-----------------------------------------------------------------
Выводим список файлов нужного раздела
-----------------------------------------------------------------
*/
$total = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_forum_files` WHERE " . (isset($_GET['new']) ? " `time` > '{$new}'" : " `filetype` = '{$do}'") . $sql), 0);
if ($total > 0) {
// Заголовок раздела
echo '<div class="phdr">' . $caption . (isset($_GET['new']) ? '<br />' . $lng['new_files'] : '') . '</div>' . ($do ? '<div class="bmenu">' . $types[$do] . '</div>' : '');
$req = mysql_query("SELECT `cms_forum_files`.*, `forum`.`user_id`, `forum`.`text`, `topicname`.`text` AS `topicname`\n FROM `cms_forum_files`\n LEFT JOIN `forum` ON `cms_forum_files`.`post` = `forum`.`id`\n LEFT JOIN `forum` AS `topicname` ON `cms_forum_files`.`topic` = `topicname`.`id`\n WHERE " . (isset($_GET['new']) ? " `cms_forum_files`.`time` > '{$new}'" : " `filetype` = '{$do}'") . ($rights >= 7 ? '' : " AND `del` != '1'") . $sql . "ORDER BY `time` DESC LIMIT {$start},{$kmess}");
for ($i = 0; $res = mysql_fetch_assoc($req); ++$i) {
$req_u = mysql_query("SELECT `id`, `name`, `sex`, `rights`, `lastdate`, `status`, `datereg`, `ip`, `browser` FROM `users` WHERE `id` = '" . $res['user_id'] . "'");
$res_u = mysql_fetch_assoc($req_u);
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
// Выводим текст поста
$text = mb_substr($res['text'], 0, 500);
$text = functions::checkout($text, 1, 0);
$text = preg_replace('#\\[c\\](.*?)\\[/c\\]#si', '', $text);
$page = ceil(mysql_result(mysql_query("SELECT COUNT(*) FROM `forum` WHERE `refid` = '" . $res['topic'] . "' AND `id` " . ($set_forum['upfp'] ? ">=" : "<=") . " '" . $res['post'] . "'"), 0) / $kmess);
$text = '<b><a href="index.php?id=' . $res['topic'] . '&page=' . $page . '">' . $res['topicname'] . '</a></b><br />' . $text;
if (mb_strlen($res['text']) > 500) {
$text .= '<br /><a href="index.php?act=post&id=' . $res['post'] . '">' . $lng_forum['read_all'] . ' >></a>';
}
// Формируем ссылку на файл
$fls = @filesize('../files/forum/attach/' . $res['filename']);
$fls = round($fls / 1024, 0);
$att_ext = strtolower(functions::format('./files/forum/attach/' . $res['filename']));
$pic_ext = array('gif', 'jpg', 'jpeg', 'png');
if (in_array($att_ext, $pic_ext)) {
// Если картинка, то выводим предпросмотр
$file = '<div><a href="index.php?act=file&id=' . $res['id'] . '">';
$file .= '<img src="thumbinal.php?file=' . urlencode($res['filename']) . '" alt="' . $lng_forum['click_to_view'] . '" /></a></div>';
$req = mysql_query("SELECT * FROM `cms_ads` WHERE `to` = '0' AND (`layout` = '{$layout}' or `layout` = '0') AND (`view` = '{$view}' or `view` = '0') ORDER BY `mesto` ASC");
if (mysql_num_rows($req)) {
while (($res = mysql_fetch_assoc($req)) !== FALSE) {
$name = explode("|", $res['name']);
$name = htmlentities($name[mt_rand(0, count($name) - 1)], ENT_QUOTES, 'UTF-8');
if (!empty($res['color'])) {
$name = '<span style="color:#' . $res['color'] . '">' . $name . '</span>';
}
// Jika Anda mau mengatur font, dibawah settingannya..
$font = $res['bold'] ? 'font-weight: bold;' : FALSE;
$font .= $res['italic'] ? ' font-style:italic;' : FALSE;
$font .= $res['underline'] ? ' text-decoration:underline;' : FALSE;
if ($font) {
$name = '<span style="' . $font . '">' . $name . '</span>';
}
@($cms_ads[$res['type']] .= '<a href="' . ($res['show'] ? functions::checkout($res['link']) : $set['homeurl'] . '/go.php?id=' . $res['id']) . '">' . $name . '</a><br/>');
if ($res['day'] != 0 && time() >= $res['time'] + $res['day'] * 3600 * 24 || $res['count_link'] != 0 && $res['count'] >= $res['count_link']) {
mysql_query("UPDATE `cms_ads` SET `to` = '1' WHERE `id` = '" . $res['id'] . "'");
}
}
}
}
/*
-----------------------------------------------------------------
Blok Iklan
-----------------------------------------------------------------
*/
if (isset($cms_ads[0])) {
echo $cms_ads[0];
}
/*
// Проверяем, есть ли уже альбом с таким же именем?
if (!$al && mysql_num_rows(mysql_query("SELECT * FROM `cms_album_cat` WHERE `name` = '" . mysql_real_escape_string($name) . "' AND `user_id` = '" . $user['id'] . "' LIMIT 1"))) {
$error[] = $lng_profile['error_album_exists'];
}
if (!$error) {
if ($al) {
// Изменяем данные в базе
mysql_query("UPDATE `cms_album_files` SET `access` = '{$access}' WHERE `album_id` = '{$al}' AND `user_id` = '" . $user['id'] . "'");
mysql_query("UPDATE `cms_album_cat` SET\n `name` = '" . mysql_real_escape_string($name) . "',\n `description` = '" . mysql_real_escape_string($description) . "',\n `password` = '" . mysql_real_escape_string($password) . "',\n `access` = '{$access}'\n WHERE `id` = '{$al}' AND `user_id` = '" . $user['id'] . "'\n ");
} else {
// Вычисляем сортировку
$req = mysql_query("SELECT * FROM `cms_album_cat` WHERE `user_id` = '" . $user['id'] . "' ORDER BY `sort` DESC LIMIT 1");
if (mysql_num_rows($req)) {
$res = mysql_fetch_assoc($req);
$sort = $res['sort'] + 1;
} else {
$sort = 1;
}
// Заносим данные в базу
mysql_query("INSERT INTO `cms_album_cat` SET\n `user_id` = '" . $user['id'] . "',\n `name` = '" . mysql_real_escape_string($name) . "',\n `description` = '" . mysql_real_escape_string($description) . "',\n `password` = '" . mysql_real_escape_string($password) . "',\n `access` = '{$access}',\n `sort` = '{$sort}'\n ");
}
echo '<div class="gmenu"><p>' . ($al ? $lng_profile['album_changed'] : $lng_profile['album_created']) . '<br />' . '<a href="album.php?act=list&user='******'id'] . '">' . $lng['continue'] . '</a></p></div>';
require '../incfiles/end.php';
exit;
}
}
if ($error) {
echo functions::display_error($error);
}
echo '<div class="menu">' . '<form action="album.php?act=edit&user='******'id'] . '&al=' . $al . '" method="post">' . '<p><h3>' . $lng['title'] . '</h3>' . '<input type="text" name="name" value="' . functions::checkout($name) . '" maxlength="30" /><br />' . '<small>Min. 2, Max. 30</small></p>' . '<p><h3>' . $lng['description'] . '</h3>' . '<textarea name="description" rows="' . $set_user['field_h'] . '">' . functions::checkout($description) . '</textarea><br />' . '<small>' . $lng['not_mandatory_field'] . '<br />Max. 500</small></p>' . '<p><h3>' . $lng['password'] . '</h3>' . '<input type="text" name="password" value="' . functions::checkout($password) . '" maxlength="15" /><br />' . '<small>' . $lng_profile['access_help'] . '<br />Min. 3, Max. 15</small></p>' . '<p><h3>Доступ</h3>' . '<input type="radio" name="access" value="4" ' . (!$access || $access == 4 ? 'checked="checked"' : '') . '/> ' . $lng_profile['access_all'] . '<br />' . '<input type="radio" name="access" value="3" ' . ($access == 3 ? 'checked="checked"' : '') . '/> ' . $lng_profile['access_friends'] . '<br />' . '<input type="radio" name="access" value="2" ' . ($access == 2 ? 'checked="checked"' : '') . '/> ' . $lng_profile['access_by_password'] . '<br />' . '<input type="radio" name="access" value="1" ' . ($access == 1 ? 'checked="checked"' : '') . '/> ' . $lng_profile['access_closed'] . '</p>' . '<p><input type="submit" name="submit" value="' . $lng['save'] . '" /></p>' . '</form></div>' . '<div class="phdr"><a href="album.php?act=list&user='******'id'] . '">' . $lng['cancel'] . '</a></div>';
}
/*
-----------------------------------------------------------------
Список альбомов юзера
-----------------------------------------------------------------
*/
if (isset($_SESSION['ap'])) {
unset($_SESSION['ap']);
}
echo '<div class="phdr"><a href="album.php"><b>' . $lng['photo_albums'] . '</b></a> | ' . $lng['personal_2'] . '</div>';
$req = mysql_query("SELECT * FROM `cms_album_cat` WHERE `user_id` = '" . $user['id'] . "' " . ($user['id'] == $user_id || $rights >= 6 ? "" : "AND `access` > 1") . " ORDER BY `sort` ASC");
$total = mysql_num_rows($req);
if ($user['id'] == $user_id && $total < $max_album || $rights >= 7) {
echo '<div class="topmenu"><a href="album.php?act=edit&user='******'id'] . '">' . $lng_profile['album_create'] . '</a></div>';
}
echo '<div class="user"><p>' . functions::display_user($user, array('iphide' => 1)) . '</p></div>';
if ($total) {
$i = 0;
while ($res = mysql_fetch_assoc($req)) {
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_album_files` WHERE `album_id` = '" . $res['id'] . "'"), 0);
echo ($i % 2 ? '<div class="list2">' : '<div class="list1">') . '<img src="../images/album-' . $res['access'] . '.gif" width="16" height="16" class="left" /> ' . '<a href="album.php?act=show&al=' . $res['id'] . '&user='******'id'] . '"><b>' . functions::checkout($res['name']) . '</b></a> (' . $count . ')';
