/** * Display a comment wall. * * @param unknown_type $wall */ function commentwall_displaywall_html($wall, $showalltxt = false, $owner) { global $CFG; // $owner = page_owner(); $html = "<div id=\"commentwall_title\"><h2>" . sprintf(__gettext("%s's comment wall"), user_info("name", page_owner())) . "</h2></div>"; if ($showalltxt && $wall) { $html .= "<div id=\"commentwall_more\"><a href=\"{$CFG->wwwroot}mod/commentwall/index.php?owner={$owner}\">" . __gettext("See all...") . "</a></div>"; } // Get access permissions $access = user_flag_get("commentwall_access", $owner); if (!$access) { $access = "LOGGED_IN"; } // If no access controls set then assume public if ($owner == $_SESSION['userid'] || $access == "PUBLIC" || $access == "LOGGED_IN" && isloggedin() || $access == "FRIENDS_ONLY" && isfriend($_SESSION['userid'], $owner) || $access == "PRIVATE" && $owner == $_SESSION['userid']) { $html .= commentwall_post_form(page_owner()); if (!$wall) { $html .= "<p>" . __gettext("No comments on this wall, why not be the first?") . "</p>"; return $html; } } if (is_array($wall)) { foreach ($wall as $w) { $html .= commentwall_displaycomment($w); } } return $html; }
<?php if (!defined('IN_ET')) { exit('Access Denied'); } tologin(); $uid = isset($_GET['uid']) ? $_GET['uid'] : $my[user_id]; $uid = $_POST["fuid"] ? $_POST["fuid"] : $uid; $isfriend = isfriend($uid, $my[user_id]); $sql = "select user_name,user_head,issendmsg,theme_bgcolor,theme_pictype,theme_text,theme_link,theme_sidebar,theme_sidebox,theme_bgurl from et_users where user_id='{$uid}'"; $query = $db->query($sql); $row = $db->fetch_array($query); $uname = $row['user_name']; $uhead = $row['user_head'] ? "{$webaddr}/attachments/head/" . $row['user_head'] : "{$webaddr}/images/noavatar.jpg"; $uissendmsg = $row['issendmsg']; $user = array("user_id" => $uid, "theme_bgcolor" => $data['theme_bgcolor'], "theme_pictype" => $data['theme_pictype'], "theme_text" => $data['theme_text'], "theme_link" => $data['theme_link'], "theme_sidebar" => $data['theme_sidebar'], "theme_sidebox" => $data['theme_sidebox'], "theme_bgurl" => $data['theme_bgurl']); if (!$uname) { echo "<script>alert(\"提示:没有找到该用户,请返回主页!\");window.location.href='{$webaddr}/index';</script>"; exit; } if ($action == "send") { $content = daddslashes(trim($_POST["content"])); if (!$uid) { if ($refer) { header("location: " . $refer . "&tip=19"); } else { echo "<script>alert(\"提示:您发送的用户不存在!\");window.location.href='{$prev}';</script>"; } exit; } if ($uissendmsg == 1 && $isfriend[allfri] == 0 && $uid != $my[user_id]) {
echo "<div class='showmag'><p>是否确认解除对" . $uname . "的关注?</p><p><a href='index.php?op=friends&act=delfriok&uid={$uid}'>确认</a> <a href='index.php?op=friends'>取消</a></p></div>"; wapfooter(); exit; } } //删除确认 if ($act == "delfriok") { $uid = $_GET['uid']; $uid = $_GET['uid']; $uname = idtoname($uid); if (!$uname) { echo "<div class='showmag'><p>该用户不存在或者已经被管理员删除!</p><p><a href='index.php?op=friends'>返回我的关注</a></p></div>"; wapfooter(); exit; } $isfriend = isfriend($uid, $user_id); if ($isfriend['fri'] == 0) { echo "<div class='showmag'><p>您没有关注此用户!</p><p><a href='index.php?op=friends'>返回我的关注</a></p></div>"; wapfooter(); exit; } if ($isfriend['fri'] == 1) { $db->query("DELETE FROM et_friend WHERE fid_fasong='{$user_id}' && fid_jieshou='{$uid}'"); frinum($user_id); frinum($uid); echo "<div class='showmag'><p>解除关注成功!</p><p><a href='index.php?op=friends'>返回我的关注</a></p></div>"; wapfooter(); exit; } } //导航
