addPlaceHolder('R_EMAIL', $_SESSION['user']['email']); } else { $reportViolationDisplay = new displayManager('reportViolationNotLoggedIn'); } $reportViolationDisplay->addPlaceHolder('QUERY', $_SERVER['REQUEST_URI']); $reportViolationDisplay->addPlaceHolder('URL', $settings['url'] . urldecode($_GET['url'])); replacePostTemplate(&$reportViolationDisplay); $content = $reportViolationDisplay->outputHtml(true); } else { $error = false; $formFields['violation'] = 'Violation'; $formFields['notes'] = 'Notes'; $formFields['email'] = 'Email'; foreach($formFields as $postId => $name) { if (!isset($_POST[$postId])) { showError('This page does not exist'); } if (isBlank($_POST[$postId])) { $error .= "$name cannot be blank.
"; } $_SESSION['temp']['replace'][strtoupper($postId)] = $_POST[$postId]; } if (!isValidEmail($_POST['email'])) { $error .= "Invalid email address
"; } if ($error) { $_SESSION['temp']['replace']['ERROR'] = $error; header("Location: violation.wik?url=" . urlencode($_GET['url'])); die(); } $sql = "INSERT INTO violations(email, url, notes, violation, timestamp, ip, user) VALUES(':email', ':url', ':notes', ':violation', ':time', ':ip', ':user')"; $values = array( 'time' => time(), 'url' => $_GET['url'], 'ip' => $_SERVER['REMOTE_ADDR'], 'user' => $_POST['user'], 'email' => $_POST['email'], 'violation' => $_POST['violation'], 'notes' => $_POST['notes'] ); $database->insertDb($database->prepareSql($sql, $values)); $tickDisplay = new displayManager('tick2'); $tickDisplay->addPlaceHolder('MESSAGE', "Page reported."); $content = $tickDisplay->outputHtml(true); } /******** LOGIN STATUS *+* 0000191 20070709 1:58P ********/ require_once("./loginStatus.inc.wik"); $violationHeader->addPlaceHolder('CONTENT', $content); $display->addPlaceHolder('CONTENT', $violationHeader->outputHtml(true)); outputTemplate(&$display); ?>