if ($user['id'] == $user_id || $rights >= 6 || !empty($res['description'])) {
$menu = array('<a href="album.php?act=sort&mod=up&al=' . $res['id'] . '&user='******'id'] . '">' . $lng['up'] . '</a>', '<a href="album.php?act=sort&mod=down&al=' . $res['id'] . '&user='******'id'] . '">' . $lng['down'] . '</a>', '<a href="album.php?act=edit&al=' . $res['id'] . '&user='******'id'] . '">' . $lng['edit'] . '</a>', '<a href="album.php?act=delete&al=' . $res['id'] . '&user='******'id'] . '">' . $lng['delete'] . '</a>');
echo '<div class="sub">' . (!empty($res['description']) ? '<div class="gray">' . functions::checkout($res['description'], 1, 1) . '</div>' : '') . ($user['id'] == $user_id || $rights >= 6 ? functions::display_menu($menu) : '') . '</div>';
}
echo '</div>';
++$i;
}
} else {
echo '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
}
echo '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
<?php
$roq = mysql_query("SELECT `qchat`.*, `users`.`name`, `users`.`rights`, `users`.`lastdate`, `users`.`sex`, `users`.`status`, `users`.`datereg`, `users`.`ip` , `users`.`browser` FROM `qchat` LEFT JOIN `users` ON `qchat`.`user_id` = `users`.`id` ORDER BY `time` DESC LIMIT 3;");
while ($res = mysql_fetch_array($roq)) {
echo ceil(ceil($i / 2) - $i / 2) == 0 ? '<div class="menu">' : '<div class="menu">';
// icon seks
global $set_user, $realtime, $user_id, $admp, $home;
if (!empty($user_id) && $user_id != $res['user_id']) {
echo '<a href="' . $set['homeurl'] . '/users/profile.php?user='******'user_id'] . '"><b>' . $res['name'] . '</b></a> ';
} else {
echo '<b>' . $res['name'] . '</b>';
}
$ontimes = $res['lastdate'] + 600;
if (time() > $ontimes) {
echo '<span style="color: red"> <img src="' . $home . '/images/off.png" alt="[OFF]"></img></span>';
} else {
echo '<span style="color: green"> <img src="' . $home . '/images/on.png" alt="[ON]"></img></span>';
}
echo ' ';
$post = functions::antilink(functions::checkout($res['text'], 0, 10));
$post = functions::smileys($post, $res['rights'] >= 1 ? 1 : 0);
// text
if (mb_strlen($post) >= 100) {
echo $post . ' ';
} else {
echo $post;
}
echo '</div>';
++$i;
}
$refr = rand(0, 999);
if ($total > $kmess) {
$out .= '<div class="topmenu">' . functions::display_pagination('index.php?act=systems&', $start, $total, $kmess) . '</div>';
}
$req = mysql_query("SELECT * FROM `cms_mail` WHERE `from_id`='{$user_id}' AND `sys`='1' AND `delete`!='{$user_id}' ORDER BY `time` DESC LIMIT " . $start . "," . $kmess);
$mass_read = array();
for ($i = 0; ($row = mysql_fetch_assoc($req)) !== FALSE; ++$i) {
$out .= $i % 2 ? '<div class="list1">' : '<div class="list2">';
if ($row['read'] == 0 && $row['from_id'] == $user_id) {
$mass_read[] = $row['id'];
}
$post = $row['text'];
$post = functions::checkout($post, 1, 1);
if ($set_user['smileys']) {
$post = functions::smileys($post);
}
$out .= '<strong>' . functions::checkout($row['them']) . '</strong> (' . functions::display_date($row['time']) . ')<br />';
$post = preg_replace_callback("/{TIME=(.+?)}/usi", 'time_parce', $post);
//print_r($outmass);
$out .= $post;
$out .= '<div class="sub"><a href="index.php?act=delete&id=' . $row['id'] . '">' . $lng['delete'] . '</a></div>';
$out .= '</div>';
}
//Ставим метку о прочтении
if ($mass_read) {
$result = implode(',', $mass_read);
mysql_query("UPDATE `cms_mail` SET `read`='1' WHERE `from_id`='{$user_id}' AND `sys`='1' AND `id` IN (" . $result . ")");
}
} else {
$out .= '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
}
$out .= '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
}
if ($total) {
$req = mysql_query("\n SELECT *, MATCH (`" . ($search_t ? 'name' : 'text') . "`) AGAINST ('{$query}' IN BOOLEAN MODE) as `rel`\n FROM `lib`\n WHERE MATCH (`" . ($search_t ? 'name' : 'text') . "`) AGAINST ('{$query}' IN BOOLEAN MODE)\n AND `type` = 'bk'\n ORDER BY `rel` DESC\n LIMIT {$start}, {$kmess}\n ");
$i = 0;
while (($res = mysql_fetch_assoc($req)) !== false) {
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
foreach ($array as $srch) {
if (($pos = mb_strpos(strtolower($res['text']), strtolower(str_replace('*', '', $srch)))) !== false) {
break;
}
}
if (!isset($pos) || $pos < 100) {
$pos = 100;
}
$name = $res['name'];
$text = functions::checkout(mb_substr($res['text'], $pos - 100, 400), 1);
if ($search_t) {
foreach ($array as $val) {
$name = ReplaceKeywords($val, $name);
}
} else {
foreach ($array as $val) {
$text = ReplaceKeywords($val, $text);
}
}
echo '<b><a href="index.php?id=' . $res['id'] . '">' . $name . '</a></b><br />' . $text . ' <div class="sub"><span class="gray">' . $lng_lib['added'] . ':</span> ' . $res['avtor'] . ' <span class="gray">(' . functions::display_date($res['time']) . ')</span><br />' . '<span class="gray">' . $lng_lib['reads'] . ':</span> ' . $res['count'] . '</div></div>';
++$i;
}
} else {
echo '<div class="rmenu"><p>' . $lng['search_results_empty'] . '</p></div>';
}
header('Location: index.php?id=' . $res['refid'] . '&page=' . $page);
} else {
$msg_pre = functions::checkout($msg, 1, 1);
if ($set_user['smileys']) {
$msg_pre = functions::smileys($msg_pre, $datauser['rights'] ? 1 : 0);
}
$msg_pre = preg_replace('#\\[c\\](.*?)\\[/c\\]#si', '<div class="quote">\\1</div>', $msg_pre);
echo '<div class="phdr"><a href="' . $link . '"><b>' . $lng['forum'] . '</b></a> | ' . $lng_forum['edit_message'] . '</div>';
if ($msg && !isset($_POST['submit'])) {
$user = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '" . $res['user_id'] . "' LIMIT 1"));
echo '<div class="list1">' . functions::display_user($user, array('iphide' => 1, 'header' => '<span class="gray">(' . functions::display_date($res['time']) . ')</span>', 'body' => $msg_pre)) . '</div>';
}
echo '<div class="rmenu"><form name="form" action="?act=editpost&id=' . $id . '&start=' . $start . '" method="post"><p>';
if (!$is_mobile) {
echo bbcode::auto_bb('form', 'msg');
}
echo '<textarea rows="' . $set_user['field_h'] . '" name="msg">' . (empty($_POST['msg']) ? htmlentities($res['text'], ENT_QUOTES, 'UTF-8') : functions::checkout($_POST['msg'])) . '</textarea><br/>';
if ($set_user['translit']) {
echo '<input type="checkbox" name="msgtrans" value="1" ' . (isset($_POST['msgtrans']) ? 'checked="checked" ' : '') . '/> ' . $lng['translit'];
}
echo '</p><p><input type="submit" name="submit" value="' . $lng['save'] . '" style="width: 107px; cursor: pointer;"/> ' . ($set_forum['preview'] ? '<input type="submit" value="' . $lng['preview'] . '" style="width: 107px; cursor: pointer;"/>' : '') . '</p></form></div>' . '<div class="phdr"><a href="../pages/faq.php?act=trans">' . $lng['translit'] . '</a> | <a href="../pages/faq.php?act=smileys">' . $lng['smileys'] . '</a></div>' . '<p><a href="' . $link . '">' . $lng['back'] . '</a></p>';
}
}
} else {
/*
-----------------------------------------------------------------
Выводим сообщения об ошибках
-----------------------------------------------------------------
*/
echo functions::display_error($error);
}
function __construct($arg = array())
{
global $mod, $start, $kmess;
$this->comments_table = $arg['comments_table'];
$this->object_table = !empty($arg['object_table']) ? $arg['object_table'] : false;
if (!empty($arg['sub_id_name']) && !empty($arg['sub_id'])) {
$this->sub_id = $arg['sub_id'];
$this->url = $arg['script'] . '&' . $arg['sub_id_name'] . '=' . $arg['sub_id'];
} else {
//TODO: Доработать на режим без sub_id
$this->url = $arg['script'];
}
$this->item = isset($_GET['item']) ? abs(intval($_GET['item'])) : false;
// Получаем данные пользователя
if (core::$user_id) {
$this->user_id = core::$user_id;
$this->rights = core::$user_rights;
$this->ban = core::$user_ban;
}
// Назначение пользовательских прав
if (isset($arg['owner'])) {
$this->owner = $arg['owner'];
if (core::$user_id && $arg['owner'] == core::$user_id && !$this->ban) {
$this->access_delete = isset($arg['owner_delete']) ? $arg['owner_delete'] : false;
$this->access_reply = isset($arg['owner_reply']) ? $arg['owner_reply'] : false;
$this->access_edit = isset($arg['owner_edit']) ? $arg['owner_edit'] : false;
}
}
// Открываем доступ для Администрации
if ($this->rights >= $this->access_level) {
$this->access_reply = true;
$this->access_edit = true;
$this->access_delete = true;
}
switch ($mod) {
case 'reply':
/*
-----------------------------------------------------------------
Отвечаем на комментарий
-----------------------------------------------------------------
*/
if ($this->item && $this->access_reply && !$this->ban) {
echo '<div class="phdr"><a href="' . $this->url . '"><b>' . $arg['title'] . '</b></a> | ' . core::$lng['reply'] . '</div>';
