$credit[] = empty($_GET['startcredit']) ? 0 : intval($_GET['startcredit']); $credit[] = empty($_GET['endcredit']) ? 0 : intval($_GET['endcredit']); $uids = getdotstring($uid, 'int'); if($uids) $wherearr[] = 'uid IN ('.$uids.')'; if($dateline) $wherearr[] = "dateline>'".($_SGLOBAL['timestamp']-$dateline)."'"; if($updatetime) $wherearr[] = "updatetime>'".($_SGLOBAL['timestamp']-$updatetime)."'"; $friendnumstr = getscopequery('friendnum', $friendnum); if($friendnumstr) $wherearr[] = $friendnumstr; $viewnumstr = getscopequery('viewnum', $viewnum); if($viewnumstr) $wherearr[] = $viewnumstr; $creditstr = getscopequery('credit', $credit); if($creditstr) $wherearr[] = $creditstr; if(isset($_GET['avatar'])) { $wherearr[] = "avatar='".(empty($_GET['avatar']) ? 0 : intval($_GET['avatar']))."'"; } if(isset($_GET['namestatus'])) { $wherearr[] = "namestatus='".(empty($_GET['namestatus']) ? 0 : intval($_GET['namestatus']))."'"; } $order = !empty($_GET['order']) ? strtolower(trim($_GET['order'])) : 'dateline'; $sc = !empty($_GET['sc']) ? strtoupper(trim($_GET['sc'])) : 'DESC'; if(!in_array($order, array('dateline', 'updatetime', 'viewnum', 'friendnum', 'credit'))) $order = 'dateline'; if(!in_array($sc, array('DESC', 'ASC'))) $sc = 'DESC';
function block_uchspace($paramarr) { global $_SGLOBAL, $_SC, $_SGET; dbconnect(2); if (empty($paramarr['sql'])) { $sql = array(); $sql['select'] = 'SELECT s.*'; $sql['from'] = 'FROM ' . tname('space', '2') . ' s'; if (!empty($paramarr['showdetail'])) { $sql['select'] = 'SELECT sf.*, s.*'; $sql['from'] .= ' LEFT JOIN ' . tname('spacefield', '2') . ' sf ON sf.uid=s.uid'; } $wherearr = array(); //where if (!empty($paramarr['uid'])) { $paramarr['uid'] = getdotstring($paramarr['uid'], 'int'); if ($paramarr['uid']) { $wherearr[] = 's.uid IN (' . $paramarr['uid'] . ')'; } } else { if (!empty($paramarr['avatar'])) { if ($paramarr['avatar'] == 1) { $wherearr[] = 's.avatar = 0'; } else { $wherearr[] = 's.avatar = 1'; } } $scopequery = getscopequery('s', 'viewnum', $paramarr); if (!empty($scopequery)) { $wherearr[] = $scopequery; } $scopequery = getscopequery('s', 'friendnum', $paramarr); if (!empty($scopequery)) { $wherearr[] = $scopequery; } } $sql['where'] = ''; if (!empty($wherearr)) { $sql['where'] = 'WHERE ' . implode(' AND ', $wherearr); } //order if (!empty($paramarr['order'])) { $sql['order'] = 'ORDER BY ' . $paramarr['order']; } //limit if (!empty($paramarr['perpage'])) { $paramarr['perpage'] = intval($paramarr['perpage']); if (empty($paramarr['perpage'])) { $paramarr['perpage'] = 20; } if (empty($_SGET['page'])) { $_SGET['page'] = 1; } $_SGET['page'] = intval($_SGET['page']); if ($_SGET['page'] < 1) { $_SGET['page'] = 1; } $start = ($_SGET['page'] - 1) * $paramarr['perpage']; $sql['limit'] = 'LIMIT ' . $start . ',' . $paramarr['perpage']; } else { if (empty($paramarr['limit'])) { $sql['limit'] = 'LIMIT 0,1'; } else { $paramarr['limit'] = getdotstring($paramarr['limit'], 'int', true, array(), 1, false); if ($paramarr['limit']) { $sql['limit'] = 'LIMIT ' . $paramarr['limit']; } else { $sql['limit'] = 'LIMIT 0,1'; } } } //query $sqlstring = implode(' ', $sql); //multi $listcount = 1; if (!empty($paramarr['perpage'])) { $listcount = $_SGLOBAL['db_uch']->result($_SGLOBAL['db_uch']->query('SELECT COUNT(*) FROM ' . tname('space', '2') . ' ' . $sql['where']), 0); if ($listcount) { $urlarr = $_SGET; unset($urlarr['page']); $theblockarr['multipage'] = multi($listcount, $paramarr['perpage'], $_SGET['page'], $urlarr, 0); } } } else { $uchdb = $_SGLOBAL['db_uch']; include_once S_ROOT . './function/block_sql.func.php'; list($sqlstring, $listcount) = runsql($paramarr, $uchdb); if (!empty($paramarr['perpage'])) { if ($listcount) { $urlarr = $_SGET; unset($urlarr['page']); $theblockarr['multipage'] = multi($listcount, $paramarr['perpage'], $_SGET['page'], $urlarr, 0); } } } //查询数据 if ($listcount) { //预处理 include_once S_ROOT . './uc_client/client.php'; //查询 $query = $_SGLOBAL['db_uch']->query($sqlstring); while ($value = $_SGLOBAL['db_uch']->fetch_array($query)) { //头像处理 $value['avatarflash'] = uc_avatar($_SGLOBAL['supe_uid']); $theblockarr[] = $value; } } return $theblockarr; }
} if ($_POST['network'][$key]['order']) { $sql['order'] = 'ORDER BY sh.' . $_POST['network'][$key]['order'] . ' ' . $_POST['network'][$key]['sc']; } $sql['limit'] = getlimit($_POST['network'][$key]['start'], $_POST['network'][$key]['limit']); break; case 'mtag': $tagids = getdotstring($_POST['network'][$key]['tagid'], 'int'); if ($tagids) { $wherearr[] = 'tagid IN (' . $tagids . ')'; } $fieldids = getdotstring($_POST['network'][$key]['fieldid'], 'int'); if ($fieldids) { $wherearr[] = 'fieldid IN (' . $fieldids . ')'; } $scopequery = getscopequery('membernum', $_POST['network'][$key]['membernum']); if ($scopequery) { $wherearr[] = $scopequery; } if ($wherearr) { $sql['where'] = 'WHERE ' . implode(' AND ', $wherearr); } if ($_POST['network'][$key]['order']) { $sql['order'] = 'ORDER BY ' . $_POST['network'][$key]['order'] . ' ' . $_POST['network'][$key]['sc']; } $sql['limit'] = getlimit($_POST['network'][$key]['start'], $_POST['network'][$key]['limit']); break; case 'slide': $sql['from'] = ', ' . tname('album') . ' a '; if ($groupids) { $sql['from'] .= ', ' . tname('space') . ' s ';