Source file

  1:   2:   3:   4:   5:   6:   7:   8:   9:  10:  11:  12:  13:  14:  15:  16:  17:  18:  19:  20:  21:  22:  23:  24:  25:  26:  27:  28:  29:  30:  31:  32:  33:  34:  35:  36:  37:  38:  39:  40:  41:  42:  43:  44:  45:  46:  47:  48:  49:  50:  51:  52:  53:  54:  55:  56:  57:  58:  59:  60:  61:  62:  63:  64:  65:  66:  67:  68:  69:  70:  71:  72:  73:  74:  75:  76:  77:  78:  79:  80:  81:  82:  83:  84:  85:  86:  87:  88:  89:  90:  91:  92:  93:  94:  95:  96:  97:  98:  99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 435: 436: 437: 438: 439: 440: 441: 442: 443: 444: 445: 446: 447: 448: 449: 450: 451: 452: 453: 454: 455: 456: 457: 458: 459: 460: 461: 462: 463: 464: 465: 466: 467: 468: 469: 470: 471: 472: 473: 474: 475: 476: 477: 478: 479: 480: 481: 482: 483: 484: 485: 486: 487: 488: 489: 490: 491: 492: 493: 494: 495: 496: 497: 498: 499: 500: 501: 502: 503: 504: 505: 506: 507: 508: 509: 510: 511: 512: 513: 514: 515: 516: 517: 518: 519: 520: 521: 522: 523: 524: 525: 526: 527: 528: 529: 530: 531: 532: 533: 534: 535: 536: 537: 538: 539: 540: 541: 542: 543: 544: 545: 546: 547: 548: 549: 550: 551: 552: 553: 554: 555: 556: 557: 558: 559: 560: 561: 562: 563: 564: 565: 566: 567: 568: 569: 570: 571: 572: 573: 574: 575: 576: 577: 578: 579: 580: 581: 582: 583: 584: 585: 586: 587: 588: 589: 590: 591: 592: 593: 594: 595: 596: 597: 598: 599: 600: 601: 602: 603: 604: 605: 606: 607: 608: 609: 610: 611: 612: 613: 614: 615: 616: 617: 618: 619: 620: 621: 622: 623: 624: 625: 626: 627: 628: 629: 630: 631: 632: 633: 634: 635: 636: 637: 638: 639: 640: 641: 642: 643: 644: 645: 646: 647: 648: 649: 650: 651: 652: 653: 654: 655: 656: 657: 658: 659: 660: 661: 662: 663: 664: 665: 666: 667: 668: 669: 670: 671: 672: 673: 674: 675: 676: 677: 678: 679: 680: 681: 682: 683: 684: 685: 686: 687: 688: 689: 690: 691: 692: 693: 694: 695: 696: 697: 698: 699: 700: 701: 702: 703: 704: 705: 706: 707: 708: 709: 710: 711: 712: 713: 714: 715: 716: 717: 718: 719: 720: 721: 722: 723: 724: 725: 726: 727: 728: 729: 730: 731: 732: 733: 734: 735: 736: 737: 738: 739: 740: 741: 742: 743: 744: 745: 746: 747: 748: 749: 750: 751: 752: 753: 754: 755: 756: 757: 758: 759: 760: 761: 762: 763: 764: 765: 766: 767: 768: 769: 770: 771: 772: 773: 774: 775: 776: 777: 778: 779: 780: 781: 782: 783: 784: 785: 786: 787: 788: 789: 790: 791: 792: 793: 794: 795: 796: 797: 798: 799: 800: 801: 802: 803: 804: 805: 806: 807: 808: 809: 810: 811: 812: 813: 814: 815: 816: 817: 818: 819: 820: 821: 822: 823: 824: 825: 826: 827: 828: 829: 830: 831: 832: 833: 834: 835: 836: 837: 838: 839: 840: 841:

<?php

/**
 * This file contains all the functions that allow for the saving,
 * retrieving, deleting and settings for the drafts function.
 *
 * Simple Machines Forum (SMF)
 *
 * @package SMF
 * @author Simple Machines http://www.simplemachines.org
 * @copyright 2019 Simple Machines and individual contributors
 * @license http://www.simplemachines.org/about/smf/license.php BSD
 *
 * @version 2.1 RC1
 */

if (!defined('SMF'))
    die('No direct access...');

loadLanguage('Drafts');