$req = mysql_query("SELECT * FROM `" . $this->comments_table . "` WHERE `id` = '" . $this->item . "' AND `sub_id` = '" . $this->sub_id . "' LIMIT 1");
if (mysql_num_rows($req)) {
$res = mysql_fetch_assoc($req);
$attributes = unserialize($res['attributes']);
if (!empty($res['reply']) && $attributes['reply_rights'] > $this->rights) {
echo functions::display_error(core::$lng['error_reply_rights'], '<a href="' . $this->url . '">' . core::$lng['back'] . '</a>');
} elseif (isset($_POST['submit'])) {
$message = $this->msg_check();
if (empty($message['error'])) {
$attributes['reply_id'] = $this->user_id;
$attributes['reply_rights'] = $this->rights;
$attributes['reply_name'] = core::$user_data['name'];
$attributes['reply_time'] = time();
mysql_query("UPDATE `" . $this->comments_table . "` SET\n `reply` = '" . mysql_real_escape_string($message['text']) . "',\n `attributes` = '" . mysql_real_escape_string(serialize($attributes)) . "'\n WHERE `id` = '" . $this->item . "'\n ");
header('Location: ' . str_replace('&', '&', $this->url));
} else {
echo functions::display_error($message['error'], '<a href="' . $this->url . '&mod=reply&item=' . $this->item . '">' . core::$lng['back'] . '</a>');
}
} else {
$text = '<a href="' . core::$system_set['homeurl'] . '/users/profile.php?user='******'user_id'] . '"><b>' . $attributes['author_name'] . '</b></a>' . ' (' . functions::display_date($res['time']) . ')<br />' . functions::checkout($res['text']);
$reply = functions::checkout($res['reply']);
echo $this->msg_form('&mod=reply&item=' . $this->item, $text, $reply) . '<div class="phdr"><a href="' . $this->url . '">' . core::$lng['back'] . '</a></div>';
}
} else {
echo functions::display_error(core::$lng['error_wrong_data'], '<a href="' . $this->url . '">' . core::$lng['back'] . '</a>');
}
}
break;
case 'edit':
/*
-----------------------------------------------------------------
Редактируем комментарий
-----------------------------------------------------------------
*/
if ($this->item && $this->access_edit && !$this->ban) {
echo '<div class="phdr"><a href="' . $this->url . '"><b>' . $arg['title'] . '</b></a> | ' . core::$lng['edit'] . '</div>';
$req = mysql_query("SELECT * FROM `" . $this->comments_table . "` WHERE `id` = '" . $this->item . "' AND `sub_id` = '" . $this->sub_id . "' LIMIT 1");
if (mysql_num_rows($req)) {
$res = mysql_fetch_assoc($req);
$attributes = unserialize($res['attributes']);
$user = functions::get_user($res['user_id']);
if ($user['rights'] > core::$user_rights) {
echo functions::display_error(core::$lng['error_edit_rights'], '<a href="' . $this->url . '">' . core::$lng['back'] . '</a>');
} elseif (isset($_POST['submit'])) {
$message = $this->msg_check();
if (empty($message['error'])) {
$attributes['edit_id'] = $this->user_id;
$attributes['edit_name'] = core::$user_data['name'];
$attributes['edit_time'] = time();
if (isset($attributes['edit_count'])) {
++$attributes['edit_count'];
} else {
$attributes['edit_count'] = 1;
}
mysql_query("UPDATE `" . $this->comments_table . "` SET\n `text` = '" . mysql_real_escape_string($message['text']) . "',\n `attributes` = '" . mysql_real_escape_string(serialize($attributes)) . "'\n WHERE `id` = '" . $this->item . "'\n ");
header('Location: ' . str_replace('&', '&', $this->url));
} else {
echo functions::display_error($message['error'], '<a href="' . $this->url . '&mod=edit&item=' . $this->item . '">' . core::$lng['back'] . '</a>');
}
} else {
$author = '<a href="' . core::$system_set['homeurl'] . '/users/profile.php?user='******'user_id'] . '"><b>' . $attributes['author_name'] . '</b></a>';
$author .= ' (' . functions::display_date($res['time']) . ')<br />';
$text = functions::checkout($res['text']);
echo $this->msg_form('&mod=edit&item=' . $this->item, $author, $text);
}
} else {
echo functions::display_error(core::$lng['error_wrong_data'], '<a href="' . $this->url . '">' . core::$lng['back'] . '</a>');
}
echo '<div class="phdr"><a href="' . $this->url . '">' . core::$lng['back'] . '</a></div>';
}
break;
case 'del':
/*
-----------------------------------------------------------------
Удаляем комментарий
-----------------------------------------------------------------
*/
if ($this->item && $this->access_delete && !$this->ban) {
if (isset($_GET['yes'])) {
//TODO: Продумать проверку на удаление постов администрации
$req = mysql_query("SELECT * FROM `" . $this->comments_table . "` WHERE `id` = '" . $this->item . "' AND `sub_id` = '" . $this->sub_id . "' LIMIT 1");
if (mysql_num_rows($req)) {
$res = mysql_fetch_assoc($req);
if (isset($_GET['all'])) {
// Удаляем все комментарии выбранного пользователя
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `" . $this->comments_table . "` WHERE `sub_id` = '" . $this->sub_id . "' AND `user_id` = '" . $res['user_id'] . "'"), 0);
mysql_query("DELETE FROM `" . $this->comments_table . "` WHERE `sub_id` = '" . $this->sub_id . "' AND `user_id` = '" . $res['user_id'] . "'");
} else {
// Удаляем отдельный комментарий
$count = 1;
mysql_query("DELETE FROM `" . $this->comments_table . "` WHERE `id` = '" . $this->item . "'");
}
// Вычитаем баллы из статистики пользователя
$req_u = mysql_query("SELECT * FROM `users` WHERE `id` = '" . $res['user_id'] . "'");
if (mysql_num_rows($req_u)) {
$res_u = mysql_fetch_assoc($req_u);
$count = $res_u['komm'] > $count ? $res_u['komm'] - $count : 0;
mysql_query("UPDATE `users` SET `komm` = '{$count}' WHERE `id` = '" . $res['user_id'] . "'");
}
// Обновляем счетчик комментариев
$this->msg_total(1);
}
header('Location: ' . str_replace('&', '&', $this->url));
} else {
echo '<div class="phdr"><a href="' . $this->url . '"><b>' . $arg['title'] . '</b></a> | ' . core::$lng['delete'] . '</div>' . '<div class="rmenu"><p>' . core::$lng['delete_confirmation'] . '<br />' . '<a href="' . $this->url . '&mod=del&item=' . $this->item . '&yes">' . core::$lng['delete'] . '</a> | ' . '<a href="' . $this->url . '">' . core::$lng['cancel'] . '</a><br />' . '<div class="sub">' . core::$lng['clear_user_msg'] . '<br />' . '<span class="red"><a href="' . $this->url . '&mod=del&item=' . $this->item . '&yes&all">' . core::$lng['clear'] . '</a></span>' . '</div></p></div>' . '<div class="phdr"><a href="' . $this->url . '">' . core::$lng['back'] . '</a></div>';
}
}
break;
default:
if (!empty($arg['context_top'])) {
echo $arg['context_top'];
}
/*
-----------------------------------------------------------------
Добавляем новый комментарий
-----------------------------------------------------------------
*/
if (!$this->ban && !functions::is_ignor($this->owner) && isset($_POST['submit']) && ($message = $this->msg_check(1)) !== false) {
if (empty($message['error'])) {
// Записываем комментарий в базу
$this->add_comment($message['text']);
$this->total = $this->msg_total(1);
$_SESSION['code'] = $message['code'];
} else {
// Показываем ошибки, если есть
echo functions::display_error($message['error']);
$this->total = $this->msg_total();
}
} else {
$this->total = $this->msg_total();
}
/*
-----------------------------------------------------------------
Показываем форму ввода
-----------------------------------------------------------------
*/
if (!$this->ban && !functions::is_ignor($this->owner)) {
echo $this->msg_form();
}
/*
-----------------------------------------------------------------
Показываем список комментариев
-----------------------------------------------------------------
*/
echo '<div class="phdr"><b>' . $arg['title'] . '</b></div>';
if ($this->total > $kmess) {
echo '<div class="topmenu">' . functions::display_pagination($this->url . '&', $start, $this->total, $kmess) . '</div>';
}
if ($this->total) {
$req = mysql_query("SELECT `" . $this->comments_table . "`.*, `" . $this->comments_table . "`.`id` AS `subid`, `users`.`rights`, `users`.`lastdate`, `users`.`sex`, `users`.`status`, `users`.`datereg`, `users`.`id`\n FROM `" . $this->comments_table . "` LEFT JOIN `users` ON `" . $this->comments_table . "`.`user_id` = `users`.`id`\n WHERE `sub_id` = '" . $this->sub_id . "' ORDER BY `subid` DESC LIMIT {$start}, {$kmess}");
$i = 0;
while (($res = mysql_fetch_assoc($req)) !== false) {
$attributes = unserialize($res['attributes']);
$res['name'] = $attributes['author_name'];
$res['ip'] = $attributes['author_ip'];
$res['ip_via_proxy'] = isset($attributes['author_ip_via_proxy']) ? $attributes['author_ip_via_proxy'] : 0;
$res['browser'] = $attributes['author_browser'];
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
