* * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, * MA 02110-1301, USA. * * */ ini_set('display_errors', '1'); ini_set('error_reporting', E_ALL); require 'Commentaires.php'; /** * Cette classe hérite de la classe Commentaires. * * Elle sert à gérer les commantaires des news du site de la HHH. ___ ___ ___ __| | | |__ ___ / / / /| | | |\ \ \ \ / / / / | |___| | \ \ \ \ / /__/ / | | \ \__\ \ / __ / | ___ | \ __ \ / / / / | | | | \ \ \ \ _________/__/ /__/_____|___| |___|_____\__\ \__\__________ |############################################################| | HARDCORE HENTAI HEADQUARTER | |############################################################| |###########_____SITE V3 - POLE DEVELOPPEMENT_____###########| * @author Yumemi * @version 1.0 * */ class CommentNews extends Commentaires { public function ajouterCom($pseudo, $commentaire, $idNews) { //Protection des variables //Plus besoin de mysl_real_escape_string en php5, //la fonction execute protège les variables de l'injection sql $pseu = htmlspecialchars($pseudo); $com = htmlspecialchars($commentaire); try { $ajout = $this->connect->prepare('INSERT INTO commentaire_news SET pseudo = :pseu, commentaire = :comm, id_news = :idNews, timestamp = :time'); $ajout->bindValue(':pseu', $pseu); $ajout->bindValue(':comm', $com); $ajout->bindValue('idNews', $idNews, PDO::PARAM_INT); $ajout->bindValue(':time', time(), PDO::PARAM_INT); $ajout->execute(); $ajout->closeCursor(); echo 'Votre commentaire a bien été ajouté'; } catch(Exception $e) { exit('Erreur : ' . $e->getMessage()); } } public function supprimerCom($idCom) { $del = $this->connect->exec('DELETE FROM commentaire_news WHERE id = '. $idCom); $del->closeCursor(); echo 'Le commentaire a été supprimé.'; } public function lister($id) { $list = $this->connect->query('SELECT * FROM commentaire_news WHERE id_news = '. $id . ' ORDER BY timestamp DESC'); echo'
×
Commentaires
'; while($listeCom = $list->fetch(PDO::FETCH_ASSOC)) { $comment = str_replace('</p><div class="quote">', '', $listeCom['commentaire']); $comment = str_replace('<br/>', ' ', $comment); $comment = str_replace('</div><p>', ' ', $comment); $comment = str_replace('&quot;', '', $comment); $comment = str_replace('<i>"', '', $comment); $comment = str_replace('</i>', '', $comment); $comment = str_replace('<i>', '', $comment); $comment = str_replace('<b>', '', $comment); $comment = str_replace('</b>', '', $comment); echo '
Par '.$listeCom['pseudo'].', le '. date('d/m/Y - H', $listeCom['timestamp']) .'h'.date('i', $listeCom['timestamp']); echo '

'.nl2br(stripslashes($comment)). '

'; } echo '
'; $list->closeCursor(); } } ?>