hasUserPermission( 'p_liberty_post_comments', true, true)) { $statusCode = 401; $XMLContent = KernelTools::tra( "You do not have the required permissions to post new comments" ); } elseif( $gContent->isCommentable() ) { /** * If we are receiving ajax comments request make sure our results also * know we are using ajax comments. This is an insurance measure that if * the originating content forced on ajax comments (even if off system * wide) that the return results continue to use ajax comments. Don't take * this out under penalty of death. */ $gBitSystem->setConfig( 'comments_ajax', 'y' ); $commentsParentId = $_REQUEST['parent_id']; $comments_return_url = $_REQUEST['comments_return_url']; include_once LIBERTY_PKG_INCLUDE_PATH.'comments_inc.php'; if( isset( $_REQUEST['post_comment_submit'] )) { if ($storeComment->loadComment()){ $statusCode = 200; $postComment = $storeComment->mInfo; $postComment['parsed_data'] = LibertyContent::parseDataHash( $postComment, $storeComment ); } else { //if store is requested but it fails for some reason - like captcha mismatch $statusCode = 400; } } else { //we assume preview request which we return as ok - our js callback knows what to do when preview is requested $statusCode = 200; } $gBitSmarty->assign( 'comment', $postComment ); $gBitSmarty->assign( 'commentsParentId', $commentsParentId ); if( !empty( $formfeedback )){ $statusCode = 400; $XMLContent = \Smarty::smarty_function_formfeedback( $formfeedback, $gBitSmarty ); } $XMLContent .= $gBitSmarty->fetch( 'bitpackage:liberty/display_comment.tpl' ); } else { $statusCode = 405; $XMLContent = KernelTools::tra( "Sorry, you can not post a comment here." ); } // We return XML with a status code $mRet = "".$statusCode."" .""; // Since we are returning xml we must report so in the header // we also need to tell the browser not to cache the page // see: http://mapki.com/index.php?title=Dynamic_XML // Date in the past header( "Expires: Mon, 26 Jul 1997 05:00:00 GMT" ); // always modified header( "Last-Modified: ".gmdate( "D, d M Y H:i:s" )." GMT" ); // HTTP/1.1 header( "Cache-Control: no-store, no-cache, must-revalidate" ); header( "Cache-Control: post-check=0, pre-check=0", false ); // HTTP/1.0 header( "Pragma: no-cache" ); //XML Header header( "content-type:text/xml" ); print_r( '' ); print_r( $mRet );