-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy paththread.php
161 lines (137 loc) · 6.15 KB
/
thread.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
<!doctype html>
<html lang="en">
<head>
<!-- Required meta tags -->
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
<!-- Bootstrap CSS -->
<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css"
integrity="sha384-9aIt2nRpC12Uk9gS9baDl411NQApFmC26EwAOH8WgZl5MYYxFfc+NcPb1dKGj7Sk" crossorigin="anonymous">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
<title>Welcome to iDiscuss-coding forums</title>
</head>
<body>
<?php include 'partial/db_connect.php'; ?>
<?php include 'partial/_header.php'; ?>
<?php
$id=$_GET['threadid'];
$sql=" SELECT * FROM `threads` WHERE thread_id=$id";
$result=mysqli_query($conn, $sql);
while($row=mysqli_fetch_assoc($result)){
$title=$row['thread_title'];
$desc=$row['thread_desc'];
$thread_user_id=$row['thread_user_id'];
//Query the users table to find out the name of Orignal poster
$sql2="SELECT user_email FROM `users` WHERE sno='$thread_user_id'";
$result2=mysqli_query($conn,$sql2);
$row2=mysqli_fetch_assoc($result2);
$posted_by=$row2['user_email'];
}
?>
<?php
$showAlert=false;
$method=$_SERVER['REQUEST_METHOD'];
if($method=='POST'){
//insert into comment into db
$comment=$_POST['comment'];
$comment=str_replace("<","<","$comment");
$comment=str_replace(">",">","$comment");
$comment=str_replace('"',""","$comment");
$comment=str_replace("'","'","$comment");
$sno=$_POST['sno'];
$sql="INSERT INTO `comments` ( `comment_content`, `thread_id`, `comment_by`, `comment_time`) VALUES ( '$comment', '$id', '$sno', current_timestamp());";
$result=mysqli_query($conn, $sql);
$showAlert=true;
if($showAlert){
echo '<div class="alert alert-success alert-dismissible fade show" role="alert">
<strong>Success!</strong> Your comment has been added!
<button type="button" class="close" data-dismiss="alert" aria-label="Close">
<span aria-hidden="true">×</span>
</button>
</div>';
}
}
?>
<!-- category container starts here -->
<div class="container my-4">
<div class="jumbotron">
<h1 class="display-4"><?php echo $title; ?></h1>
<p class="lead"><?php echo $desc; ?></p>
<hr class="my-4">
<p>This is a peer to peer forum. No Spam / Advertising /
Self-promote in the forums is not allowed. Do not post copyright-infringing material. ...
Do not post “offensive” posts, links or images. Do not cross post questions.
Remain respectful of other members at all times.</p>
<p>Posted by:<b><em><?php echo $posted_by; ?></em><b></p>
</div>
</div>
<?php
if(isset($_SESSION['loggedin']) && $_SESSION['loggedin']=true){
echo '<div class="container">
<h1 class="py-2">Post a Comment</h1>
<form action="'.$_SERVER['REQUEST_URI'].'" method="post">
<div class="form-group">
<label for="exampleFormControlTextarea1">Type your comment</label>
<textarea class="form-control" id="comment" name="comment" rows="3" Required></textarea>
<input type="hidden" name="sno" value="'.$_SESSION['sno'].'">
</div>
<button type="submit" class="btn btn-success">Post Comment</button>
</form>
</div>';
}
else{
echo ' <div class="container">
<h1 class="py-2">Post a Comment</h1>
<p class="lead">You are not logged in. Please login to be able to Post comments.</p>
</div>';
}
?>
<div class="container mb-5">
<h1 class="py-2">Discussions</h1>
<?php
$id=$_GET['threadid'];
$sql=" SELECT * FROM `comments` WHERE thread_id=$id";
$result=mysqli_query($conn, $sql);
$noResult=true;
while($row=mysqli_fetch_assoc($result)){
$noResult=false;
$id=$row['comment_id'];
$content=$row['comment_content'];
$comment_time=$row['comment_time'];
$thread_user_id=$row['comment_by'];
$sql2="SELECT user_email FROM `users` WHERE sno='$thread_user_id'";
$result2=mysqli_query($conn,$sql2);
$row2=mysqli_fetch_assoc($result2);
echo '<div class="media my-3">
<img src="user.jpg" width="54px" class="mr-3" alt="...">
<div class="media-body font-weight-light">
<p class="font-weight-bold my-0 float-right">'.$row2['user_email'].' at <kbd class="text-danger">'.$comment_time.'</kbd></p>
'.$content.'
</div>
</div>';
}
// echo var_dump($noResult);
if($noResult){
echo '<div class="jumbotron jumbotron-fluid">
<div class="container">
<p class="display-4">No Comments found</p>
<p class="lead"><b>Be the first person to ask the question</b></p>
</div>
</div>';
}
?>
</div>
<?php include 'partial/footer.php'; ?>
<!-- Optional JavaScript -->
<!-- jQuery first, then Popper.js, then Bootstrap JS -->
<script src="https://code.jquery.com/jquery-3.5.1.slim.min.js"
integrity="sha384-DfXdz2htPH0lsSSs5nCTpuj/zy4C+OGpamoFVy38MVBnE+IbbVYUew+OrCXaRkfj" crossorigin="anonymous">
</script>
<script src="https://cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js"
integrity="sha384-Q6E9RHvbIyZFJoft+2mJbHaEWldlvI9IOYy5n3zV9zzTtmI3UksdQRVvoxMfooAo" crossorigin="anonymous">
</script>
<script src="https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/js/bootstrap.min.js"
integrity="sha384-OgVRvuATP1z7JjHLkuOU7Xw704+h835Lr+6QL9UvYjZE3Ipu6Tp75j7Bh/kR0JKI" crossorigin="anonymous">
</script>
</body>
</html>