/**
 * Saves a post draft in the user_drafts table
 * The core draft feature must be enabled, as well as the post draft option
 * Determines if this is a new or an existing draft
 * Returns errors in $post_errors for display in the template
 *
 * @param string[] $post_errors Any errors encountered trying to save this draft
 * @return boolean Always returns true
 */
function SaveDraft(&$post_errors)
{
    global $context, $user_info, $smcFunc, $modSettings, $board;

    // can you be, should you be ... here?
    if (empty($modSettings['drafts_post_enabled']) || !allowedTo('post_draft') || !isset($_POST['save_draft']) || !isset($_POST['id_draft']))
        return false;

    // read in what they sent us, if anything
    $id_draft = (int) $_POST['id_draft'];
    $draft_info = ReadDraft($id_draft);

    // A draft has been saved less than 5 seconds ago, let's not do the autosave again
    if (isset($_REQUEST['xml']) && !empty($draft_info['poster_time']) && time() < $draft_info['poster_time'] + 5)
    {
        $context['draft_saved_on'] = $draft_info['poster_time'];

        // since we were called from the autosave function, send something back
        if (!empty($id_draft))
            XmlDraft($id_draft);

        return true;
    }

    if (!isset($_POST['message']))
        $_POST['message'] = isset($_POST['quickReply']) ? $_POST['quickReply'] : '';

    // prepare any data from the form
    $topic_id = empty($_REQUEST['topic']) ? 0 : (int) $_REQUEST['topic'];
    $draft['icon'] = empty($_POST['icon']) ? 'xx' : preg_replace('~[\./\\\\*:"\'<>]~', '', $_POST['icon']);
    $draft['smileys_enabled'] = isset($_POST['ns']) ? (int) $_POST['ns'] : 0;
    $draft['locked'] = isset($_POST['lock']) ? (int) $_POST['lock'] : 0;
    $draft['sticky'] = isset($_POST['sticky']) ? (int) $_POST['sticky'] : 0;
    $draft['subject'] = strtr($smcFunc['htmlspecialchars']($_POST['subject']), array("\r" => '', "\n" => '', "\t" => ''));
    $draft['body'] = $smcFunc['htmlspecialchars']($_POST['message'], ENT_QUOTES);

    // message and subject still need a bit more work
    preparsecode($draft['body']);
    if ($smcFunc['strlen']($draft['subject']) > 100)
        $draft['subject'] = $smcFunc['substr']($draft['subject'], 0, 100);

    // Modifying an existing draft, like hitting the save draft button or autosave enabled?
    if (!empty($id_draft) && !empty($draft_info))
    {
        $smcFunc['db_query']('', '
            UPDATE {db_prefix}user_drafts
            SET
                id_topic = {int:id_topic},
                id_board = {int:id_board},
                poster_time = {int:poster_time},
                subject = {string:subject},
                smileys_enabled = {int:smileys_enabled},
                body = {string:body},
                icon = {string:icon},
                locked = {int:locked},
                is_sticky = {int:is_sticky}
            WHERE id_draft = {int:id_draft}',
            array(
                'id_topic' => $topic_id,
                'id_board' => $board,
                'poster_time' => time(),
                'subject' => $draft['subject'],
                'smileys_enabled' => (int) $draft['smileys_enabled'],
                'body' => $draft['body'],
                'icon' => $draft['icon'],
                'locked' => $draft['locked'],
                'is_sticky' => $draft['sticky'],
                'id_draft' => $id_draft,
            )
        );

        // some items to return to the form
        $context['draft_saved'] = true;
        $context['id_draft'] = $id_draft;

        // cleanup
        unset($_POST['save_draft']);
    }
    // otherwise creating a new draft
    else
    {
        $id_draft = $smcFunc['db_insert']('',
            '{db_prefix}user_drafts',
            array(
                'id_topic' => 'int',
                'id_board' => 'int',
                'type' => 'int',
                'poster_time' => 'int',
                'id_member' => 'int',
                'subject' => 'string-255',
                'smileys_enabled' => 'int',
                'body' => (!empty($modSettings['max_messageLength']) && $modSettings['max_messageLength'] > 65534 ? 'string-' . $modSettings['max_messageLength'] : 'string-65534'),
                'icon' => 'string-16',
                'locked' => 'int',
                'is_sticky' => 'int'
            ),
            array(
                $topic_id,
                $board,
                0,
                time(),
                $user_info['id'],
                $draft['subject'],
                $draft['smileys_enabled'],
                $draft['body'],
                $draft['icon'],
                $draft['locked'],
                $draft['sticky']
            ),
            array(
                'id_draft'
            ),
            1
        );

