#!/usr/bin/perl

use Jcode;
require 'petit-ini.cgi';
require 'petit-lib.pl';

&axsCheck;

require 'cgi-lib.pl';
ReadParse(*form);
$cgipath="entry.cgi";

$buffer = $ENV{'QUERY_STRING'};
($ent_id,$ent_url) = split(/\&/,$buffer);

$mode = $form{'mode'};
$id = $form{'id'};
$ent = $form{'ent'};

if($ent_id){$ID ="$ent_id";}
else{$ID = "$id";}

if($ent_url){$ENT_URL ="$ent_url";}
else{$ENT_URL = "$ent";}

$lockfile = './lock/petit.lock';


if($mode eq "regist"){&regist;}
else{&comment;}


sub comment{

local($Name,$Mail,$Url) = &get_cookie;
	
&lock; 
open (IN,"log/$ID.dat");
@log_data = <IN>;
close IN;
&unlock; 

$style_data = "$URLdata"."entry-style.dat";
print "Content-type: text/html\n\n";

print <<"HTML";

document.write('<link href= "$entry_style" rel="stylesheet" type="text/css" />');
document.write('<div align="center">');
document.write('<div id="com-all">');
document.write('<div id="com-title">$title</div>');
document.write('<table width="100%"><tr><td align="center">');
HTML


if(@log_data){
if($sort_d){@log_data = reverse @log_data;}

foreach $dat(@log_data){

$dat =~ s/\r//;
$dat =~ s/\n//;
Jcode::convert(\$dat, $text_enc); 
@line = split(/<>/,$dat);

$mail_pic = $URLdata."images/mail1.png";
$mail_pic2 = $URLdata."images/mail2.png";
$site_pic = $URLdata."images/site1.png";
$site_pic2 = $URLdata."images/site2.png";

$mailto = "mailto:" . $line[2];
$siteto = "$line[3]";

if($line[2]){
	$mail_d = "<a href= $mailto><img src= $mail_pic border=\"0\" /></a>";
	
	}else{
	$mail_d = "<img src=$mail_pic2 border=\"0\" />";
	}
	if($line[3]){
	$www = "<a href= $siteto target=\"_blank\"><img src= $site_pic border=\"0\" /></a>";
	
	}else{
	$www = "<img src= $site_pic2 border=\"0\" />";
	}
	
	$time_zone = $line[5] ;
	%TD=&get_date(0,$time_zone);
	$time_num="$TD{year}/$TD{mon}/$TD{day} $TD{hour}:$TD{min}";

print <<"HTML";
document.write('<table  border="0" class="com-box">');
document.write('<tr>');
document.write('<td colspan="2" class="com-name">$mark$line[1]</td>');
document.write('</tr>');
document.write('<tr>');
document.write('<td colspan="2"  class="com-mess" height="30">$line[4]</td>');
document.write('</tr>');
document.write('<tr >');
document.write('<td   class="com-time" width="90%">$time_num</td>');
document.write('<td  align="right"  width="10%">');
document.write('<table  border="0" cellspacing="0" cellpadding="1" height="10">');
document.write('<tr>');
document.write('<td class="com-pic">$mail_d</td>');
document.write('<td class="com-pic">$www</td>');
document.write('</tr>');
document.write('</table></td>');
document.write('</tr>');
document.write('</table>');

HTML
}
}

$del_path = $URLdata ."delete.cgi";
$cgi_path = $URLdata ."$cgipath";
$login = $URLdata."images/login.png";
$post = $URLdata."images/post.png";
$reload = $URLdata."images/reload.png";

print <<"HTML";
document.write('<table height="30"><tr><td>');
document.write('<input type="image" src="$reload" value="reload" alt="reroad" onclick="location.reload()"');
document.write('</td></tr></table>');
document.write('</td></tr></table>');
document.write('<div id="com-postbox">');
document.write('<form method="POST" action="$cgi_path" name="form1">');

