badmanners/shimmie2
badmanners/shimmie2
Archived
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

argh sql syntaxes

Browse source
This commit is contained in:
Shish 2012-01-22 14:54:03 +00:00
parent 565b15c91e
commit ddf61714f6
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
ext/comment/main.php
View file

@ -374,9 +374,10 @@ class CommentList extends SimpleExtension {
$window = int_escape($config->get_int('comment_window')); $window = int_escape($config->get_int('comment_window'));
$max = int_escape($config->get_int('comment_limit')); $max = int_escape($config->get_int('comment_limit'));
// window doesn't work as an SQL param because it's inside quotes >_<
$result = $database->get_all("SELECT * FROM comments WHERE owner_ip = :remote_ip ". $result = $database->get_all("SELECT * FROM comments WHERE owner_ip = :remote_ip ".
"AND posted > date_sub(now(), interval :window minute)", "AND posted > now() - interval '$window minute'",
Array("remote_ip"=>$_SERVER['REMOTE_ADDR'], "window"=>$window)); Array("remote_ip"=>$_SERVER['REMOTE_ADDR']));
return (count($result) >= $max); return (count($result) >= $max);
} }