From 0927d9e681d4e0120b15dadd3893cba60ef678e7 Mon Sep 17 00:00:00 2001 From: Jesse Morgan Date: Wed, 20 Jul 2011 14:48:17 -0700 Subject: Moderators can now delete live posts. Accessing the moderate post page redirects to login if needed. --- htdocs/postings.php | 21 +++++++++++++-------- 1 file changed, 13 insertions(+), 8 deletions(-) (limited to 'htdocs/postings.php') diff --git a/htdocs/postings.php b/htdocs/postings.php index 8dc42cc..ec98ddc 100644 --- a/htdocs/postings.php +++ b/htdocs/postings.php @@ -10,6 +10,12 @@ require_once "src/base.inc.php"; +// Check if we need to login first... +if (isset($_GET['moderate']) and !isset($_SESSION['currentUser'])) { + header('Location: ' . $CONFIG['urlroot'].'/moderate/login.php'); + exit(); +} + require_once "src/header.inc.php"; @@ -28,6 +34,7 @@ if (!is_numeric($id)) { // Get the post. $post = Post::getById($id); + if (!$post or (!isset($_SESSION['currentUser']) and $post->getStage() != 'approved')) { errorNotFound(); } @@ -46,14 +53,12 @@ if (isset($_SESSION['currentUser'])) { } else { // Post already approved - if ($_SESSION['currentUser']->isAdmin()) { - echo "
Administrative options:
"; - - printf("delete post
" - . "reject post", - $post->getid(), $post->getid()); - echo "
"; - } + echo "
Administrative options:
"; + + printf("delete post
" + . "reject post", + $post->getid(), $post->getid()); + echo "
"; } } -- cgit v1.2.3