        // everything go as expected?
        if (!empty($id_draft))
        {
            $context['draft_saved'] = true;
            $context['id_draft'] = $id_draft;
        }
        else
            $post_errors[] = 'draft_not_saved';

        // cleanup
        unset($_POST['save_draft']);
    }

    // if we were called from the autosave function, send something back
    if (!empty($id_draft) && isset($_REQUEST['xml']) && (!in_array('session_timeout', $post_errors)))
    {
        $context['draft_saved_on'] = time();
        XmlDraft($id_draft);
    }

    return true;
}

/**
 * Saves a PM draft in the user_drafts table
 * The core draft feature must be enabled, as well as the pm draft option
 * Determines if this is a new or and update to an existing pm draft
 *
 * @param string $post_errors A string of info about errors encountered trying to save this draft
 * @param array $recipientList An array of data about who this PM is being sent to
 * @return boolean false if you can't save the draft, true if we're doing this via XML more than 5 seconds after the last save, nothing otherwise
 */
function SavePMDraft(&$post_errors, $recipientList)
{
    global $context, $user_info, $smcFunc, $modSettings;

    // PM survey says ... can you stay or must you go
    if (empty($modSettings['drafts_pm_enabled']) || !allowedTo('pm_draft') || !isset($_POST['save_draft']))
        return false;

    // read in what you sent us
    $id_pm_draft = (int) $_POST['id_pm_draft'];
    $draft_info = ReadDraft($id_pm_draft, 1);

    // 5 seconds is the same limit we have for posting
    if (isset($_REQUEST['xml']) && !empty($draft_info['poster_time']) && time() < $draft_info['poster_time'] + 5)
    {
        $context['draft_saved_on'] = $draft_info['poster_time'];

        // Send something back to the javascript caller
        if (!empty($id_draft))
            XmlDraft($id_draft);

        return true;
    }

    // determine who this is being sent to
    if (isset($_REQUEST['xml']))
    {
        $recipientList['to'] = isset($_POST['recipient_to']) ? explode(',', $_POST['recipient_to']) : array();
        $recipientList['bcc'] = isset($_POST['recipient_bcc']) ? explode(',', $_POST['recipient_bcc']) : array();
    }
    elseif (!empty($draft_info['to_list']) && empty($recipientList))
        $recipientList = $smcFunc['json_decode']($draft_info['to_list'], true);

    // prepare the data we got from the form
    $reply_id = empty($_POST['replied_to']) ? 0 : (int) $_POST['replied_to'];
    $draft['body'] = $smcFunc['htmlspecialchars']($_POST['message'], ENT_QUOTES);
    $draft['subject'] = strtr($smcFunc['htmlspecialchars']($_POST['subject']), array("\r" => '', "\n" => '', "\t" => ''));

    // message and subject always need a bit more work
    preparsecode($draft['body']);
    if ($smcFunc['strlen']($draft['subject']) > 100)
        $draft['subject'] = $smcFunc['substr']($draft['subject'], 0, 100);

    // Modifying an existing PM draft?
    if (!empty($id_pm_draft) && !empty($draft_info))
    {
        $smcFunc['db_query']('', '
            UPDATE {db_prefix}user_drafts
            SET id_reply = {int:id_reply},
                type = {int:type},
                poster_time = {int:poster_time},
                subject = {string:subject},
                body = {string:body},
                to_list = {string:to_list}
            WHERE id_draft = {int:id_pm_draft}
            LIMIT 1',
            array(
                'id_reply' => $reply_id,
                'type' => 1,
                'poster_time' => time(),
                'subject' => $draft['subject'],
                'body' => $draft['body'],
                'id_pm_draft' => $id_pm_draft,
                'to_list' => $smcFunc['json_encode']($recipientList),
            )
        );

        // some items to return to the form
        $context['draft_saved'] = true;
        $context['id_pm_draft'] = $id_pm_draft;
    }
    // otherwise creating a new PM draft.
    else
    {
        $id_pm_draft = $smcFunc['db_insert']('',
            '{db_prefix}user_drafts',
            array(
                'id_reply' => 'int',
                'type' => 'int',
                'poster_time' => 'int',
                'id_member' => 'int',
                'subject' => 'string-255',
                'body' => 'string-65534',
                'to_list' => 'string-255',
            ),
            array(
                $reply_id,
                1,
                time(),
                $user_info['id'],
                $draft['subject'],
                $draft['body'],
                $smcFunc['json_encode']($recipientList),
            ),
            array(
                'id_draft'
            ),
            1
        );