$menu = array($this->access_reply ? '<a href="' . $this->url . '&mod=reply&item=' . $res['subid'] . '">' . core::$lng['reply'] . '</a>' : '', $this->access_edit ? '<a href="' . $this->url . '&mod=edit&item=' . $res['subid'] . '">' . core::$lng['edit'] . '</a>' : '', $this->access_delete ? '<a href="' . $this->url . '&mod=del&item=' . $res['subid'] . '">' . core::$lng['delete'] . '</a>' : '');
$text = functions::checkout($res['text'], 1, 1);
if (core::$user_set['smileys']) {
$text = functions::smileys($text, $res['rights'] >= 1 ? 1 : 0);
}
if (isset($attributes['edit_count'])) {
$text .= '<br /><span class="gray"><small>' . core::$lng['edited'] . ': <b>' . $attributes['edit_name'] . '</b>' . ' (' . functions::display_date($attributes['edit_time']) . ') <b>' . '[' . $attributes['edit_count'] . ']</b></small></span>';
}
if (!empty($res['reply'])) {
$reply = functions::checkout($res['reply'], 1, 1);
if (core::$user_set['smileys']) {
$reply = functions::smileys($reply, $attributes['reply_rights'] >= 1 ? 1 : 0);
}
$text .= '<div class="' . ($attributes['reply_rights'] ? '' : 'g') . 'reply"><small>' . '<a href="' . core::$system_set['homeurl'] . '/users/profile.php?user='******'reply_id'] . '"><b>' . $attributes['reply_name'] . '</b></a>' . ' (' . functions::display_date($attributes['reply_time']) . ')</small><br/>' . $reply . '</div>';
}
$user_arg = array('header' => ' <span class="gray">(' . functions::display_date($res['time']) . ')</span>', 'body' => $text, 'sub' => functions::display_menu($menu), 'iphide' => core::$user_rights ? false : true);
echo functions::display_user($res, $user_arg);
echo '</div>';
++$i;
}
} else {
echo '<div class="menu"><p>' . core::$lng['list_empty'] . '</p></div>';
}
echo '<div class="phdr">' . core::$lng['total'] . ': ' . $this->total . '</div>';
if ($this->total > $kmess) {
echo '<div class="topmenu">' . functions::display_pagination($this->url . '&', $start, $this->total, $kmess) . '</div>' . '<p><form action="' . $this->url . '" method="post">' . '<input type="text" name="page" size="2"/>' . '<input type="submit" value="' . core::$lng['to_page'] . ' >>"/>' . '</form></p>';
}
if (!empty($arg['context_bottom'])) {
echo $arg['context_bottom'];
}
}
}
private function library_map()
{
global $rootpath, $set;
$file = $rootpath . 'files/cache/' . $this->cache_lib_file . '.dat';
if (file_exists($file) && filemtime($file) > time() - $this->cache_lib_map * 3600) {
return file_get_contents($file);
} else {
$req = mysql_query("SELECT * FROM `lib` WHERE `type` = 'cat' AND `ip` = '0'");
if (mysql_num_rows($req)) {
while (($res = mysql_fetch_assoc($req)) !== false) {
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `lib` WHERE `refid` = '" . $res['id'] . "' AND `type` = 'bk' AND `moder` = '1'"), 0);
if ($count) {
$text = html_entity_decode($res['text']);
$text = mb_substr($text, 0, 40);
$pages = ceil($count / $this->links_count);
if ($pages > 1) {
for ($i = 0; $i < $pages; $i++) {
$out[] = '<a href="' . $set['homeurl'] . '/library/contents.php?id=' . $res['id'] . '&p=' . $i . '">' . functions::checkout($text) . ' (' . ($i + 1) . ')</a>';
}
} else {
$out[] = '<a href="../library/contents.php?id=' . $res['id'] . '">' . functions::checkout($text) . '</a>';
}
}
}
if (isset($out)) {
return file_put_contents($file, implode('<br />' . "\r\n", $out)) ? implode('<br />', $out) : 'Library cache error';
}
}
}
return false;
}
if ($datauser['journal_forum']) {
echo '<div class="topmenu">Notifikasi Baru : ' . $datauser['journal_forum'] . '</div>';
mysql_query("UPDATE `users` SET `journal_forum`='0' WHERE `id` = '{$user_id}'");
}
$total = mysql_result(mysql_query("SELECT COUNT(*) FROM `forum` WHERE `id_user`='{$user_id}'" . ($rights >= 7 ? "" : " AND `close` != '1'")), 0);
if ($total) {
$req = mysql_query("SELECT `forum`.*, `users`.`sex`, `users`.`rights`, `users`.`lastdate`, `users`.`status`, `users`.`datereg`\n \tFROM `forum` LEFT JOIN `users` ON `forum`.`user_id` = `users`.`id`\n \tWHERE `forum`.`type` = 'm' AND `forum`.`id_user`='{$user_id}'" . ($rights >= 7 ? "" : " AND `forum`.`close` != '1'") . " ORDER BY `forum`.`id` DESC LIMIT {$start}, {$kmess}");
while (($res = mysql_fetch_assoc($req)) !== false) {
if ($res['close']) {
echo '<div class="rmenu">';
} else {
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
}
$theme = mysql_fetch_assoc(mysql_query("SELECT `text` FROM `forum` WHERE `id` = '" . $res['refid'] . "' ORDER BY `id` ASC LIMIT 1"));
echo 'Nick / User <a href="profile.php?user='******'user_id'] . '"><b>' . $res['from'] . '</b></a> telah menjawab postingan anda pada Thread <a href="../forum/index.php?id=' . $res['refid'] . '">' . $theme['text'] . '</a>' . ' <span class="gray">(' . date("d.m.Y / H:i", $res['time'] + $set_user['sdvig'] * 3600) . ')</span><div class="menu"><small>' . '<a href="../forum/index.php?act=post&id=' . $res['id'] . '">Baca Jawaban</a> ' . '<a href="../forum/index.php?act=say&id=' . $res['id'] . '"> ' . $lng_forum['reply_btn'] . '</a> ' . '<a href="../forum/index.php?act=say&id=' . $res['id'] . '&cyt"> ' . $lng_forum['cytate_btn'] . '</a> </small></div><div class="menu"><small>';
$text = bbcode::notags(functions::checkout(mb_substr($res['text'], 0, 150), 1, 1));
if (mb_strlen($res['text']) > 300) {
$text .= ' <span style="color:green;">...</span>';
}
if ($res['kedit']) {
$text .= '<br /><span class="gray"><small>' . $lng_forum['edited'] . ' <b>' . $res['edit'] . '</b> (' . date("d.m /H:i", $res['tedit'] + $set_user['sdvig'] * 3600) . ') <b>[' . $res['kedit'] . ']</b></small></span>';
}
echo $text;
$file_req = mysql_query("SELECT * FROM `cms_forum_files` WHERE `post` = '" . $res['id'] . "'");
if (mysql_num_rows($file_req) > 0) {
$file_res = mysql_fetch_assoc($file_req);
$file_ile_size = round(@filesize('../files/forum/attach/' . $file_res['filename']) / 1024, 2);
echo '<br /><span class="gray">' . $lng_forum['attached_file'] . ':';
$att_ext = strtolower(functions::format('./files/forum/attach/' . $file_res['filename']));
$pic_ext = array('gif', 'jpg', 'jpeg', 'png');
if (in_array($att_ext, $pic_ext)) {
*/
unset($_SESSION['ref']);
$req_a = mysql_query("SELECT * FROM `cms_album_cat` WHERE `id` = '" . $res_obj['album_id'] . "'");
$res_a = mysql_fetch_assoc($req_a);
if ($res_a['access'] == 1 && $owner['id'] != $user_id && $rights < 6 || $res_a['access'] == 2 && (!isset($_SESSION['ap']) || $_SESSION['ap'] != $res_a['password']) && $owner['id'] != $user_id) {
// Если доступ закрыт
require '../incfiles/head.php';
echo functions::display_error($lng['access_forbidden']) . '<div class="phdr"><a href="album.php?act=list&user='******'id'] . '">' . $lng_profile['album_list'] . '</a></div>';
require '../incfiles/end.php';
exit;
}
$context_top = '<div class="phdr"><a href="album.php"><b>' . $lng['photo_albums'] . '</b></a> | ' . '<a href="album.php?act=list&user='******'id'] . '">' . $lng['personal_2'] . '</a></div>' . '<div class="menu"><a href="album.php?act=show&al=' . $res_obj['album_id'] . '&img=' . $img . '&user='******'id'] . '&view"><img src="../files/users/album/' . $owner['id'] . '/' . $res_obj['tmb_name'] . '" /></a>';
if (!empty($res_obj['description'])) {
$context_top .= '<div class="gray">' . functions::smileys(functions::checkout($res_obj['description'], 1)) . '</div>';
}
$context_top .= '<div class="sub">' . '<a href="profile.php?user='******'id'] . '"><b>' . $owner['name'] . '</b></a> | ' . '<a href="album.php?act=show&al=' . $res_a['id'] . '&user='******'id'] . '">' . functions::checkout($res_a['name']) . '</a>';
if ($res_obj['access'] == 4 || $rights >= 7) {
$context_top .= vote_photo($res_obj) . '<div class="gray">' . $lng['count_views'] . ': ' . $res_obj['views'] . ', ' . $lng['count_downloads'] . ': ' . $res_obj['downloads'] . '</div>' . '<a href="album.php?act=image_download&img=' . $res_obj['id'] . '">' . $lng['download'] . '</a>';
}
$context_top .= '</div></div>';
/*
-----------------------------------------------------------------
Параметры комментариев
-----------------------------------------------------------------
*/
$arg = array('comments_table' => 'cms_album_comments', 'object_table' => 'cms_album_files', 'script' => 'album.php?act=comments', 'sub_id_name' => 'img', 'sub_id' => $img, 'owner' => $owner['id'], 'owner_delete' => true, 'owner_reply' => true, 'owner_edit' => false, 'title' => $lng['comments'], 'context_top' => $context_top, 'context_bottom' => '');
/*
-----------------------------------------------------------------
Ставим метку прочтения
-----------------------------------------------------------------
*/
if (!in_array($symbol_1, $array_symbol)) {
