158 lines
6.9 KiB
PHP
158 lines
6.9 KiB
PHP
<?php
|
|
$title = 'Edit Comments';
|
|
$parent_file = 'edit.php';
|
|
require_once('admin-header.php');
|
|
if (empty($_GET['mode'])) $mode = 'view';
|
|
else $mode = $_GET['mode'];
|
|
?>
|
|
<ul id="adminmenu2">
|
|
<li><a href="edit.php">Posts</a></li>
|
|
<li><a href="edit-comments.php" class="current">Comments</a></li>
|
|
<li class="last"><a href="moderation.php">Awaiting Moderation</a></li>
|
|
</ul>
|
|
<script type="text/javascript">
|
|
<!--
|
|
function checkAll(form)
|
|
{
|
|
for (i = 0, n = form.elements.length; i < n; i++) {
|
|
if(form.elements[i].type == "checkbox") {
|
|
if(form.elements[i].checked == true)
|
|
form.elements[i].checked = false;
|
|
else
|
|
form.elements[i].checked = true;
|
|
}
|
|
}
|
|
}
|
|
//-->
|
|
</script>
|
|
<div class="wrap">
|
|
<form name="searchform" action="" method="get">
|
|
<fieldset>
|
|
<legend>Show Comments That Contain...</legend>
|
|
<input type="text" name="s" value="<?php echo $s; ?>" size="17" />
|
|
<input type="submit" name="submit" value="Search" />
|
|
<input type="hidden" name="mode" value="<?php echo $mode; ?>" />
|
|
(Searches within comment text, email, URI, and IP address.)
|
|
</fieldset>
|
|
</form>
|
|
<p><a href="?mode=view">View Mode</a> | <a href="?mode=edit">Mass Edit Mode</a></p>
|
|
<?php
|
|
if (!empty($delete_comments)) {
|
|
|
|
// I had this all as one query but then realized we weren't checking permissions on each comment.
|
|
$del_comments = ''; $safe_delete_commeents = ''; $i = 0;
|
|
foreach ($delete_comments as $comment) { // Check the permissions on each
|
|
$comment = intval($comment);
|
|
$post_id = $wpdb->get_var("SELECT comment_post_ID FROM $tablecomments WHERE comment_ID = $comment");
|
|
$authordata = get_userdata($wpdb->get_var("SELECT post_author FROM $tableposts WHERE ID = $post_id"));
|
|
if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
|
|
$wpdb->query("DELETE FROM $tablecomments WHERE comment_ID = $comment");
|
|
++$i;
|
|
}
|
|
}
|
|
echo "<div class='wrap'><p>$i comments deleted.</p></div>";
|
|
}
|
|
|
|
if ($s) {
|
|
$s = $wpdb->escape($s);
|
|
$comments = $wpdb->get_results("SELECT * FROM $tablecomments WHERE
|
|
comment_author LIKE '%$s%' OR
|
|
comment_author_email LIKE '%$s%' OR
|
|
comment_author_url LIKE ('%$s%') OR
|
|
comment_author_IP LIKE ('%$s%') OR
|
|
comment_content LIKE ('%$s%')
|
|
ORDER BY comment_date DESC");
|
|
} else {
|
|
$comments = $wpdb->get_results("SELECT * FROM $tablecomments ORDER BY comment_date DESC LIMIT 20");
|
|
}
|
|
if ('view' == $mode) {
|
|
if ($comments) {
|
|
echo '<ol>';
|
|
foreach ($comments as $comment) {
|
|
$authordata = get_userdata($wpdb->get_var("SELECT post_author FROM $tableposts WHERE ID = $comment->comment_post_ID"));
|
|
$comment_status = wp_get_comment_status($comment->comment_ID);
|
|
if ('unapproved' == $comment_status) {
|
|
echo '<li class="unapproved" style="border-bottom: 1px solid #ccc;">';
|
|
} else {
|
|
echo '<li style="border-bottom: 1px solid #ccc;">';
|
|
}
|
|
?>
|
|
<p><strong>Name:</strong> <?php comment_author() ?> <?php if ($comment->comment_author_email) { ?>| <strong>Email:</strong> <?php comment_author_email_link() ?> <?php } if ($comment->comment_author_email) { ?> | <strong>URI:</strong> <?php comment_author_url_link() ?> <?php } ?>| <strong>IP:</strong> <a href="http://ws.arin.net/cgi-bin/whois.pl?queryinput=<?php comment_author_IP() ?>"><?php comment_author_IP() ?></a></p>
|
|
|
|
<?php comment_text() ?>
|
|
<p>Posted <?php comment_date('M j, g:i A') ?> | <?php
|
|
if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
