@@ -24,6 +24,11 @@ class note extends model {
$url = substr($url, 0, (strlen($url)-6));
}
$this->url = $url;
+ $this->fetch_note();
+ $this->fetch_comments();
+ }
+
+ public function fetch_note() {
$sql = "SELECT title, date_posted, text, id
FROM notes WHERE url = ?";
$result = $this->query($sql, "s",
@@ -41,6 +46,9 @@ class note extends model {
} else {
throw new notFound();
}
+ }
+
+ public function fetch_comments() {
$sql = "SELECT COUNT(*) FROM comments
WHERE note = $this->id";
$result = $this->db->query($sql);
@@ -55,34 +63,6 @@ class note extends model {
require_once("view/note.php");
}
- public function verify() {
- if (!isset($_POST['captcha'])) {
- require_once('includes/recaptchalib.php');
- echo "
";
- $resp = recaptcha_check_answer ($this->recaptcha_privatekey,
- $_SERVER["REMOTE_ADDR"],
- $_POST["recaptcha_challenge_field"],
- $_POST["recaptcha_response_field"]);
- if (!$resp->is_valid) {
- $this->failed_captcha = true;
- }
- }
- if (isset($_POST['captcha']) || $resp->is_valid) {
- $sql = ("INSERT INTO comments (date_posted, author,
- text, note)
- VALUES(NOW(), ?, ?, ?)");
- $stmt = $this->db->prepare($sql);
- // Checks are needed here (no blank text,
- // and a default author needs to be set
- // for no-javascript users.
- $stmt->bind_param('sss',
- $_POST['name'],
- $_POST['text'],
- $this->id);
- $stmt->execute();
- }
- }
-
public function display_comment_link() {
if ($this->number_of_comments > 0) {
$anchor_text = "comments($this->number_of_comments)/";
@@ -98,7 +78,6 @@ class note extends model {
}
public function display_comments() {
- // should be called like $note->comment[0]['author']
$sql= "SELECT date_posted, author, text
FROM comments WHERE note = ?
ORDER BY date_posted DESC";
@@ -106,17 +85,46 @@ class note extends model {
$i = 0;
foreach ($result as $row => $entry) {
$this->comment[$i]['date_posted'] = $entry['date_posted'];
- $this->comment[$i]['author'] = $entry['author'];
+ $this->comment[$i]['author'] = htmlspecialchars($entry['author']);
$this->comment[$i]['text'] = htmlspecialchars($entry['text']);
- $this->comment[$i]['head'] = "