$array_symbol[] = $symbol_1;
$array_menu[] = $symbol && $symbol_1 == $symbol ? '<b>' . $symbol_1 . '</b>' : '<a href="?act=languages&mod=phrases&language=' . $language . '&module=' . $name_module . '&symbol=' . $symbol_1 . '">' . $symbol_1 . '</a>';
}
if (isset($search) && (stristr($key, $search) || stristr($val, $search))) {
++$total;
if ($total > $start && $total < $start + $kmess) {
$array_result[$key] = $val;
}
}
}
$array_menu[] = '<b>' . $lng['search'] . '</b>';
$lng_module = $array_result;
echo '<div class="phdr"><b>' . $lng_list[$language] . '</b>: <a href="index.php?act=languages&mod=module&language=' . $language . '"><b>' . $lng['modules'] . '</b></a> | ' . $name_module . ': ' . $lng['search'] . '</div>';
echo '<div class="topmenu">' . functions::display_menu($array_menu) . '</div>';
echo '<div class="gmenu"><form action="?act=languages&mod=search&language=' . $language . '&module=' . $name_module . '" method="post">' . '<p><input type="text" value="' . ($search ? functions::checkout($search) : '') . '" name="search" />' . '<input type="submit" value="' . $lng['search'] . '" name="submit" />' . '</p></form></div>';
$i = 0;
$reset = false;
if ($total) {
echo '<form action="?act=languages&mod=massdel_phrase&language=' . $language . '&module=' . $name_module . '&symbol=' . $symbol . '&start=' . $start . '" method="post">';
foreach ($lng_module as $key => $val) {
$search = str_replace('*', '', $search);
$search_key = mb_strlen($search) < 3 ? $key : preg_replace('|(' . preg_quote($search, '/') . ')|siu', '<span style="background-color: #FFFF33">$1</span>', $key);
$search_val = mb_strlen($search) < 3 ? $val : preg_replace('|(' . preg_quote($search, '/') . ')|siu', '<span style="background-color: #FFFF33">$1</span>', $val);
echo is_integer($i / 2) ? '<div class="list1">' : '<div class="list2">';
echo $search_key . '<br />' . $search_val . '<div class="sub">';
if (isset($lng_edit[$name_module]) && in_array($key, array_keys($lng_edit[$name_module]))) {
echo '<input type="checkbox" name="delch[]" value="' . $key . '"/> ';
}
echo '<a href="?act=languages&mod=edit_phrase&language=' . $language . '&module=' . $name_module . '&key=' . $key . '&symbol=' . $symbol . '&start=' . $start . '">' . $lng['edit'] . '</a>';
if (isset($lng_edit[$name_module]) && in_array($key, array_keys($lng_edit[$name_module]))) {
$total = mysql_result(mysql_query("SELECT COUNT(*) FROM `animes_comments` WHERE `refid`='{$id}';"), 0);
if ($total) {
if ($total > $kmess) {
echo '<div class="topmenu">' . functions::display_pagination('index.php?act=comments&id=' . $id . '&', $start, $total, $kmess) . '</div>';
}
$i = 1;
$req = mysql_query("SELECT `animes_comments`.*, `animes_comments`.`time` as `mtime`, `animes_comments`.`id` as `mid`, `users`.* FROM `animes_comments` LEFT JOIN `users` ON `animes_comments`.`user_id`=`users`.`id` WHERE `animes_comments`.`refid`='{$id}' ORDER BY `animes_comments`.`time` DESC LIMIT " . $start . "," . $kmess);
while (($row = mysql_fetch_assoc($req)) !== false) {
echo $i % 2 ? '<div class="list1">' : '<div class="list2">';
$post = $row['text'];
$post = functions::checkout($post, 1, 1);
if ($set_user['smileys']) {
$post = functions::smileys($post, $row['rights'] >= 1 ? 1 : 0);
}
if ($row['reply']) {
$post .= '<div class="reply">' . functions::checkout($row['reply'], 1, 1) . '</div>';
}
if ($rights >= 7) {
$subtext = '<a href="index.php?act=comments&mod=replay&id=' . $id . '&com=' . $row['mid'] . '">Jawab</a> | <a href="index.php?act=comments&mod=delete&id=' . $id . '&com=' . $row['mid'] . '">Hapus</a>';
} else {
$subtext = '';
}
$text = ' <span class="gray">(' . functions::display_date($row['mtime']) . ')</span>';
$arg = array('header' => $text, 'body' => $post, 'sub' => $subtext);
echo functions::display_user($row, $arg);
echo '</div>';
++$i;
}
echo '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
if ($total > $kmess) {
echo '<div class="topmenu">' . functions::display_pagination('index.php?act=comments&id=' . $id . '&', $start, $total, $kmess) . '</div>';
* @link http://johncms.com
* @copyright Copyright (C) 2008-2011 JohnCMS Community
* @license LICENSE.txt (see attached file)
* @version VERSION.txt (see attached file)
* @author http://johncms.com/about
*/
defined('_IN_JOHNADM') or die('Error: restricted access');
$error = array();
$search_post = isset($_POST['search']) ? trim($_POST['search']) : false;
$search_get = isset($_GET['search']) ? rawurldecode(trim($_GET['search'])) : false;
$search = $search_post ? $search_post : $search_get;
if (isset($_GET['ip'])) {
$search = trim($_GET['ip']);
}
$menu = array(!$mod ? '<b>' . $lng['ip_actual'] . '</b>' : '<a href="index.php?act=search_ip&search=' . rawurlencode($search) . '">' . $lng['ip_actual'] . '</a>', $mod == 'history' ? '<b>' . $lng['ip_history'] . '</b>' : '<a href="index.php?act=search_ip&mod=history&search=' . rawurlencode($search) . '">' . $lng['ip_history'] . '</a>');
echo '<div class="phdr"><a href="index.php"><b>' . $lng['admin_panel'] . '</b></a> | ' . $lng['ip_search'] . '</div>' . '<div class="topmenu">' . functions::display_menu($menu) . '</div>' . '<form action="index.php?act=search_ip" method="post"><div class="gmenu"><p>' . '<input type="text" name="search" value="' . functions::checkout($search) . '" />' . '<input type="submit" value="' . $lng['search'] . '" name="submit" /><br />' . '</p></div></form>';
if ($search) {
if (strstr($search, '-')) {
/*
-----------------------------------------------------------------
Обрабатываем диапазон адресов
-----------------------------------------------------------------
*/
$array = explode('-', $search);
$ip = trim($array[0]);
if (!core::ip_valid($ip)) {
$error[] = $lng['error_firstip'];
} else {
$ip1 = ip2long($ip);
}
$ip = trim($array[1]);
case 3:
$handle->image_contrast = 25;
break;
case 4:
$handle->image_contrast = 50;
break;
}
}
$handle->image_resize = true;
$handle->image_x = 80;
$handle->image_y = 80;
$handle->image_ratio_no_zoom_in = true;
$handle->process($path);
$tmb_name = $handle->file_dst_name;
}
$handle->clean();
@unlink('../files/users/album/' . $user['id'] . '/' . $res['img_name']);
@unlink('../files/users/album/' . $user['id'] . '/' . $res['tmb_name']);
$sql = "`img_name` = '" . mysql_real_escape_string($img_name) . "', `tmb_name` = '" . mysql_real_escape_string($tmb_name) . "',";
}
mysql_query("UPDATE `cms_album_files` SET {$sql}\n `description` = '" . mysql_real_escape_string($description) . "'\n WHERE `id` = '{$img}'\n ");
}
echo '<div class="gmenu"><p>' . $lng_profile['image_edited'] . '<br />' . '<a href="album.php?act=show&al=' . $album . '&user='******'id'] . '">' . $lng['continue'] . '</a></p></div>';
} else {
unset($_SESSION['post']);
echo '<form action="album.php?act=image_edit&img=' . $img . '&user='******'id'] . '" method="post">' . '<div class="menu">' . '<p><h3>' . $lng_profile['image'] . '</h3>' . '<img src="../files/users/album/' . $user['id'] . '/' . $res['tmb_name'] . '" /></p>' . '<p><h3>' . $lng['description'] . '</h3>' . '<textarea name="description" rows="' . $set_user['field_h'] . '">' . functions::checkout($res['description']) . '</textarea><br />' . '<small>' . $lng['not_mandatory_field'] . ', max. 500</small></p>' . '</div><div class="rmenu">' . '<p><h3>Яркость</h3>' . '<table border="0" cellspacing="0" cellpadding="0" style="text-align:center"><tr>' . '<td><input type="radio" name="brightness" value="1"/></td>' . '<td><input type="radio" name="brightness" value="2"/></td>' . '<td><input type="radio" name="brightness" value="0" checked="checked"/></td>' . '<td><input type="radio" name="brightness" value="3"/></td>' . '<td><input type="radio" name="brightness" value="4"/></td>' . '</tr><tr>' . '<td>-2</td>' . '<td>-1</td>' . '<td>0</td>' . '<td>+1</td>' . '<td>+2</td>' . '</tr></table></p>' . '<p><h3>Контрастность</h3>' . '<table border="0" cellspacing="0" cellpadding="0" style="text-align:center"><tr>' . '<td><input type="radio" name="contrast" value="1"/></td>' . '<td><input type="radio" name="contrast" value="2"/></td>' . '<td><input type="radio" name="contrast" value="0" checked="checked"/></td>' . '<td><input type="radio" name="contrast" value="3"/></td>' . '<td><input type="radio" name="contrast" value="4"/></td>' . '</tr><tr>' . '<td>-2</td>' . '<td>-1</td>' . '<td>0</td>' . '<td>+1</td>' . '<td>+2</td>' . '</tr></table></p>' . '<p><h3>' . $lng_profile['image_rotate'] . '</h3>' . '<input type="radio" name="rotate" value="0" checked="checked"/> ' . $lng_profile['image_rotate_not'] . '<br />' . '<input type="radio" name="rotate" value="2"/> ' . $lng_profile['image_rotate_right'] . '<br />' . '<input type="radio" name="rotate" value="1"/> ' . $lng_profile['image_rotate_left'] . '</p>' . '<p><small>' . $lng_profile['image_edit_warning'] . '</small></p>' . '<p><input type="submit" name="submit" value="' . $lng['save'] . '"/></p>' . '</div></form>' . '<div class="phdr"><a href="album.php?act=show&al=' . $album . '&user='******'id'] . '">' . $lng['cancel'] . '</a></div>';