document.write('<table border="0" cellspacing="0" cellpadding="2">');
document.write('<tr>');
document.write('<td class="com-item">Name<br />');
document.write(' <input type="text" name="a1" size="35" maxlength="40" value="$Name"></td>');
document.write('</tr>');
document.write('<tr>');
document.write('<td class="com-item">Mail<br />');
document.write('<input type="text" name="a2" size="35" maxlength="40" value="$Mail"></td>');
document.write('</tr>');
document.write('<tr>');
document.write('<td class="com-item">Site<br />');
document.write('<input type="text" name="a3" size="35" maxlength="100" value="$Url"></td>');
document.write('</tr>');
document.write('<tr>');
document.write('<td class="com-item">Message<br /><textarea name="a4" cols="35" rows="8" style="font-family:Osaka,Verdana,Arial;"></textarea></td>');
document.write('</tr>');
document.write('<tr>');
document.write('<td align="center">');
document.write(' <input type="hidden" name="mode" value="regist">');
document.write('<input type="hidden" name="id" value="$ID">');
document.write('<input type="hidden" name="ent" value="$ENT_URL">');
document.write('<input type="image" src="$post" value="POST" alt="POST">');
document.write('</td>');
document.write('</tr>');
document.write('</table>');
document.write('</form>');
document.write('<table  border="0" width="100%" height="10">');
document.write('<tr>');
document.write('<td align="left"></td>');
document.write('<td align="right" class="com-pic"><a href="$del_path?$ID" target="_blank"><img src="$login" border="0" /></a></td>');
document.write('</tr>');
document.write('</table>');
document.write('</div>');
document.write('</div>');	
document.write('</div>');
HTML


}#end_comment


sub regist{
 if ($form{'a4'} !~ /[\x8E\xA1-\xFE]/) {
&error("日本語じゃないとだめだよ。Japanese only: denied.");
}

#カンマ区切りで追加してください。""ダブルクオーテーションがいります。
@ng_word = ("casino","poker","online","gambl","roulette","pussy","anal","sex","nudist","naked","game","tits","href");

foreach $word(@ng_word){
if ($form{'a4'} =~ /$word/) {
error("NGワードを含でるよ。contains NG word : denied.");
}
}

if(!$form{'a1'}){&error("name縺瑚ィ伜�･縺輔ｌ縺ヲ縺�縺ｾ縺帙ｓ縲�");}
if(!$form{'a4'}){&error("message縺瑚ィ伜�･縺輔ｌ縺ヲ縺�縺ｾ縺帙ｓ縲�");}
if (length($form{'a4'}) > 1000) { &error("謚慕ィソ譁�蜒�玲焚繧ェ繝シ繝舌�ｼ縺ァ縺吶��"); }

$reffer = $form{'reffer'};


&lock; 
open (IN,"log/$ID.dat");
@log_data = <IN>;
close IN;

$cnt = @log_data;
$cnt ++;

@keys = keys %form; 
sub bykeys {$a cmp $b};
@keys = sort bykeys @keys; 

foreach (@keys){

	$form{$_} =~ s/&/&amp;/g;
	$form{$_} =~ s/</&lt;/g;
	$form{$_} =~ s/>/&gt;/g;
	$form{$_} =~ s/\"/&quot;/g;
	$form{$_} =~ s/\'/&rsquo;/g;
	$form{$_} =~ s/\r\n/<br \/>/g;
	$form{$_} =~ s/\r/<br \/>/g;
	$form{$_} =~ s/\n/<br \/>/g;
	$form{$_}  =~ s/\\/\\\\/ig;
	Jcode::convert($form{$_}, $text_enc); 
	push @form_dat , $form{$_}; 
}


$time_d = time;
$IP = $ENV{'REMOTE_ADDR'};
$com_id = "$ID"."_$cnt";
 &set_cookie($form_dat[0],$form_dat[1],$form_dat[2]);

$URL_LK_mail  = $form_dat[3]; 
&auto_link($form_dat[3]); 

 $log_data = "$com_id<>$form_dat[0]<>$form_dat[1]<>$form_dat[2]<>$form_dat[3]<>$time_d<>$IP\n";

 
 @log_line = split(/<>/,$log_data[0]);
 if( $log_line[1] eq  $form_dat[0] and $log_line[4] eq  $form_dat[3]){&error("莠碁�肴兜辜Bソ縺ァ縺吶��");}
 
 
 unshift (@log_data, $log_data);

 
open (OUT,">log/$ID.dat") || &error("log繝輔か繝ォ繝�縺ョ繝代�ｼ繝溘ャ繧キ繝ァ繝ウ繧堤「コ隱阪＠縺ヲ荳九＆縺�縲�");
print OUT @log_data;
close OUT;
chmod(0666,"log/$ID.dat"); 

