Changeset 5567

Timestamp:

12/17/2011 03:33:32 PM (13 years ago)

Author:

boonebgorges

Message:

Prevents users from posting identical replies to the same forum topic, to prevent flooding and spam. Fixes #3556

Location:

trunk

Files:

• bp-forums/bp-forums-functions.php (modified) (1 diff)
• bp-groups/bp-groups-screens.php (modified) (1 diff)

trunk/bp-forums/bp-forums-functions.php

@@ -302 +302 @@
 
 /**
+ * Check to see whether a user has already left this particular reply on a given post.
+ * Prevents dupes.
+ *
+ * @since 1.6
+ *
+ * @param str $text The text of the comment
+ * @param int $topic_id The topic id
+ * @param int $user_id The user id
+ */
+function bp_forums_reply_exists( $text = '', $topic_id = 0, $user_id = 0 ) {
+    $reply_exists = false;
+    
+    if ( $text && $topic_id && $user_id ) {
+        do_action( 'bbpress_init' );
+        
+        $args = array(
+            'post_author_id' => $user_id,
+            'topic_id'       => $topic_id
+        );
+        
+        // BB_Query's post_text parameter does a MATCH, while we need exact matches
+        add_filter( 'get_posts_where', create_function( '$q', 'return $q . " AND p.post_text = \'' . $text . '\'";' ) );
+        
+        $query = new BB_Query( 'post', $args );
+        
+        $reply_exists = !empty( $query->results );
+    }
+    
+    return apply_filters( 'bp_forums_reply_exists', $reply_exists, $text, $topic_id, $user_id );
+}
+
+/**
  * Get a total "Topics Started" count for a given user
  *

trunk/bp-groups/bp-groups-screens.php

@@ -145 +145 @@
 
                 $topic_page = isset( $_GET['topic_page'] ) ? $_GET['topic_page'] : false;
-
-                if ( !$post_id = groups_new_group_forum_post( $_POST['reply_text'], $topic_id, $topic_page ) )
-                    bp_core_add_message( __( 'There was an error when replying to that topic', 'buddypress'), 'error' );
-                else
-                    bp_core_add_message( __( 'Your reply was posted successfully', 'buddypress') );
-
-                if ( isset( $_SERVER['QUERY_STRING'] ) )
-                    $query_vars = '?' . $_SERVER['QUERY_STRING'];
-
-                bp_core_redirect( bp_get_group_permalink( groups_get_current_group() ) . 'forum/topic/' . $topic_slug . '/' . $query_vars . '#post-' . $post_id );
+                
+                // Don't allow reply flooding
+                if ( bp_forums_reply_exists( $_POST['reply_text'], $topic_id, bp_loggedin_user_id() ) ) {
+                    bp_core_add_message( __( 'It looks like you\'ve already said that!', 'buddypress' ), 'error' );
+                } else {    
+                    if ( !$post_id = groups_new_group_forum_post( $_POST['reply_text'], $topic_id, $topic_page ) )
+                        bp_core_add_message( __( 'There was an error when replying to that topic', 'buddypress'), 'error' );
+                    else
+                        bp_core_add_message( __( 'Your reply was posted successfully', 'buddypress') );
+                }
+
+                $query_vars = isset( $_SERVER['QUERY_STRING'] ) ? '?' . $_SERVER['QUERY_STRING'] : '';
+                
+                $redirect = bp_get_group_permalink( groups_get_current_group() ) . 'forum/topic/' . $topic_slug . '/' . $query_vars;
+
+                if ( !empty( $post_id ) ) {
+                    $redirect .= '#post-' . $post_id;
+                }
+
+                bp_core_redirect( $redirect );
             }