        // everything go as expected, if not toss back an error
        if (!empty($id_pm_draft))
        {
            $context['draft_saved'] = true;
            $context['id_pm_draft'] = $id_pm_draft;
        }
        else
            $post_errors[] = 'draft_not_saved';
    }

    // if we were called from the autosave function, send something back
    if (!empty($id_pm_draft) && isset($_REQUEST['xml']) && !in_array('session_timeout', $post_errors))
    {
        $context['draft_saved_on'] = time();
        XmlDraft($id_pm_draft);
    }

    return;
}

/**
 * Reads a draft in from the user_drafts table
 * Validates that the draft is the user''s draft
 * Optionally loads the draft in to context or superglobal for loading in to the form
 *
 * @param int $id_draft ID of the draft to load
 * @param int $type Type of draft - 0 for post or 1 for PM
 * @param boolean $check Validate that this draft belongs to the current user
 * @param boolean $load Whether or not to load the data into variables for use on a form
 * @return boolean|array False if the data couldn't be loaded, true if it's a PM draft or an array of info about the draft if it's a post draft
 */
function ReadDraft($id_draft, $type = 0, $check = true, $load = false)
{
    global $context, $user_info, $smcFunc, $modSettings;

    // like purell always clean to be sure
    $id_draft = (int) $id_draft;
    $type = (int) $type;

    // nothing to read, nothing to do
    if (empty($id_draft))
        return false;

    // load in this draft from the DB
    $request = $smcFunc['db_query']('', '
        SELECT is_sticky, locked, smileys_enabled, icon, body , subject,
            id_board, id_draft, id_reply, to_list
        FROM {db_prefix}user_drafts
        WHERE id_draft = {int:id_draft}' . ($check ? '
            AND id_member = {int:id_member}' : '') . '
            AND type = {int:type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : '') . '
        LIMIT 1',
        array(
            'id_member' => $user_info['id'],
            'id_draft' => $id_draft,
            'type' => $type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
        )
    );

    // no results?
    if (!$smcFunc['db_num_rows']($request))
        return false;

    // load up the data
    $draft_info = $smcFunc['db_fetch_assoc']($request);
    $smcFunc['db_free_result']($request);

    // Load it up for the templates as well
    if (!empty($load))
    {
        if ($type === 0)
        {
            // a standard post draft?
            $context['sticky'] = !empty($draft_info['is_sticky']) ? $draft_info['is_sticky'] : '';
            $context['locked'] = !empty($draft_info['locked']) ? $draft_info['locked'] : '';
            $context['use_smileys'] = !empty($draft_info['smileys_enabled']) ? true : false;
            $context['icon'] = !empty($draft_info['icon']) ? $draft_info['icon'] : 'xx';
            $context['message'] = !empty($draft_info['body']) ? str_replace('<br>', "\n", un_htmlspecialchars(stripslashes($draft_info['body']))) : '';
            $context['subject'] = !empty($draft_info['subject']) ? stripslashes($draft_info['subject']) : '';
            $context['board'] = !empty($draft_info['id_board']) ? $draft_info['id_board'] : '';
            $context['id_draft'] = !empty($draft_info['id_draft']) ? $draft_info['id_draft'] : 0;
        }
        elseif ($type === 1)
        {
            // one of those pm drafts? then set it up like we have an error
            $_REQUEST['subject'] = !empty($draft_info['subject']) ? stripslashes($draft_info['subject']) : '';
            $_REQUEST['message'] = !empty($draft_info['body']) ? str_replace('<br>', "\n", un_htmlspecialchars(stripslashes($draft_info['body']))) : '';
            $_REQUEST['replied_to'] = !empty($draft_info['id_reply']) ? $draft_info['id_reply'] : 0;
            $context['id_pm_draft'] = !empty($draft_info['id_draft']) ? $draft_info['id_draft'] : 0;
            $recipients = $smcFunc['json_decode']($draft_info['to_list'], true);

            // make sure we only have integers in this array
            $recipients['to'] = array_map('intval', $recipients['to']);
            $recipients['bcc'] = array_map('intval', $recipients['bcc']);