open (IN,"log/petit-recent.dat");
@recent_data = <IN>;
close IN;

if(@recent_data >= $recent_log ){$#recent_data = ($recent_log -2);}
$recent_data = "$com_id<>$form_dat[0]<>$ENT_URL<>$ID<>$time_d<>$IP<>$form_dat[2]\n";

open (OUT,">log/petit-recent.dat") || &error("log繝輔か繝ォ繝�縺ョ繝代�ｼ繝溘ャ繧キ繝ァ繝ウ繧堤「コ隱阪＠縺ヲ荳九＆縺�縲�");
print OUT $recent_data;
foreach(@recent_data ){print OUT $_;}
close OUT;
chmod(0666,"log/petit-recent.dat"); 

&unlock; 

$timer = time;


&header;
print <<"HTML";
<script language="JavaScript">
<!--
location.href="$server_d$ENT_URL/$ID";
// -->
</script>
HTML
&footer;




if($ToMailadd){&mail;}

}#end_regist

sub OK{

&header;
print <<"HTML";

<div id="all"> 
 <div id="title">$title</div>
 
 <div align="center" id="item">
<table border="0" cellspacing="0" cellpadding="2" height="250">
<tr>
<td class="mess" align="center">譖ク縺崎セシ縺ソ螳御コ�縺励＜Z縺励◆�ｼ�<br /><br />
<a href="$cgipath?$ID&$ENT_URL">繧ウ繝。繝ウ繝医ｒ隕九ｋ</td>
</tr>
</table>
</div>
 
 </div>
HTML

&footer

}

##---繝。繝シ繝ォ
sub mail {
#=====================繝。繝シ繝ォ蜃ヲ逅�===============================================


require 'mimew.pl';

%TD=&get_date(0,$line[5]);
$time_num="$TD{year}/$TD{mon}/$TD{day} $TD{hour}:$TD{min}";


$entry_url = "$server_d"."$ENT_URL/"."$ID/";
$com_url = "$URLdata"."a.cgi?"."$ID"."&"."$ENT_URL";
# 騾∽ソ。縺吶ｋ繝。繝シ繝ォ縺ョ譛ャ譁�繧剃ｽ懈��

	foreach $dat(@form_dat,$URL_LK_mail){
	$dat =~ s/&amp;/&/g;
	$dat =~ s/&lt;/</g;
	$dat =~ s/&gt;/>/g;
	$dat =~ s/&quot;/\"/g;
	$dat =~ s/<br \/>/\n/g;
	$dat =~ s/&rsquo;/\'/g;
}


#+++++++++++++++++++++++++++邂。逅�艫Rコ逕ィ繝。繝シ繝ォ+++++++++++++++++++
$mailmess_a = <<"EOL";

繧ウ繝。繝ウ繝医′縺、縺阪∪縺励◆�ｼ


------------------Comment----------------------
$form_dat[0]

$URL_LK_mail

$time_num
-----------------------------------------------------

------------------User Info-----------------------
Mail  --�ｼ�$form_dat[1]
URL  --�ｼ�$form_dat[2]
IP  -----�ｼ�$IP
-----------------------------------------------------

繧ウ繝。繝ウ繝医�壹ャV繧ク繧定ヲ九ｋ�ｼ
$com_url

縺薙�ｮ繧ウ繝。繝ウ繝医�ｮ繧ィ繝ウ繝医Μ繧定ヲ九ｋ�ｼ
$entry_url

EOL


#++++++++++++++++++++++++++++++++++++++++++++++++++++++



##############################
#繝。繝シ繝ォ繧帝�∽ソ。縺吶ｋ縲

$Subject_a = jcode($Subject_a)->mime_encode;
$mailmess_a = jcode($mailmess_a)->jis;

#邂。逅�艫Rコ逕ィ繧帝�∽ソ。
open SMTP,"| $SendmailCmnd"|| &error("繝。繝シ繝ォ騾∽ソ。縺ォ螟ア謨励＠縺セ縺励◆縲�"); #sendmail繧ウ繝槭Φ繝峨∈繝�繝ｼ繧ソ繧呈ク。縺
print SMTP <<"EOL";
From: $mail_from<$ToMailadd >
To: $ToMailadd
Subject: $Subject_a
Return-Path:$ToMailadd
Content-Type: text/plain; charset=iso-2022-jp
$mailmess_a
EOL
close SMTP;

}

__END__