本帖最后由 道法自然 于 2012-8-14 11:08 编辑
//SQL:ALTER TABLE `reviews_description` ADD `reviews_reply` TEXT NOT NULL//文件:\admin\reviews.php
//功能:后台显示,修改[code]reviews_reply = zen_db_prepare_input(_POST[‘reviews_reply’]);
$db->Execute(“update " . TABLE_REVIEWS_DESCRIPTION . "
set reviews_text = '” . zen_db_input($reviews_text) . “',
reviews_reply = '” . zen_db_input($reviews_reply) . “’
where reviews_id = '” . (int)$reviews_id . “'”);
if ($action == ‘edit’) {
rID = zen_db_prepare_input(_GET[‘rID’]);
$reviews = $db->Execute(“select r.reviews_id, r.products_id, r.customers_name, r.date_added,
r.last_modified, r.reviews_read, rd.reviews_text, r.reviews_rating,rd.reviews_reply
from " . TABLE_REVIEWS . " r, " . TABLE_REVIEWS_DESCRIPTION . " rd
where r.reviews_id = '” . (int)$rID . “’ and r.reviews_id = rd.reviews_id”);
<?php echo zen_draw_textarea_field('reviews_text', 'soft', '70', '15', stripslashes($rInfo->reviews_text)); ?> <?php echo zen_draw_textarea_field('reviews_reply', 'soft', '70', '15', stripslashes($rInfo->reviews_reply)); ?>
} elseif (action == 'preview') {
if (zen_not_null(_POST)) {
rInfo = new objectInfo(_POST);
} else {
rID = zen_db_prepare_input(_GET[‘rID’]);
$reviews = $db->Execute(“select r.reviews_id, r.products_id, r.customers_name, r.customers_email,r.customers_ip, r.date_added,
r.last_modified, r.reviews_read, rd.reviews_text,rd.reviews_reply,
r.reviews_rating
from " . TABLE_REVIEWS . " r, " . TABLE_REVIEWS_DESCRIPTION . " rd
where r.reviews_id = '” . (int)$rID . “’
and r.reviews_id = rd.reviews_id”);
(TEXT_OF_5_STARS, $rInfo->reviews_rating)); ?> [<?php echo sprintf(TEXT_OF_5_STARS, $rInfo->reviews_rating); ?>]
<?php if($rInfo->reviews_reply!= null){?> <?php echo '$sql = "INSERT INTO " . TABLE_REVIEWS . " (products_id, customers_id,customers_email,review_title,customers_name, reviews_rating, date_added, status,customers_ip)
VALUES (:productsID, :customersID,:customers_email,:review_title, :customersName, :rating, now(), " . $review_status . “,:customers_ip)”;
$sql = $db->bindVars(sql, ':productsID', _GET[‘products_id’], ‘integer’);
$sql = $db->bindVars(sql, ':customersID', (isset(_SESSION[‘customer_id’]) || _SESSION['customer_id']=="")?0:_SESSION[‘customer_id’], ‘integer’);
// $sql = $db->bindVars($sql, ‘:customersName’, $customer->fields[‘customers_firstname’] . ’ ’ . $customer->fields[‘customers_lastname’], ‘string’);
$sql = $db->bindVars($sql, ‘:customers_email’, $customer_email, ‘string’);
$sql = $db->bindVars($sql, ‘:review_title’, $review_title, ‘string’);
$sql = $db->bindVars($sql, ‘:customersName’,$customer_name, ‘string’);
$sql = $db->bindVars($sql, ‘:rating’, $rating, ‘string’);
$sql = $db->bindVars($sql, ‘:customers_ip’, $customers_ip, ‘string’);
$db->Execute($sql);[/code]//文件:\includes\templates\ezppt\templates\tpl_product_reviews_default.php
//功能:显示reviews_reply内容[code]
//功能:读取reviews_reply字段并赋值[code]$reviews_query_raw = "SELECT r.reviews_id, left(rd.reviews_text, 400) as reviews_text, r.reviews_rating, r.date_added, r.customers_name,rd.reviews_reply
FROM " . TABLE_REVIEWS . " r, " . TABLE_REVIEWS_DESCRIPTION . " rd
WHERE r.products_id = :productsID
AND r.reviews_id = rd.reviews_id
AND rd.languages_id = :languagesID " . $review_status . "
ORDER BY r.reviews_id desc";
$reviews_query_raw = $db->bindVars(reviews_query_raw, ':productsID', _GET[‘products_id’], ‘integer’);
$reviews_query_raw = $db->bindVars(reviews_query_raw, ':languagesID', _SESSION[‘languages_id’], ‘integer’);
$reviews_split = new splitPageResults($reviews_query_raw, MAX_DISPLAY_NEW_REVIEWS);
$reviews = $db->Execute($reviews_split->sql_query);
$reviewsArray = array();
while (!$reviews->EOF) {
$reviewsArray = array(‘id’=>$reviews->fields[‘reviews_id’],
‘customersName’=>$reviews->fields[‘customers_name’],
‘dateAdded’=>$reviews->fields[‘date_added’],
‘reviewsText’=>$reviews->fields[‘reviews_text’],
‘reviewsReply’=>$reviews->fields[‘reviews_reply’],//@steven added
‘reviewsRating’=>$reviews->fields[‘reviews_rating’]);
$reviews->MoveNext();
}[/code]//注意,以上代码并非连续的,请在适当位置进行修改.