<?php if (!defined('IN_ET')) { exit('Access Denied'); } tologin(); if ($action == 'follow') { $follow = $_POST['follow']; $follownew = array(); for ($i = 0; $i < count($follow); $i++) { $isfriend = isfriend($follow[$i], $my[user_id]); if ($isfriend == 0 && $follow[$i] != $my[user_id]) { $follownew[] = $follow[$i]; } } if ($follownew) { for ($j = 0; $j < count($follownew); $j++) { $db->query("INSERT INTO et_friend (fid_jieshou,fid_fasong) VALUES ('{$follownew[$j]}','{$my['user_id']}')"); frinum($my[user_id]); frinum($follownew[$j]); } } header("location: {$webaddr}/op/setting"); exit; } $query = $db->query("SELECT * FROM et_users WHERE user_id=1 || (followme_num>0 && lastconttime>0) ORDER BY followme_num DESC LIMIT 10"); while ($data = $db->fetch_array($query)) { $uhead = $data['user_head'] ? "{$webaddr}/attachments/head/" . $data['user_head'] : "{$webaddr}/images/noavatar.jpg"; $follows[] = array('user_id' => $data['user_id'], 'user_name' => $data['user_name'], 'nickname' => $data['nickname'], 'user_head' => $uhead, 'lastcontent' => ubb($data['lastcontent']), 'lastconttime' => timeop($data['lastconttime']), 'followme_num' => $data['followme_num'], 'msg_num' => $data['msg_num']); } //模板和Foot
$db->query("DELETE FROM et_friend WHERE fid_fasong='{$my['user_id']}' && fid_jieshou='{$user['user_id']}'"); frinum($my[user_id]); frinum($user[user_id]); fsock($user[user_id], "【小T提醒】 " . $my[user_name] . "解除了对你的关注,你去看看TA吧,TA的地址:" . $webaddr . "/home/u." . $my[user_id]); header("Location: {$webaddr}/home/u.{$user['user_id']}&tip=23"); exit; } } //删除好友 friends if ($act == "frienddel") { tologin(); if (!idtoname($user[user_id])) { echo "该用户不存在或者已经被管理员删除!"; exit; } $isfriend = isfriend($user[user_id], $my[user_id]); if ($isfriend['fri'] == 0) { echo "您没有关注此用户!"; exit; } if ($isfriend['fri'] == 1) { $db->query("DELETE FROM et_friend WHERE fid_fasong='{$my['user_id']}' && fid_jieshou='{$user['user_id']}'"); frinum($my[user_id]); frinum($user[user_id]); fsock($user[user_id], "【小T提醒】 " . $my[user_name] . "解除了对你的关注,你去看看TA吧,TA的地址:" . $webaddr . "/home/u." . $my[user_id]); echo "success"; exit; } } //以下是 发送 代码 if ($action == "msgsend") {
$db->query("INSERT INTO et_content (user_id,user_name,user_nickname,user_head,content_body,posttime,conttype) VALUES ('{$my['user_id']}','{$my['user_name']}','{$my['nickname']}','{$my['user_head']}','{$content}','{$addtime}','media')"); updatemsgnum('++', $my[user_id]); //更新消息数 dsetcookie('setok', 'home6'); header("location: {$webaddr}/{$my['user_name']}/profile"); exit; } else { dsetcookie('setok', 'home7'); header("location: {$webaddr}/{$my['user_name']}/profile"); exit; } } } //好友判断 if ($user['user_id'] != $my['user_id']) { $isfriend = isfriend($user['user_id'], $my['user_id']); } //粉丝 $folownum = 0; $query = $db->query("SELECT u.user_id,u.user_name,u.nickname,u.user_head FROM et_friend AS f LEFT JOIN et_users AS u ON f.fid_fasong = u.user_id WHERE f.fid_jieshou ='{$user['user_id']}' ORDER BY f.fri_id DESC LIMIT 35"); while ($data = $db->fetch_array($query)) { $folownum++; $ushead = $data['user_head'] ? "{$webaddr}/attachments/head/" . $data['user_head'] : "{$webaddr}/images/noavatar.jpg"; $myfri[] = array("uid" => $data['user_id'], "usname" => $data['user_name'], "usnickname" => $data['nickname'], "ushead" => $ushead); } if ($hm) { if (in_array($hm, $hmarray)) { include 'source/hm_' . $hm . '.inc.php'; exit; } else { header("Location: {$webaddr}/{$my['user_name']}/profile");
exit; } wapheader(); //信息查询 $query = $db->query("SELECT user_name,nickname,home_city,live_city,user_gender,user_info,user_head FROM et_users WHERE user_id='{$uid}'"); $data = $db->fetch_array($query); $username = $data['nickname']; $home_city = $data['home_city'] ? $data['home_city'] : "保密"; $live_city = $data['live_city'] ? $data['live_city'] : "保密"; $user_gender = $data['user_gender'] ? $data['user_gender'] : "保密"; $user_info = $data['user_info'] ? $data['user_info'] : "保密"; $user_head = $data['user_head']; $user_head = $user_head ? "http://pinzui.com/attachments/head/" . $user_head : "http://pinzui.com/images/noavatar.jpg"; echo "<div style='padding:2px'><p><img src='{$user_head}' width='96px'></p>"; if ($uid != $user[user_id]) { $isfriend = isfriend($uid, $user[user_id]); if ($isfriend == 1) { echo "<a href='index.php?op=sendmsg&uid={$uid}'>发私信</a> | <a href='index.php?op=home&act=jiechu&uid={$uid}&refer=" . urlencode("index.php?op=home&uid=" . $uid) . "'>解除关注</a>"; } else { echo "<a href='index.php?op=sendmsg&uid={$uid}'>发私信</a> | <a href='index.php?op=home&act=guanzhu&uid={$uid}&refer=" . urlencode("index.php?op=home&uid=" . $uid) . "'>添加关注</a>"; } } echo "</div><h2>" . $username . " 在做什么...</h2><ul>"; $i = 0; $start = ($page - 1) * 10; $query = $db->query("SELECT * FROM et_content WHERE user_id='{$uid}' && privacy=0 && replyshow=1 ORDER BY content_id desc limit {$start},10"); while ($data = $db->fetch_array($query)) { $i++; echo wapli($data[content_id], $data[user_id], $data[user_nickname], "[" . ($i + ($page - 1) * 10) . "]." . $data['content_body'], $data['posttime'], $data[type], 'index.php?op=home', $data['status_id'], $data['status_uname'], $data['status_unickname'], 0); } if ($i == 0) {
if (!$username) { echo "不存在该用户"; exit; } else { if ($isclose == 1) { if ($PHP_AUTH_PW == "" || $PHP_AUTH_USER == "") { header("WWW-Authenticate: Basic realm=\"EasyTalk\""); header("HTTP/1.0 401 Unauthorized"); echo "验证失败"; exit; } else { $sql = "select user_id from et_users where mailadres='{$PHP_AUTH_USER}' && password='******'"; $query = $db->query($sql); $data = $db->fetch_array($query); if ($data) { $isfriend = isfriend($id, $data[user_id]); if ($isfriend[allfri] != 1 && $id != $data[user_id]) { echo "您和此用户不是好友关系,不能查看"; exit; } } else { header("WWW-Authenticate: Basic realm=\"EasyTalk\""); header("HTTP/1.0 401 Unauthorized"); echo "验证失败"; exit; } } } } //xml start if ($ext == "xml") {