朋友圈评论严格限制参数传输2

5 months ago · 38677119dc
1 changed files with 4 additions and 1 deletions
--- a/app/enterprise/controller/Posts.php
+++ b/app/enterprise/controller/Posts.php
@ -507,12 +507,15 @@ class Posts extends BaseController
        $pid = $this->request->param('pid', 0);
        $reply_user_id = 0;
        if (!empty($pid)) {
-            $reply_comment = Comment::where('id', $pid)->field('user_id,type,relevance_id')->find();
+            $reply_comment = Comment::where('id', $pid)->field('user_id,type,relevance_id,delete_time')->find();
            if ($reply_comment) {
                $reply_user_id = $reply_comment['user_id'];
                if ($reply_comment['type'] != 1 || $reply_comment['relevance_id'] != $posts_id) {
                    return error(lang('system.fail'));
                }
+                if ($reply_comment['delete_time'] > 0) {
+                    return error(lang('posts.comment_del'));
+                }
            } else {
                return error(lang('system.fail'));
            }