}
} else {
echo functions::display_error($lng['error_wrong_data']);
}
}
}
$req = mysql_query("\n SELECT `cms_album_files`.*, `users`.`name` AS `user_name`, `cms_album_cat`.`name` AS `album_name` {$select}\n FROM `cms_album_files`\n INNER JOIN `users` ON `cms_album_files`.`user_id` = `users`.`id`\n INNER JOIN `cms_album_cat` ON `cms_album_files`.`album_id` = `cms_album_cat`.`id`\n {$join}\n WHERE {$where}\n ORDER BY {$order}\n LIMIT {$start}, {$kmess}\n ");
$i = 0;
for ($i = 0; ($res = mysql_fetch_assoc($req)) !== false; ++$i) {
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
if ($res['access'] == 4 || core::$user_rights >= 7) {
// Если доступ открыт всем, или смотрит Администратор
echo '<a href="album.php?act=show&al=' . $res['album_id'] . '&img=' . $res['id'] . '&user='******'user_id'] . '&view"><img src="../files/users/album/' . $res['user_id'] . '/' . $res['tmb_name'] . '" /></a>';
if (!empty($res['description'])) {
echo '<div class="gray">' . functions::smileys(functions::checkout($res['description'], 1)) . '</div>';
}
} elseif ($res['access'] == 3) {
// Если доступ открыт друзьям
echo 'Только для друзей';
} elseif ($res['access'] == 2) {
// Если доступ по паролю
echo '<a href="album.php?act=show&al=' . $res['album_id'] . '&img=' . $res['id'] . '&user='******'user_id'] . '"><img src="' . core::$system_set['homeurl'] . '/images/stop.gif" width="50" height="50"/></a>';
}
echo '<div class="sub">' . '<a href="album.php?act=list&user='******'user_id'] . '"><b>' . $res['user_name'] . '</b></a> | <a href="album.php?act=show&al=' . $res['album_id'] . '&user='******'user_id'] . '">' . functions::checkout($res['album_name']) . '</a>';
if ($res['access'] == 4 || core::$user_rights >= 6) {
echo vote_photo($res) . '<div class="gray">' . $lng['count_views'] . ': ' . $res['views'] . ', ' . $lng['count_downloads'] . ': ' . $res['downloads'] . '</div>' . '<div class="gray">' . $lng['date'] . ': ' . functions::display_date($res['time']) . '</div>' . '<a href="album.php?act=comments&img=' . $res['id'] . '">' . $lng['comments'] . '</a> (' . $res['comm_count'] . ')' . '<br /><a href="album.php?act=image_download&img=' . $res['id'] . '">' . $lng['download'] . '</a>';
}
echo '</div></div>';
}
} else {
echo '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
}
echo '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
if ($total > $kmess) {
echo '<div class="topmenu">' . functions::display_pagination('album.php?act=top' . $link . '&', $start, $total, $kmess) . '</div>' . '<p><form action="album.php?act=top' . $link . '" method="post">' . '<input type="text" name="page" size="2"/>' . '<input type="submit" value="' . $lng['to_page'] . ' >>"/>' . '</form></p>';
}
$post = functions::checkout($res['text'], 1, 1);
if ($set_user['smileys']) {
$post = functions::smileys($post, $res['rights'] >= 1 ? 1 : 0);
}
} else {
// Для гостей обрабатываем имя и фильтруем ссылки
$res['name'] = functions::checkout($res['name']);
$post = functions::antilink(functions::checkout($res['text'], 0, 2));
}
if ($res['edit_count']) {
// Если пост редактировался, показываем кем и когда
$post .= '<br /><span class="gray"><small>Изм. <b>' . $res['edit_who'] . '</b> (' . functions::display_date($res['edit_time']) . ') <b>[' . $res['edit_count'] . ']</b></small></span>';
}
if (!empty($res['otvet'])) {
// Ответ Администрации
$otvet = functions::checkout($res['otvet'], 1, 1);
if ($set_user['smileys']) {
$otvet = functions::smileys($otvet, 1);
}
$post .= '<div class="reply"><b>' . $res['admin'] . '</b>: (' . functions::display_date($res['otime']) . ')<br/>' . $otvet . '</div>';
}
if ($rights >= 6) {
$subtext = '<a href="index.php?act=otvet&id=' . $res['gid'] . '">' . $lng['reply'] . '</a>' . ($rights >= $res['rights'] ? ' | <a href="index.php?act=edit&id=' . $res['gid'] . '">' . $lng['edit'] . '</a> | <a href="index.php?act=delpost&id=' . $res['gid'] . '">' . $lng['delete'] . '</a>' : '');
} else {
$subtext = '';
}
$arg = array('header' => $text, 'body' => '<div class="textx">' . $post . '</div>', 'sub' => $subtext);
echo functions::display_user($res, $arg);
echo '</div>';
}
} else {
case "png":
$imt = "png.png";
break;
default:
$imt = "file.gif";
break;
}
echo '<img src="' . $filesroot . '/img/' . $imt . '" alt=""/><a href="?act=view&file=' . $zap2['id'] . '">' . htmlentities($zap2['name'], ENT_QUOTES, 'UTF-8') . '</a>';
if ($zap2['text'] != "") {
// Выводим анонс текстового описания (если есть)
$tx = $zap2['text'];
if (mb_strlen($tx) > 100) {
$tx = mb_substr(strip_tags($tx), 0, 90);
$tx .= '...';
}
echo '<div class="sub">' . functions::checkout($tx) . '</div>';
}
echo '</div>';
}
}
} else {
echo '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
}
echo '<div class="phdr">';
if ($totalcat > 0) {
echo $lng_dl['folders'] . ': ' . $totalcat;
}
echo '  ';
if ($totalfile > 0) {
echo $lng_dl['files'] . ': ' . $totalfile;
}
if ($total) {
$req = mysql_query("SELECT `users`.*, MAX(`cms_mail`.`time`) AS `time`\n\t\tFROM `cms_mail`\n\t\tLEFT JOIN `users` ON `cms_mail`.`user_id`=`users`.`id`\n\t\tLEFT JOIN `cms_contact` ON `cms_mail`.`user_id`=`cms_contact`.`from_id` AND `cms_contact`.`user_id`='{$user_id}'\n\t\tWHERE `cms_mail`.`from_id`='{$user_id}'\n\t\tAND `cms_mail`.`delete`!='{$user_id}'\n\t\tAND `cms_mail`.`sys`='0'\n\t\tAND `cms_contact`.`ban`!='1'\n\t\tGROUP BY `cms_mail`.`user_id`\n\t\tORDER BY MAX(`cms_mail`.`time`) DESC\n\t\tLIMIT " . $start . "," . $kmess);
for ($i = 0; $row = mysql_fetch_assoc($req); ++$i) {
$count_message = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_mail`\n WHERE `user_id`='{$row['id']}'\n AND `from_id`='{$user_id}'\n AND `delete`!='{$user_id}'\n AND `sys`!='1'\n "), 0);
$last_msg = mysql_fetch_assoc(mysql_query("SELECT *\n FROM `cms_mail`\n WHERE `from_id`='{$user_id}'\n AND `user_id` = '{$row['id']}'\n AND `delete` != '{$user_id}'\n ORDER BY `id` DESC\n LIMIT 1"));
if (mb_strlen($last_msg['text']) > 500) {
$text = mb_substr($last_msg['text'], 0, 500);
$text = functions::checkout($text, 1, 1);
if ($set_user['smileys']) {
$text = functions::smileys($text, $res['rights'] ? 1 : 0);
}
$text = bbcode::notags($text);
$text .= '...<a href="index.php?act=write&id=' . $row['id'] . '">' . $lng['continue'] . ' >></a>';
} else {
// Или, обрабатываем тэги и выводим весь текст
$text = functions::checkout($last_msg['text'], 1, 1);
if ($set_user['smileys']) {
$text = functions::smileys($text, $res['rights'] ? 1 : 0);
}
}
$arg = array('header' => '<span class="gray">(' . functions::display_date($last_msg['time']) . ')</span>', 'body' => '<div style="font-size: small">' . $text . '</div>', 'sub' => '<p><a href="index.php?act=write&id=' . $row['id'] . '"><b>' . $lng_mail['correspondence'] . '</b></a> (' . $count_message . ') | <a href="index.php?act=ignor&id=' . $row['id'] . '&add">Игнор</a> | <a href="index.php?act=deluser&id=' . $row['id'] . '">' . $lng['delete'] . '</a></p>', 'iphide' => 1);
if (!$last_msg['read']) {
echo '<div class="gmenu">';
} else {
echo $i % 2 ? '<div class="list1">' : '<div class="list2">';
}
echo functions::display_user($row, $arg);
echo '</div>';
}
} else {
echo '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
// Счетчик просмотров
if (!mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_album_views` WHERE `user_id` = '{$user_id}' AND `file_id` = '" . $res['id'] . "'"), 0)) {
mysql_query("INSERT INTO `cms_album_views` SET `user_id` = '{$user_id}', `file_id` = '" . $res['id'] . "', `time` = '" . time() . "'");
$views = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_album_views` WHERE `file_id` = '" . $res['id'] . "'"), 0);
mysql_query("UPDATE `cms_album_files` SET `views` = '{$views}' WHERE `id` = '" . $res['id'] . "'");
}
} else {
/*
-----------------------------------------------------------------
Предпросмотр изображения в списке
-----------------------------------------------------------------
*/
echo '<a href="album.php?act=show&al=' . $al . '&img=' . $res['id'] . '&user='******'id'] . '&view"><img src="../files/users/album/' . $user['id'] . '/' . $res['tmb_name'] . '" /></a>';
}