            // pretend we messed up to populate the pm message form
            messagePostError(array(), array(), $recipients);
            return true;
        }
    }

    return $draft_info;
}

/**
 * Deletes one or many drafts from the DB
 * Validates the drafts are from the user
 * is supplied an array of drafts will attempt to remove all of them
 *
 * @param int $id_draft The ID of the draft to delete
 * @param boolean $check Whether or not to check that the draft belongs to the current user
 * @return boolean False if it couldn't be deleted (doesn't return anything otherwise)
 */
function DeleteDraft($id_draft, $check = true)
{
    global $user_info, $smcFunc;

    // Only a single draft.
    if (is_numeric($id_draft))
        $id_draft = array($id_draft);

    // can't delete nothing
    if (empty($id_draft) || ($check && empty($user_info['id'])))
        return false;

    $smcFunc['db_query']('', '
        DELETE FROM {db_prefix}user_drafts
        WHERE id_draft IN ({array_int:id_draft})' . ($check ? '
            AND  id_member = {int:id_member}' : ''),
        array(
            'id_draft' => $id_draft,
            'id_member' => empty($user_info['id']) ? -1 : $user_info['id'],
        )
    );
}

/**
 * Loads in a group of drafts for the user of a given type (0/posts, 1/pm's)
 * loads a specific draft for forum use if selected.
 * Used in the posting screens to allow draft selection
 * Will load a draft if selected is supplied via post
 *
 * @param int $member_id ID of the member to show drafts for
 * @param boolean|integer $topic If $type is 1, this can be set to only load drafts for posts in the specific topic
 * @param int $draft_type The type of drafts to show - 0 for post drafts, 1 for PM drafts
 * @return boolean False if the drafts couldn't be loaded, nothing otherwise
 */
function ShowDrafts($member_id, $topic = false, $draft_type = 0)
{
    global $smcFunc, $scripturl, $context, $txt, $modSettings;

    // Permissions
    if (($draft_type === 0 && empty($context['drafts_save'])) || ($draft_type === 1 && empty($context['drafts_pm_save'])) || empty($member_id))
        return false;

    $context['drafts'] = array();

    // has a specific draft has been selected?  Load it up if there is not a message already in the editor
    if (isset($_REQUEST['id_draft']) && empty($_POST['subject']) && empty($_POST['message']))
        ReadDraft((int) $_REQUEST['id_draft'], $draft_type, true, true);

    // load the drafts this user has available
    $request = $smcFunc['db_query']('', '
        SELECT subject, poster_time, id_board, id_topic, id_draft
        FROM {db_prefix}user_drafts
        WHERE id_member = {int:id_member}' . ((!empty($topic) && empty($draft_type)) ? '
            AND id_topic = {int:id_topic}' : (!empty($topic) ? '
            AND id_reply = {int:id_topic}' : '')) . '
            AND type = {int:draft_type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : '') . '
        ORDER BY poster_time DESC',
        array(
            'id_member' => $member_id,
            'id_topic' => (int) $topic,
            'draft_type' => $draft_type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
        )
    );

    // add them to the draft array for display
    while ($row = $smcFunc['db_fetch_assoc']($request))
    {
        if (empty($row['subject']))
            $row['subject'] = $txt['no_subject'];

        // Post drafts
        if ($draft_type === 0)
        {
            $tmp_subject = shorten_subject(stripslashes($row['subject']), 24);
            $context['drafts'][] = array(
                'subject' => censorText($tmp_subject),
                'poster_time' => timeformat($row['poster_time']),
                'link' => '<a href="' . $scripturl . '?action=post;board=' . $row['id_board'] . ';' . (!empty($row['id_topic']) ? 'topic=' . $row['id_topic'] . '.0;' : '') . 'id_draft=' . $row['id_draft'] . '">' . $row['subject'] . '</a>',
            );
        }
        // PM drafts
        elseif ($draft_type === 1)
        {
            $tmp_subject = shorten_subject(stripslashes($row['subject']), 24);
            $context['drafts'][] = array(
                'subject' => censorText($tmp_subject),
                'poster_time' => timeformat($row['poster_time']),
                'link' => '<a href="' . $scripturl . '?action=pm;sa=send;id_draft=' . $row['id_draft'] . '">' . (!empty($row['subject']) ? $row['subject'] : $txt['drafts_none']) . '</a>',
            );
        }
    }
    $smcFunc['db_free_result']($request);
}

