source: products/qPloneCaptchas/tags/0.8/skins/captchas_qcomments/2.1.2/discussion_reply.cpy @ 1

## Script (Python) "discussion_reply"
##bind container=container
##bind context=context
##bind namespace=
##bind script=script
##bind state=state
##bind subpath=traverse_subpath
##parameters=subject,body_text,text_format='plain',username=None,password=None
##title=Reply to content

from Products.PythonScripts.standard import url_quote_plus
from Products.CMFCore.utils import getToolByName
from Products.qPloneComments.utils import send_email

mtool = getToolByName(context, 'portal_membership')
dtool = getToolByName(context, 'portal_discussion')
req = context.REQUEST
pp = getToolByName(context,'portal_properties')
# Get properties
isForAnonymous = pp['qPloneComments'].getProperty('enable_anonymous_commenting', None)
ifModerate = pp['qPloneComments'].getProperty('enable_moderation', None);

if username or password:
    # The user username/password inputs on on the comment form were used,
    # which might happen when anonymous commenting is enabled. If they typed
    # something in to either of the inputs, we send them to 'logged_in'.
    # 'logged_in' will redirect them back to this script if authentication
    # succeeds with a query string which will post the message appropriately
    # and show them the result.  if 'logged_in' fails, the user will be
    # presented with the stock login failure page.  This all depends
    # heavily on cookiecrumbler, but I believe that is a Plone requirement.
    came_from = '%s?subject=%s&body_text=%s' % (req['URL'], subject, body_text)
    came_from = url_quote_plus(came_from)
    portal_url = context.portal_url()

    return req.RESPONSE.redirect(
        '%s/logged_in?__ac_name=%s'
        '&__ac_password=%s'
        '&came_from=%s' % (portal_url,
                               url_quote_plus(username),
                               url_quote_plus(password),
                               came_from,
                               )
        )

# if (the user is already logged in) or (if anonymous commenting is enabled and
# they posted without typing a username or password into the form), we do
# the following

#########################################################
# Get discussion item (reply) author and creating reply #
comment_creator = req.get('Creator', None)
if isForAnonymous and comment_creator:
    # Get entered anonymous name
    comment_creator = comment_creator
else:
    member = mtool.getAuthenticatedMember()
    # Get Member Full name.If not entered - get user login name
    comment_creator = member.getProperty('fullname')
    if not comment_creator:
        comment_creator = member.getUserName()

tb = dtool.getDiscussionFor(context)
id = tb.createReply(title=subject, text=body_text, Creator=comment_creator)
reply = tb.getReply(id)

# TODO THIS NEEDS TO GO AWAY!
if hasattr(dtool.aq_explicit, 'cookReply'):
    dtool.cookReply(reply, text_format='plain')

parent = tb.aq_parent

# Send notification e-mail
send_notification_message = send_email(reply, context, state="approve")
if not ifModerate:
    send_notification_message += send_email(reply, context, state="published")

# return to the discussable object.
redirect_target = context.plone_utils.getDiscussionThread(tb)[0]
view = redirect_target.getTypeInfo().getActionById('view')
anchor = reply.getId()

# Inform user about awaiting moderation
portal_status_message='Comment+successfully+added'
if ifModerate and reply:
    portal_status_message='Your+comment+awaits+moderation'

from Products.CMFPlone.utils import transaction_note
transaction_note('Added comment to %s at %s' % (parent.title_or_id(), reply.absolute_url()))

target = '%s/%s?portal_status_message=%s#%s' % (redirect_target.absolute_url(), view, portal_status_message, anchor)

return req.RESPONSE.redirect(target)