if (!empty($res['description'])) {
echo '<div class="gray">' . functions::smileys(functions::checkout($res['description'], 1)) . '</div>';
}
echo '<div class="sub">';
if ($user['id'] == $user_id || core::$user_rights >= 6) {
echo functions::display_menu(array('<a href="album.php?act=image_edit&img=' . $res['id'] . '&user='******'id'] . '">' . $lng['edit'] . '</a>', '<a href="album.php?act=image_move&img=' . $res['id'] . '&user='******'id'] . '">' . $lng['move'] . '</a>', '<a href="album.php?act=image_delete&img=' . $res['id'] . '&user='******'id'] . '">' . $lng['delete'] . '</a>'));
if ($user['id'] == $user_id && $view) {
echo ' | <a href="album.php?act=show&al=' . $al . '&user='******'id'] . '&view&img=' . $res['id'] . '&profile">' . $lng_profile['photo_profile'] . '</a>';
}
}
echo vote_photo($res) . '<div class="gray">' . $lng['count_views'] . ': ' . $res['views'] . ', ' . $lng['count_downloads'] . ': ' . $res['downloads'] . '</div>' . '<div class="gray">' . $lng['date'] . ': ' . functions::display_date($res['time']) . '</div>' . '<a href="album.php?act=comments&img=' . $res['id'] . '">' . $lng['comments'] . '</a> (' . $res['comm_count'] . ')<br />' . '<a href="album.php?act=image_download&img=' . $res['id'] . '">' . $lng['download'] . '</a>' . '</div></div>';
++$i;
}
} else {
echo '<div class="menu"><p>' . $lng['list_empty'] . '</p></div>';
}
echo '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
if (file_exists('../files/blogs/anime_icon_' . $row['id'] . '.jpg') !== false) {
echo '<table cellpadding="0" cellspacing="0" width="100%"><tr><td width="32">';
echo '<img style="margin: 0 0 -3px 0;border: 0px;" src="../files/blogs/anime_icon_' . $row['id'] . '.jpg" alt="" width="32" height="32"/> ';
echo '</td><td>';
echo '<a href="../blogs/index.php?act=view&id=' . $row['id'] . '">' . htmlentities($row['name'], ENT_QUOTES, 'UTF-8') . '</a> <br />(' . date('d.m.o / H:i', $row['time'] + $sdvigclock * 3600) . ')<br />';
echo '</td></tr></table>';
} else {
echo '<a href="../blogs/index.php?act=view&id=' . $row['id'] . '">' . htmlentities($row['name'], ENT_QUOTES, 'UTF-8') . '</a> (' . date('d.m.o / H:i', $row['time'] + $sdvigclock * 3600) . ')<br />';
}
echo '<div class="sub"></div>';
$text = $row['text'];
if (mb_strlen($text) > 100) {
$str = mb_substr($text, 0, 100);
$text = mb_substr($str, 0, mb_strrpos($str, ' ')) . '...';
}
echo functions::checkout($text, 2, 1);
if ($row['time'] > time()) {
echo '<div class="sub func">Waktu tersisa untuk disembunyikan: ' . timer($row['time'] - time()) . '</div>';
}
echo '</div>
<div class="bmenu"><a href="manage.php?act=newsedit&id=' . $row['id'] . '">Edit Blogs</a> | <a href="manage.php?act=delnews&id=' . $row['id'] . '">Delete</a></div>';
++$i;
}
echo '<div class="phdr">Total Blogs: ' . $total . '</div>';
if ($total > $kmess) {
echo '<p>' . functions::display_pagination('index.php?act=animes&mod=list&', $start, $total, $kmess) . '</p>';
echo '<p><form action="index.php" method="get">
<input type="hidden" name="act" value="mod_news"/>
<input type="hidden" name="mod" value="list"/>
<input type="text" name="page" size="2"/>
<input type="submit" value="' . $lng['to_page'] . ' >>"/></form></p>';
if ($al && $user['id'] == $user_id || $rights >= 6) {
$req_a = mysql_query("SELECT * FROM `cms_album_cat` WHERE `id` = '{$al}' AND `user_id` = '" . $user['id'] . "' LIMIT 1");
if (mysql_num_rows($req_a)) {
$res_a = mysql_fetch_assoc($req_a);
echo '<div class="phdr"><a href="album.php?act=list&user='******'id'] . '"><b>' . $lng['photo_album'] . '</b></a> | ' . $lng['delete'] . '</div>';
if (isset($_POST['submit'])) {
$req = mysql_query("SELECT * FROM `cms_album_files` WHERE `album_id` = '" . $res_a['id'] . "'");
while ($res = mysql_fetch_assoc($req)) {
// Удаляем файлы фотографий
@unlink('../files/users/album/' . $user['id'] . '/' . $res['img_name']);
@unlink('../files/users/album/' . $user['id'] . '/' . $res['tmb_name']);
// Удаляем записи из таблицы голосований
mysql_query("DELETE FROM `cms_album_votes` WHERE `file_id` = '" . $res['id'] . "'");
// Удаляем комментарии
mysql_query("DELETE FROM `cms_album_comments` WHERE `sub_id` = '" . $res['id'] . "'");
}
// Удаляем записи из таблиц
mysql_query("DELETE FROM `cms_album_files` WHERE `album_id` = '" . $res_a['id'] . "'");
mysql_query("DELETE FROM `cms_album_cat` WHERE `id` = '" . $res_a['id'] . "'");
mysql_query("OPTIMIZE TABLE `cms_album_cat`");
mysql_query("OPTIMIZE TABLE `cms_album_votes`");
mysql_query("OPTIMIZE TABLE `cms_album_files`");
mysql_query("OPTIMIZE TABLE `cms_album_comments`");
echo '<div class="menu"><p>' . $lng_profile['album_deleted'] . '<br />' . '<a href="album.php?act=list&user='******'id'] . '">' . $lng['continue'] . '</a></p></div>';
} else {
echo '<div class="rmenu"><form action="album.php?act=delete&al=' . $al . '&user='******'id'] . '" method="post">' . '<p>' . $lng_profile['album'] . ': <b>' . functions::checkout($res_a['name']) . '</b></p>' . '<p>' . $lng_profile['album_delete_warning'] . '</p>' . '<p><input type="submit" name="submit" value="' . $lng['delete'] . '"/></p>' . '</form></div>' . '<div class="phdr"><a href="album.php?act=list&user='******'id'] . '">' . $lng['cancel'] . '</a></div>';
}
} else {
echo functions::display_error($lng['error_wrong_data']);
}
}
echo '<div class="phdr"><a href="index.php?id=' . $id . '"><b>' . $lng['forum'] . '</b></a> | ' . $lng_forum['new_topic'] . '</div>';
if ($msg && $th && !isset($_POST['submit'])) {
echo '<div class="list1"><img src="../theme/default/images/op.gif" border="0" alt="op" /> <span style="font-weight: bold">' . $th . '</span></div>' . '<div class="list2">' . functions::display_user($datauser, array('iphide' => 1, 'header' => '<span class="gray">(' . functions::display_date(time()) . ')</span>', 'body' => $msg_pre)) . '</div>';
}
echo '<form name="form" action="index.php?act=nt&id=' . $id . '" method="post">' . '<div class="gmenu">' . '<p><h3>' . $lng['section'] . '</h3>' . '<a href="index.php?id=' . $res_c['id'] . '">' . $res_c['text'] . '</a> | <a href="index.php?id=' . $res_r['id'] . '">' . $res_r['text'] . '</a></p>' . '<p><h3>' . $lng_forum['new_topic_name'] . '</h3>';
echo '<select name="tiento">
<option value="0">No Prefix</option>
<option value="1">Discuss</option>
<option value="2">Share</option>
<option value="3">Info</option>
<option value="4">Tutorial</option>
<option value="5">Help</option>
<option value="6">Ask</option>
<option value="7">Request</option>
<option value="8">Movie</option>
<option value="9">Ongoing</option>
<option value="10">Completed</option>
</select>
';
echo '<input type="text" size="20" maxlength="100" name="th" value="' . $th . '"/></p>' . '<p><h3>' . $lng_forum['post'] . '</h3>';
if (!$is_mobile) {
echo '</p><p>' . bbcode::auto_bb('form', 'msg');
}
echo '<textarea rows="' . $set_user['field_h'] . '" name="msg">' . (isset($_POST['msg']) ? functions::checkout($_POST['msg']) : '') . '</textarea></p>' . '<p><input type="checkbox" name="addfiles" value="1" ' . (isset($_POST['addfiles']) ? 'checked="checked" ' : '') . '/> ' . $lng_forum['add_file'];
if ($set_user['translit']) {
echo '<br /><input type="checkbox" name="msgtrans" value="1" ' . (isset($_POST['msgtrans']) ? 'checked="checked" ' : '') . '/> ' . $lng['translit'];
}
$token = mt_rand(1000, 100000);
$_SESSION['token'] = $token;
echo '</p><p><input type="submit" name="submit" value="' . $lng['save'] . '" style="width: 107px; cursor: pointer;"/> ' . ($set_forum['preview'] ? '<input type="submit" value="' . $lng['preview'] . '" style="width: 107px; cursor: pointer;"/>' : '') . '<input type="hidden" name="token" value="' . $token . '"/>' . '</p></div></form>' . '<div class="phdr"><a href="../pages/faq.php?act=trans">' . $lng['translit'] . '</a> | ' . '<a href="../pages/faq.php?act=smileys">' . $lng['smileys'] . '</a></div>' . '<p><a href="index.php?id=' . $id . '">' . $lng['back'] . '</a></p>';
}
$tmp = mb_substr($req['text'], $symbols, 100);
if (($pos1 = mb_strpos($tmp, "\r\n")) === false) {
$pos1 = 100;
}
if (($pos2 = mb_strpos($tmp, ' ')) === false) {
$pos2 = 100;
}
$int_lenght = $symbols + ($pos1 >= $pos2 ? $pos2 : $pos1) - $int_start;
}
// Заголовок статьи
echo '<div class="phdr"><b>' . htmlentities($zag['name'], ENT_QUOTES, 'UTF-8') . '</b></div>';
if ($count_pages > 1) {
echo '<div class="topmenu">' . functions::display_pagination('index.php?id=' . $id . '&', $start, $count_pages, 1) . '</div>';
}
// Текст статьи
$text = functions::checkout(mb_substr($req['text'], $int_start, $int_lenght), 1, 1);
if ($set_user['smileys']) {