/**
 * Returns an xml response to an autosave ajax request
 * provides the id of the draft saved and the time it was saved
 *
 * @param int $id_draft
 */
function XmlDraft($id_draft)
{
    global $txt, $context;

    header('content-type: text/xml; charset=' . (empty($context['character_set']) ? 'ISO-8859-1' : $context['character_set']));

    echo '<?xml version="1.0" encoding="', $context['character_set'], '"?>
    <drafts>
        <draft id="', $id_draft, '"><![CDATA[', $txt['draft_saved_on'], ': ', timeformat($context['draft_saved_on']), ']]></draft>
    </drafts>';

    obExit(false);
}

/**
 * Show all drafts of a given type by the current user
 * Uses the showdraft template
 * Allows for the deleting and loading/editing of drafts
 *
 * @param int $memID
 * @param int $draft_type
 */
function showProfileDrafts($memID, $draft_type = 0)
{
    global $txt, $scripturl, $modSettings, $context, $smcFunc, $options;

    // Some initial context.
    $context['start'] = isset($_REQUEST['start']) ? (int) $_REQUEST['start'] : 0;
    $context['current_member'] = $memID;

    // If just deleting a draft, do it and then redirect back.
    if (!empty($_REQUEST['delete']))
    {
        checkSession('get');
        $id_delete = (int) $_REQUEST['delete'];

        $smcFunc['db_query']('', '
            DELETE FROM {db_prefix}user_drafts
            WHERE id_draft = {int:id_draft}
                AND id_member = {int:id_member}
                AND type = {int:draft_type}',
            array(
                'id_draft' => $id_delete,
                'id_member' => $memID,
                'draft_type' => $draft_type,
            )
        );

        redirectexit('action=profile;u=' . $memID . ';area=showdrafts;start=' . $context['start']);
    }

    // Default to 10.
    if (empty($_REQUEST['viewscount']) || !is_numeric($_REQUEST['viewscount']))
        $_REQUEST['viewscount'] = 10;

    // Get the count of applicable drafts on the boards they can (still) see ...
    // @todo .. should we just let them see their drafts even if they have lost board access ?
    $request = $smcFunc['db_query']('', '
        SELECT COUNT(id_draft)
        FROM {db_prefix}user_drafts AS ud
            INNER JOIN {db_prefix}boards AS b ON (b.id_board = ud.id_board AND {query_see_board})
        WHERE id_member = {int:id_member}
            AND type={int:draft_type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : ''),
        array(
            'id_member' => $memID,
            'draft_type' => $draft_type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
        )
    );
    list ($msgCount) = $smcFunc['db_fetch_row']($request);
    $smcFunc['db_free_result']($request);

    $maxPerPage = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
    $maxIndex = $maxPerPage;

    // Make sure the starting place makes sense and construct our friend the page index.
    $context['page_index'] = constructPageIndex($scripturl . '?action=profile;u=' . $memID . ';area=showdrafts', $context['start'], $msgCount, $maxIndex);
    $context['current_page'] = $context['start'] / $maxIndex;

    // Reverse the query if we're past 50% of the pages for better performance.
    $start = $context['start'];
    $reverse = $_REQUEST['start'] > $msgCount / 2;
    if ($reverse)
    {
        $maxIndex = $msgCount < $context['start'] + $maxPerPage + 1 && $msgCount > $context['start'] ? $msgCount - $context['start'] : $maxPerPage;
        $start = $msgCount < $context['start'] + $maxPerPage + 1 || $msgCount < $context['start'] + $maxPerPage ? 0 : $msgCount - $context['start'] - $maxPerPage;
    }

    // Find this user's drafts for the boards they can access
    // @todo ... do we want to do this?  If they were able to create a draft, do we remove thier access to said draft if they loose
    //           access to the board or if the topic moves to a board they can not see?
    $request = $smcFunc['db_query']('', '
        SELECT
            b.id_board, b.name AS bname,
            ud.id_member, ud.id_draft, ud.body, ud.smileys_enabled, ud.subject, ud.poster_time, ud.icon, ud.id_topic, ud.locked, ud.is_sticky
        FROM {db_prefix}user_drafts AS ud
            INNER JOIN {db_prefix}boards AS b ON (b.id_board = ud.id_board AND {query_see_board})
        WHERE ud.id_member = {int:current_member}
            AND type = {int:draft_type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : '') . '
        ORDER BY ud.id_draft ' . ($reverse ? 'ASC' : 'DESC') . '
        LIMIT {int:start}, {int:max}',
        array(
            'current_member' => $memID,
            'draft_type' => $draft_type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
            'start' => $start,
            'max' => $maxIndex,
        )
    );