|
|
echo "<a href=\"post.php?action=editcomment&comment=".$comment->comment_ID."\">Edit Comment</a>";
|
|
echo " | <a href=\"post.php?action=deletecomment&p=".$comment->comment_post_ID."&comment=".$comment->comment_ID."\" onclick=\"return confirm('You are about to delete this comment by \'".$comment->comment_author."\'\\n \'Cancel\' to stop, \'OK\' to delete.')\">Delete Comment</a> — ";
|
|
} // end if any comments to show
|
|
// Get post title
|
|
$post_title = $wpdb->get_var("SELECT post_title FROM $tableposts WHERE ID = $comment->comment_post_ID");
|
|
$post_title = ('' == $post_title) ? "# $comment->comment_post_ID" : $post_title;
|
|
?> <a href="post.php?action=edit&post=<?php echo $comment->comment_post_ID; ?>">Edit Post “<?php echo stripslashes($post_title); ?>”</a> | <a href="<?php echo get_permalink($comment->comment_post_ID); ?>">View Post</a></p>
|
|
</li>
|
|
|
|
<?php
|
|
} // end foreach
|
|
echo '</ol>';
|
|
} else {
|
|
|
|
?>
|
|
<p>
|
|
<strong>No results found.</strong></p>
|
|
|
|
<?php
|
|
} // end if ($comments)
|
|
} elseif ('edit' == $mode) {
|
|
|
|
if ($comments) {
|
|
echo '<form name="deletecomments" id="deletecomments" action="" method="post">
|
|
<table width="100%" cellpadding="3" cellspacing="3">
|
|
<tr>
|
|
<th scope="col">*</th>
|
|
<th scope="col">Name</th>
|
|
<th scope="col">Email</th>
|
|
<th scope="col">IP</th>
|
|
<th scope="col">Comment Excerpt</th>
|
|
<th scope="col">View</th>
|
|
<th scope="col">Edit</th>
|
|
<th scope="col">Delete</th>
|
|
</tr>';
|
|
foreach ($comments as $comment) {
|
|
$authordata = get_userdata($wpdb->get_var("SELECT post_author FROM $tableposts WHERE ID = $comment->comment_post_ID"));
|
|
$bgcolor = ('#eee' == $bgcolor) ? 'none' : '#eee';
|
|
?>
|
|
<tr style='background-color: <?php echo $bgcolor; ?>'>
|
|
<td><?php if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) { ?><input type="checkbox" name="delete_comments[]" value="<?php echo $comment->comment_ID; ?>" /><?php } ?></td>
|
|
<th scope="row"><?php comment_author_link() ?></th>
|
|
<td><?php comment_author_email_link() ?></td>
|
|
<td><a href="http://ws.arin.net/cgi-bin/whois.pl?queryinput=<?php comment_author_IP() ?>"><?php comment_author_IP() ?></a></td>
|
|
<td><?php comment_excerpt(); ?></td>
|
|
<td><a href="<?php echo get_permalink($comment->comment_post_ID); ?>#comment-<?php comment_ID() ?>" class="edit">View</a></td>
|
|
<td><?php if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
|
|
echo "<a href='post.php?action=editcomment&comment=$comment->comment_ID' class='edit'>Edit</a>"; } ?></td>
|
|
<td><?php if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
|
|
echo "<a href=\"post.php?action=deletecomment&p=".$comment->comment_post_ID."&comment=".$comment->comment_ID."\" onclick=\"return confirm('You are about to delete this comment by \'".$comment->comment_author."\'\\n \'Cancel\' to stop, \'OK\' to delete.')\" class='delete'>Delete</a>"; } ?></td>
|
|
</tr>
|
|
<?php
|
|
} // end foreach
|
|
?></table>
|
|
<p><a href="javascript:;" onclick="checkAll(document.getElementById('deletecomments')); return false; ">Invert Checkbox Selection</a></p>
|
|
<p style="text-align: right;"><input type="submit" name="Submit" value="Delete Checked Comments" onclick="return confirm('You are about to delete these comments permanently \n \'Cancel\' to stop, \'OK\' to delete.')" /> </p>
|
|
</form>
|
|
<?php
|
|
} else {
|
|
?>
|
|
<p>
|
|
<strong>No results found.</strong>
|
|
</p>
|
|
<?php
|
|
} // end if ($comments)
|
|
}
|
|
?>
|
|
|
|
</div>
|
|
|
|
<?php
|
|
include('admin-footer.php');
|
|
?>
|