$text = functions::smileys($text, $rights ? 1 : 0);
}
echo '<div class="list2">' . $text . '</div>';
// Ссылка на комментарии
if ($set['mod_lib_comm'] || $rights >= 7) {
$km = mysql_query("select `id` from `lib` where type = 'komm' and refid = '" . $id . "'");
$km1 = mysql_num_rows($km);
$comm_link = "<a href='index.php?act=komm&id=" . $id . "'>" . $lng['comments'] . "</a> ({$km1})";
} else {
$comm_link = ' ';
}
echo '<div class="phdr">' . $comm_link . '</div>';
if ($count_pages > 1) {
echo '<div class="topmenu">' . functions::display_pagination('index.php?id=' . $id . '&', $start, $count_pages, 1) . '</div><div class="topmenu">' . '<form action="index.php?id=' . $id . '" method="post">' . '<input type="text" name="page" size="2"/>' . '<input type="submit" value="' . $lng['to_page'] . ' >>"/>' . '</form></div>';
$topic_vote = mysql_fetch_array(mysql_query("SELECT `name` FROM `cms_forum_vote` WHERE `type` = '1' AND `topic` = '{$id}' LIMIT 1"));
echo '<div class="phdr"><a href="index.php?id=' . $id . '"><b>' . $lng['forum'] . '</b></a> | ' . $lng_forum['edit_vote'] . '</div>' . '<form action="index.php?act=editvote&id=' . $id . '" method="post">' . '<div class="gmenu"><p>' . '<b>' . $lng_forum['voting'] . ':</b><br/>' . '<input type="text" size="20" maxlength="150" name="name_vote" value="' . htmlentities($topic_vote['name'], ENT_QUOTES, 'UTF-8') . '"/>' . '</p></div>' . '<div class="menu"><p>';
$vote_result = mysql_query("SELECT `id`, `name` FROM `cms_forum_vote` WHERE `type` = '2' AND `topic` = '{$id}'");
while ($vote = mysql_fetch_array($vote_result)) {
echo $lng_forum['answer'] . ' ' . ($i + 1) . ' (max. 50): <br/>' . '<input type="text" name="' . $vote['id'] . 'vote" value="' . htmlentities($vote['name'], ENT_QUOTES, 'UTF-8') . '"/>';
if ($countvote > 2) {
echo ' <a href="index.php?act=editvote&id=' . $id . '&vote=' . $vote['id'] . '&delvote">[x]</a>';
}
echo '<br/>';
++$i;
}
if ($countvote < 20) {
if (isset($_POST['plus'])) {
++$_POST['count_vote'];
} elseif (isset($_POST['minus'])) {
--$_POST['count_vote'];
}
if (empty($_POST['count_vote'])) {
$_POST['count_vote'] = $countvote;
} elseif ($_POST['count_vote'] > 20) {
$_POST['count_vote'] = 20;
}
for ($vote = $i; $vote < $_POST['count_vote']; $vote++) {
echo 'Ответ ' . ($vote + 1) . '(max. 50): <br/><input type="text" name="' . $vote . '" value="' . functions::checkout($_POST[$vote]) . '"/><br/>';
}
echo '<input type="hidden" name="count_vote" value="' . abs(intval($_POST['count_vote'])) . '"/>' . ($_POST['count_vote'] < 20 ? '<input type="submit" name="plus" value="' . $lng['add'] . '"/>' : '') . ($_POST['count_vote'] - $countvote ? '<input type="submit" name="minus" value="' . $lng_forum['delete_last'] . '"/>' : '');
}
echo '</p></div><div class="gmenu">' . '<p><input type="submit" name="submit" value="' . $lng['save'] . '"/></p>' . '</div></form>' . '<div class="phdr"><a href="index.php?id=' . $id . '">' . $lng['cancel'] . '</a></div>';
}
}
}
* @author http://johncms.com/about
*/
define('_IN_JOHNCMS', 1);
$headmod = 'usersearch';
require '../incfiles/core.php';
$textl = $lng['search_user'];
require '../incfiles/head.php';
/*
-----------------------------------------------------------------
Принимаем данные, выводим форму поиска
-----------------------------------------------------------------
*/
$search_post = isset($_POST['search']) ? trim($_POST['search']) : false;
$search_get = isset($_GET['search']) ? rawurldecode(trim($_GET['search'])) : '';
$search = $search_post ? $search_post : $search_get;
echo '<div class="phdr"><a href="index.php"><b>' . $lng['community'] . '</b></a> | ' . $lng['search_user'] . '</div>' . '<form action="search.php" method="post">' . '<div class="gmenu"><p>' . '<input type="text" name="search" value="' . functions::checkout($search) . '" />' . '<input type="submit" value="' . $lng['search'] . '" name="submit" />' . '</p></div></form>';
/*
-----------------------------------------------------------------
Проверям на ошибки
-----------------------------------------------------------------
*/
$error = array();
if (!empty($search) && (mb_strlen($search) < 2 || mb_strlen($search) > 20)) {
$error[] = $lng['nick'] . ': ' . $lng['error_wrong_lenght'];
}
if (preg_match("/[^1-9a-z\\-\\@\\*\\(\\)\\?\\!\\~\\_\\=\\[\\]]+/", functions::rus_lat(mb_strtolower($search)))) {
$error[] = $lng['nick'] . ': ' . $lng['error_wrong_symbols'];
}
if ($search && !$error) {
/*
-----------------------------------------------------------------
echo '<div class="topmenu">' . functions::display_menu($menu) . '</div>';
}
if ($user['id'] != $user_id) {
echo '<div class="user"><p>' . functions::display_user($user) . '</p></div>';
} else {
echo '<div class="list2"><p>' . $lng_ban['my_infringements'] . '</p></div>';
}
$total = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_ban_users` WHERE `user_id` = '" . $user['id'] . "'"), 0);
if ($total) {
$req = mysql_query("SELECT * FROM `cms_ban_users` WHERE `user_id` = '" . $user['id'] . "' ORDER BY `ban_time` DESC LIMIT {$start}, {$kmess}");
$i = 0;
while ($res = mysql_fetch_assoc($req)) {
$remain = $res['ban_time'] - time();
$period = $res['ban_time'] - $res['ban_while'];
echo $i % 2 ? '<div class="list2">' : '<div class="list1">';
echo '<img src="../images/' . ($remain > 0 ? 'red' : 'green') . '.gif" width="16" height="16" align="left" /> ' . '<b>' . $lng_ban['ban_' . $res['ban_type']] . '</b>' . ' <span class="gray">(' . date("d.m.Y / H:i", $res['ban_while']) . ')</span>' . '<br />' . functions::checkout($res['ban_reason']) . '<div class="sub">';
if ($rights > 0) {
echo '<span class="gray">' . $lng_ban['ban_who'] . ':</span> ' . $res['ban_who'] . '<br />';
}
echo '<span class="gray">' . $lng['term'] . ':</span> ' . ($period < 86400000 ? functions::timecount($period) : $lng_ban['ban_time_before_cancel']);
if ($remain > 0) {
echo '<br /><span class="gray">' . $lng['remains'] . ':</span> ' . functions::timecount($remain);
}
// Меню отдельного бана
$menu = array();
if ($rights >= 7 && $remain > 0) {
$menu[] = '<a href="profile.php?act=ban&mod=cancel&user='******'id'] . '&ban=' . $res['id'] . '">' . $lng_ban['ban_cancel_do'] . '</a>';
}
if ($rights == 9) {
$menu[] = '<a href="profile.php?act=ban&mod=delete&user='******'id'] . '&ban=' . $res['id'] . '">' . $lng_ban['ban_delete_do'] . '</a>';
}
case 4:
echo ' Mod ';
break;
case 1:
echo ' Kil ';
break;
}
$ontime = $mass1[lastdate];
$ontime2 = $ontime + 300;
if (time() > $ontime2) {
echo " [Off]";
} else {
echo " [ON]";
}
echo '(' . functions::display_date($mass['time']) . ')<br/>';
$text = functions::checkout($mass['text'], 1, 1);
if ($set_user['smileys']) {
$text = functions::smileys($text, $res['rights'] ? 1 : 0);
}
echo '<div>' . $text . '</div>';
if ($rights == 4 || $rights >= 6) {
echo "{$mass['ip']} - {$mass['soft']}<br/><a href='index.php?act=delmes&id=" . $mass['id'] . "'>(Удалить)</a><br/>";
}
echo "</div>";
}
++$i;
}
if ($countm > $kmess) {
echo "<hr/>";
$ba = ceil($countm / $kmess);
echo "Страницы:<br/>";
}
}
if ($id) {
$query = mysql_query("SELECT `animes`.*, `animes_cat`.`name` as `catname`, `animes_cat`.`id` as `catid` FROM `animes` LEFT JOIN `animes_cat` ON `animes`.`refid`=`animes_cat`.`id` WHERE `animes`.`id`='{$id}'" . ($rights < 7 ? " AND `animes`.`time`<='" . time() . "'" : "") . " LIMIT 1;");
if (mysql_num_rows($query)) {
//Показываем новость
$res1 = mysql_fetch_assoc($query);
$textl = 'Blogs | ' . htmlentities($res1['name'], ENT_QUOTES, 'UTF-8');
require_once '../incfiles/head.php';
echo '<div class="phdr"><h3>' . htmlentities($res1['name'], ENT_QUOTES, 'UTF-8') . '</h3></div>';
echo '<div class="list1">';
//Выводим картинку
if (file_exists('../files/blogs/anime_icon_' . $id . '.jpg') !== false) {
echo '<center><img style="float: center; margin: 5px 6px 2px 2px; border: 0px;" src="../files/blogs/anime_icon_' . $id . '.jpg" alt=""width="176" height="144"/> <br>';
}
$text = functions::checkout($res1['text'], 1, 1);
if ($set_user['smileys']) {
$text = functions::smileys($text);
}
echo '<div class="textx">';
echo $text;
echo '</div>';
echo '<div style="clear:both;"></div></div>';
//Обрабатываем голосование
if (isset($_POST['plus_x']) || isset($_POST['plus_y'])) {
if ($res1['user_id'] == $user_id) {
$_SESSION['error'] = '<div class="list1 red">Anda tidak boleh menilai blog sendiri!</div>';
} else {
$plus = mysql_result(mysql_query("SELECT COUNT(*) FROM `animes_rating` WHERE `news`='{$id}' AND `user_id`='{$user_id}' LIMIT 1;"), 0);
if ($plus) {
$_SESSION['error'] = '<div class="list1 red">Penilaian sudah diterima!</div>';