    // Start counting at the number of the first message displayed.
    $counter = $reverse ? $context['start'] + $maxIndex + 1 : $context['start'];
    $context['posts'] = array();
    while ($row = $smcFunc['db_fetch_assoc']($request))
    {
        // Censor....
        if (empty($row['body']))
            $row['body'] = '';

        $row['subject'] = $smcFunc['htmltrim']($row['subject']);
        if (empty($row['subject']))
            $row['subject'] = $txt['no_subject'];

        censorText($row['body']);
        censorText($row['subject']);

        // BBC-ilize the message.
        $row['body'] = parse_bbc($row['body'], $row['smileys_enabled'], 'draft' . $row['id_draft']);

        // And the array...
        $context['drafts'][$counter += $reverse ? -1 : 1] = array(
            'body' => $row['body'],
            'counter' => $counter,
            'board' => array(
                'name' => $row['bname'],
                'id' => $row['id_board']
            ),
            'topic' => array(
                'id' => $row['id_topic'],
                'link' => empty($row['id']) ? $row['subject'] : '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.0">' . $row['subject'] . '</a>',
            ),
            'subject' => $row['subject'],
            'time' => timeformat($row['poster_time']),
            'timestamp' => forum_time(true, $row['poster_time']),
            'icon' => $row['icon'],
            'id_draft' => $row['id_draft'],
            'locked' => $row['locked'],
            'sticky' => $row['is_sticky'],
        );
    }
    $smcFunc['db_free_result']($request);

    // If the drafts were retrieved in reverse order, get them right again.
    if ($reverse)
        $context['drafts'] = array_reverse($context['drafts'], true);

    // Menu tab
    $context[$context['profile_menu_name']]['tab_data'] = array(
        'title' => $txt['drafts_show'],
        'description' => $txt['drafts_show_desc'],
        'icon_class' => 'pm_icons inbox'
    );
    $context['sub_template'] = 'showDrafts';
}

/**
 * Show all PM drafts of the current user
 * Uses the showpmdraft template
 * Allows for the deleting and loading/editing of drafts
 *
 * @param int $memID
 */
function showPMDrafts($memID = -1)
{
    global $txt, $user_info, $scripturl, $modSettings, $context, $smcFunc, $options;

    // init
    $draft_type = 1;

    // If just deleting a draft, do it and then redirect back.
    if (!empty($_REQUEST['delete']))
    {
        checkSession('get');
        $id_delete = (int) $_REQUEST['delete'];
        $start = isset($_REQUEST['start']) ? (int) $_REQUEST['start'] : 0;

        $smcFunc['db_query']('', '
            DELETE FROM {db_prefix}user_drafts
            WHERE id_draft = {int:id_draft}
                AND id_member = {int:id_member}
                AND type = {int:draft_type}
            LIMIT 1',
            array(
                'id_draft' => $id_delete,
                'id_member' => $memID,
                'draft_type' => $draft_type,
            )
        );

        // now redirect back to the list
        redirectexit('action=pm;sa=showpmdrafts;start=' . $start);
    }

    // perhaps a draft was selected for editing? if so pass this off
    if (!empty($_REQUEST['id_draft']) && !empty($context['drafts_pm_save']) && $memID == $user_info['id'])
    {
        checkSession('get');
        $id_draft = (int) $_REQUEST['id_draft'];
        redirectexit('action=pm;sa=send;id_draft=' . $id_draft);
    }

    // Default to 10.
    if (empty($_REQUEST['viewscount']) || !is_numeric($_REQUEST['viewscount']))
        $_REQUEST['viewscount'] = 10;

    // Get the count of applicable drafts
    $request = $smcFunc['db_query']('', '
        SELECT COUNT(id_draft)
        FROM {db_prefix}user_drafts
        WHERE id_member = {int:id_member}
            AND type={int:draft_type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : ''),
        array(
            'id_member' => $memID,
            'draft_type' => $draft_type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
        )
    );
    list ($msgCount) = $smcFunc['db_fetch_row']($request);
    $smcFunc['db_free_result']($request);

    $maxPerPage = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
    $maxIndex = $maxPerPage;

    // Make sure the starting place makes sense and construct our friend the page index.
    $context['page_index'] = constructPageIndex($scripturl . '?action=pm;sa=showpmdrafts', $context['start'], $msgCount, $maxIndex);
    $context['current_page'] = $context['start'] / $maxIndex;

