#!/usr/bin/perl -Tw
############################################################
## Written and copyright 2002 by 
## Jacqueline D. Hamilton (kira@cgi101.com)
##
## This code is excerpted from "CGI Programming 201"
## (http://www.cgi101.com/advanced)
##
## You may use this code on your own website, however
## you may not publish or sell any copy or derivative work
## without permission of the author.
#############################################################
use strict;
use lib '.';
use MyBoard;

# declare variables
my($forum_id, $sth, $rv, $f, $count);

# here we untaint the query string
if ($cgi->param('forum') =~ /^(\d+)$/) {
   $forum_id = $1;
} else {
   &dienice($cgi->param('forum') . " isn't a valid forum number.");
}

# get the name & info on this forum from the forums table	
$sth = $dbh->prepare("select * from forums where id=$forum_id") or &dbdie;
$rv = $sth->execute;
$f = $sth->fetchrow_hashref;
&do_header("$f->{name} Forum");
print qq(<h2>$f->{name} Forum</h2>\n);
print $f->{desc};
&do_nav;

# fetch the individual messages in the forum, and display the info.
$count = 0;
$sth = $dbh->prepare("select * from messages where forum=$forum_id and 
thread_id=0 order by date desc") or &dbdie;
$rv = $sth->execute;
while ($f = $sth->fetchrow_hashref) {
   print qq(<b><a href="message.cgi?$f->{id}">$f->{subject}</a></b> 
($f->{author})<br>\n);
   $count = $count + 1;
}

if ($count == 0) {
   print qq(No messages.<p>\n);
}

&do_nav;
&do_footer;

	
sub do_nav {
   print qq(<hr><center>\n);
   print qq(<p><a href="newmsg.cgi?$forum_id">Compose New Message</a> | );
   print qq(<a href="search.cgi?$forum_id">Search This Forum</a></p>);
   print qq(</center><hr>\n);
}