using System; using System.Globalization; using System.Web; using System.Web.Security; using BlogEngine.Core; using Resources; public partial class admin_Comments_Editor : System.Web.UI.Page { #region Private members private static string _id; private static Comment _comment; private static string _urlReferrer; private const string GRAVATAR_IMAGE = " $\"{1}\"$ "; private const string FLAG_IMAGE = " $\"{2}\"$ "; #endregion public Comment CurrentComment { get { return _comment; } } protected void Page_Load(object sender, EventArgs e) { if(!Page.IsPostBack) { _id = HttpContext.Current.Request.QueryString["id"]; _urlReferrer = HttpContext.Current.Request.UrlReferrer.ToString(); _comment = GetComment(_id); if (_urlReferrer.Contains("/Comments/Default.aspx")) { if (BlogSettings.Instance.EnableCommentsModeration && BlogSettings.Instance.IsCommentsEnabled) { if (BlogSettings.Instance.ModerationType == 1) BtnAction.Text = labels.spam; // "Comments: Auto-Moderated"; else BtnAction.Text = labels.approve; // "Comments: Manual Moderation"; } } if (_urlReferrer.Contains("/Comments/Approved.aspx")) BtnAction.Text = labels.reject; if (_urlReferrer.Contains("/Comments/Spam.aspx")) BtnAction.Text = labels.restore; BtnAction.Visible = BlogSettings.Instance.EnableCommentsModeration && BlogSettings.Instance.IsCommentsEnabled; if(_comment.Website != null) txtWebsite.Text = _comment.Website.ToString(); txtEmail.Text = _comment.Email; txtArea.Value = _comment.Content; } } #region Button clicks protected void BtnSaveClick(object sender, EventArgs e) { bool found = false; // Cast ToArray so the original collection isn't modified. foreach (Post p in Post.Posts.ToArray()) { // Cast ToArray so the original collection isn't modified. foreach (Comment c in p.Comments.ToArray()) { if (c.Id.ToString() == _id) { Uri website = null; if (!string.IsNullOrEmpty(txtWebsite.Text)) Uri.TryCreate(txtWebsite.Text.Trim(), UriKind.Absolute, out website); c.Content = txtArea.Value; c.Website = website; c.Email = txtEmail.Text; // Need to mark post as "changed" for it to get saved. string desc = p.Description; p.Description = (desc ?? string.Empty) + " "; p.Description = desc; p.Save(); found = true; break; } } if (found) break; } Reload(); } protected void BtnActionClick(object sender, EventArgs e) { if (BlogSettings.Instance.EnableCommentsModeration && BlogSettings.Instance.IsCommentsEnabled) { bool found = false; foreach (Post p in Post.Posts.ToArray()) { foreach (Comment c in p.Comments.ToArray()) { if (c.Id.ToString() == _id) { string desc = p.Description; p.Description = (desc ?? string.Empty) + " "; p.Description = desc; if (_urlReferrer.Contains("/Comments/Default.aspx")) { c.IsApproved = BlogSettings.Instance.ModerationType != 1; } if (_urlReferrer.Contains("/Comments/Approved.aspx")) c.IsApproved = false; if (_urlReferrer.Contains("/Comments/Spam.aspx")) c.IsApproved = true; // moderator should match anti-spam service if (BlogSettings.Instance.ModerationType == 1) CommentHandlers.ReportMistake(c); // now moderator can be set to admin role c.ModeratedBy = HttpContext.Current.User.Identity.Name; p.Save(); found = true; break; } } if (found) break; } } Reload(); } protected void BtnDeleteClick(object sender, EventArgs e) { DeleteCurrentComment(); Reload(); } protected void btnBlockIP_Click(object sender, EventArgs e) { BlockOrAllow("Block"); } protected void btnAllowIP_Click(object sender, EventArgs e) { BlockOrAllow("Allow"); } #endregion #region Private methods protected Comment GetComment(string id) { foreach (Post p in Post.Posts) { foreach (Comment c in p.Comments) { if (c.Id.ToString() == id) { return c; } } } return null; } protected void BlockOrAllow(string action) { ExtensionSettings _filters = ExtensionManager.GetSettings("MetaExtension", "BeCommentFilters"); if (_filters != null) { string id = Guid.NewGuid().ToString(); string[] f = new string[] { id, action, "IP", "Equals", CurrentComment.IP }; _filters.AddValues(f); ExtensionManager.SaveSettings("MetaExtension", _filters); } if(action == "Block") { CurrentComment.IsApproved = false; CurrentComment.ModeratedBy = HttpContext.Current.User.Identity.Name; } Reload(); } protected void DeleteCurrentComment() { bool found = false; for (int i = 0; i < Post.Posts.Count; i++) { for (int j = 0; j < Post.Posts[i].Comments.Count; j++) { if (Post.Posts[i].Comments[j].Id == _comment.Id) { Post.Posts[i].RemoveComment(Post.Posts[i].Comments[j]); found = true; break; } } if (found) { break; } } } protected string Gravatar(int size) { if (BlogSettings.Instance.Avatar == "none") return null; if (String.IsNullOrEmpty(_comment.Email) || !_comment.Email.Contains("@")) { if (_comment.Website != null && _comment.Website.ToString().Length > 0 && _comment.Website.ToString().Contains("http://")) { return string.Format(CultureInfo.InvariantCulture, " $\"{1}\"$ ", Server.UrlEncode(_comment.Website.ToString()), _comment.Email); } return " $\""$ "; } string hash = FormsAuthentication.HashPasswordForStoringInConfigFile(_comment.Email.ToLowerInvariant().Trim(), "MD5").ToLowerInvariant(); string gravatar = "http://www.gravatar.com/avatar/" + hash + ".jpg?s=" + size + "&d="; string link = string.Empty; switch (BlogSettings.Instance.Avatar) { case "identicon": link = gravatar + "identicon"; break; case "wavatar": link = gravatar + "wavatar"; break; default: link = gravatar + "monsterid"; break; } return string.Format(CultureInfo.InvariantCulture, GRAVATAR_IMAGE, link, _comment.Author); } protected string Flag { get { if (!string.IsNullOrEmpty(CurrentComment.Country)) { return string.Format(FLAG_IMAGE, Utils.RelativeWebRoot, CurrentComment.Country, FindCountry(CurrentComment.Country)); } return null; } } string FindCountry(string isoCode) { foreach (CultureInfo ci in CultureInfo.GetCultures(CultureTypes.SpecificCultures)) { RegionInfo ri = new RegionInfo(ci.Name); if (ri.TwoLetterISORegionName.Equals(isoCode, StringComparison.OrdinalIgnoreCase)) { return ri.DisplayName; } } return isoCode; } protected void Reload() { ClientScript.RegisterClientScriptBlock(GetType(), "ClientScript", ""); } #endregion }