    // Reverse the query if we're past 50% of the total for better performance.
    $start = $context['start'];
    $reverse = $_REQUEST['start'] > $msgCount / 2;
    if ($reverse)
    {
        $maxIndex = $msgCount < $context['start'] + $maxPerPage + 1 && $msgCount > $context['start'] ? $msgCount - $context['start'] : $maxPerPage;
        $start = $msgCount < $context['start'] + $maxPerPage + 1 || $msgCount < $context['start'] + $maxPerPage ? 0 : $msgCount - $context['start'] - $maxPerPage;
    }

    // Load in this user's PM drafts
    $request = $smcFunc['db_query']('', '
        SELECT
            ud.id_member, ud.id_draft, ud.body, ud.subject, ud.poster_time, ud.id_reply, ud.to_list
        FROM {db_prefix}user_drafts AS ud
        WHERE ud.id_member = {int:current_member}
            AND type = {int:draft_type}' . (!empty($modSettings['drafts_keep_days']) ? '
            AND poster_time > {int:time}' : '') . '
        ORDER BY ud.id_draft ' . ($reverse ? 'ASC' : 'DESC') . '
        LIMIT {int:start}, {int:max}',
        array(
            'current_member' => $memID,
            'draft_type' => $draft_type,
            'time' => (!empty($modSettings['drafts_keep_days']) ? (time() - ($modSettings['drafts_keep_days'] * 86400)) : 0),
            'start' => $start,
            'max' => $maxIndex,
        )
    );

    // Start counting at the number of the first message displayed.
    $counter = $reverse ? $context['start'] + $maxIndex + 1 : $context['start'];
    $context['posts'] = array();
    while ($row = $smcFunc['db_fetch_assoc']($request))
    {
        // Censor....
        if (empty($row['body']))
            $row['body'] = '';

        $row['subject'] = $smcFunc['htmltrim']($row['subject']);
        if (empty($row['subject']))
            $row['subject'] = $txt['no_subject'];

        censorText($row['body']);
        censorText($row['subject']);

        // BBC-ilize the message.
        $row['body'] = parse_bbc($row['body'], true, 'draft' . $row['id_draft']);

        // Have they provide who this will go to?
        $recipients = array(
            'to' => array(),
            'bcc' => array(),
        );
        $recipient_ids = (!empty($row['to_list'])) ? $smcFunc['json_decode']($row['to_list'], true) : array();

        // @todo ... this is a bit ugly since it runs an extra query for every message, do we want this?
        // at least its only for draft PM's and only the user can see them ... so not heavily used .. still
        if (!empty($recipient_ids['to']) || !empty($recipient_ids['bcc']))
        {
            $recipient_ids['to'] = array_map('intval', $recipient_ids['to']);
            $recipient_ids['bcc'] = array_map('intval', $recipient_ids['bcc']);
            $allRecipients = array_merge($recipient_ids['to'], $recipient_ids['bcc']);

            $request_2 = $smcFunc['db_query']('', '
                SELECT id_member, real_name
                FROM {db_prefix}members
                WHERE id_member IN ({array_int:member_list})',
                array(
                    'member_list' => $allRecipients,
                )
            );
            while ($result = $smcFunc['db_fetch_assoc']($request_2))
            {
                $recipientType = in_array($result['id_member'], $recipient_ids['bcc']) ? 'bcc' : 'to';
                $recipients[$recipientType][] = $result['real_name'];
            }
            $smcFunc['db_free_result']($request_2);
        }

        // Add the items to the array for template use
        $context['drafts'][$counter += $reverse ? -1 : 1] = array(
            'body' => $row['body'],
            'counter' => $counter,
            'subject' => $row['subject'],
            'time' => timeformat($row['poster_time']),
            'timestamp' => forum_time(true, $row['poster_time']),
            'id_draft' => $row['id_draft'],
            'recipients' => $recipients,
            'age' => floor((time() - $row['poster_time']) / 86400),
            'remaining' => (!empty($modSettings['drafts_keep_days']) ? floor($modSettings['drafts_keep_days'] - ((time() - $row['poster_time']) / 86400)) : 0),
        );
    }
    $smcFunc['db_free_result']($request);

    // if the drafts were retrieved in reverse order, then put them in the right order again.
    if ($reverse)
        $context['drafts'] = array_reverse($context['drafts'], true);

    // off to the template we go
    $context['page_title'] = $txt['drafts'];
    $context['sub_template'] = 'showPMDrafts';
    $context['linktree'][] = array(
        'url' => $scripturl . '?action=pm;sa=showpmdrafts',
        'name' => $txt['drafts'],
    );
}

?>