private function mark_pm()
{
global $userdata;
switch (form_sanitizer($_POST['mark'], "")) {
case "mark_all":
// mark all as read
if (!empty($this->info['items'])) {
foreach ($this->info['items'] as $message_id => $array) {
$ownership = isnum($message_id) && dbcount("(message_id)", DB_MESSAGES, "message_id='" . intval($message_id) . "' and message_user='" . intval($userdata['user_id']) . "'") ? TRUE : FALSE;
if ($ownership && isset($this->info['items'][$message_id])) {
dbquery("UPDATE " . DB_MESSAGES . " SET message_read='1' WHERE message_id='" . intval($message_id) . "'");
}
}
redirect(clean_request("", array("folder"), TRUE));
}
break;
case "unmark_all":
// mark all as unread
if (!empty($this->info['items'])) {
foreach ($this->info['items'] as $message_id => $pmData) {
$ownership = isnum($message_id) && dbcount("(message_id)", DB_MESSAGES, "message_id='" . intval($message_id) . "' and message_user='" . intval($userdata['user_id']) . "'") ? TRUE : FALSE;
if ($ownership && isset($this->info['items'][$message_id])) {
dbquery("UPDATE " . DB_MESSAGES . " SET message_read='0' WHERE message_id='" . intval($message_id) . "'");
}
}
redirect(clean_request("", array("folder"), TRUE));
}
break;
case "mark_read":
$messages = explode(",", rtrim(form_sanitizer($_POST['selectedPM'], "", "selectedPM"), ","));
if (!empty($messages)) {
foreach ($messages as $message_id) {
$ownership = isnum($message_id) && dbcount("(message_id)", DB_MESSAGES, "message_id='" . intval($message_id) . "' and message_user='" . intval($userdata['user_id']) . "'") ? TRUE : FALSE;
if ($ownership && isset($this->info['items'][$message_id])) {
dbquery("UPDATE " . DB_MESSAGES . " SET message_read='1' WHERE message_id='" . intval($message_id) . "'");
}
}
}
redirect(clean_request("", array("folder"), TRUE));
break;
case "mark_unread":
$messages = explode(",", rtrim(form_sanitizer($_POST['selectedPM'], "", "selectedPM"), ","));
if (!empty($messages)) {
foreach ($messages as $message_id) {
$ownership = isnum($message_id) && dbcount("(message_id)", DB_MESSAGES, "message_id='" . intval($message_id) . "' and message_user='" . intval($userdata['user_id']) . "'") ? TRUE : FALSE;
if ($ownership && isset($this->info['items'][$message_id])) {
dbquery("UPDATE " . DB_MESSAGES . " SET message_read='0' WHERE message_id='" . intval($message_id) . "'");
}
}
}
redirect(clean_request("", array("folder"), TRUE));
}
}