<?
  /* Main include info */
  ini_set('include_path',$_SERVER['DOCUMENT_ROOT'] . "/../include/");
  include("site.inc");

  /* Assign the page title */
  $data[tpl]->assign("PAGE_TITLE","");

  /* Main defines */
  $data[tpl]->define(array(index=>"index/index.html"));
  $data[tpl]->define(array(body=>"comment.html"));

  //DoSession();

  $query = "SELECT username,firstname,lastname,email,notifications FROM users WHERE uid = $data[pid]";
  $res = mysql_query($query);

  if (mysql_num_rows($res) == 0) {
    Header("Location: $data[HTTP_REFERER]\n");
    exit;
    }

  $user = mysql_result($res,0,'username');
  $fname = mysql_result($res,0,'firstname');
  $lname = mysql_result($res,0,'lastname');
  $email = mysql_result($res,0,'email');
  $notifications = mysql_result($res,0,'notifications');

  $data['tpl']->assign("USER",$user);
  $data['tpl']->assign("PID",$data['pid']);

  $data['tpl']->assign("MESSAGE",$data['message']);

  $query = "SELECT uid,username FROM users WHERE username LIKE '$data[username]' AND password = '$data[password]'";

  $res = mysql_query($query);

  if (mysql_numrows($res) == 0) {
    if ($data['cmd'])
      $emsg = "Invalid username/password";
    }
  else {
    $uid = mysql_result($res,0,'uid');
    $username = mysql_result($res,0,'username');
    $pdate = time();
    $message = str_replace("\n","<BR>",$data['message']);

    $query = "INSERT INTO comments (oid,fid,message,pdate) VALUES($data[pid],$uid,'$message',$pdate)";
    mysql_query($query);
    $query = "INSERT INTO mail (oid,sid,subject,message,date) VALUES($data[pid],$uid,'New Comment From $username','$message',$pdate)";
    mysql_query($query);

    /* Send Message To User */
    if ($notifications[N_COMMENT] == 1)
      send_mail("$fname $lname <$email>","$fname,<BR><BR>You have received a new comment.<BR><BR>Follow this link <A HREF=\"http://www.tuve.tv/$user\">http://www.tuve.tv/$user</A> to see your new comments.<BR><BR>Sincerely,<BR>TUve Support","You have a new comment from $username","support@tuve.tv","TUve Support");

    Header("Location: /$user\n");
    exit;
    }

  $data['tpl']->assign("EMSG",$emsg);



  /* Parse and print */
  $data[tpl]->parse(BODY, array("body"));
  $data[tpl]->parse(INDEX, array("index"));
  $data[tpl]->FastPrint("INDEX");
?>