Файл: vkollektive2014/soo/info.php
Строк: 153
<?
include_once '../connect.php';
if(isset($_GET['s']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `soo` WHERE `id` = '".intval($_GET['s'])."' LIMIT 1"),0)==1)
{
$s=intval($_GET['s']);
$soo=mysql_fetch_assoc(mysql_query("SELECT * FROM `soo` WHERE `id` = '$s' LIMIT 1"));
include_once 'inc/ban.php';
if($soo['konf_soo']==0 || isset($user) && (mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_users` WHERE `id_soo` = '$soo[id]' AND `id_user`='$user[id]' AND `invit`='0' AND `activate`='0' LIMIT 1"),0)==1 || $user['id']==$soo['admid'] || $user['level']>0))
{
if(isset($_GET['id']) && (mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_users` WHERE `id_user` = '".intval($_GET['id'])."' AND `id_soo`='$soo[id]' AND `activate`='0' AND `invit`='0' LIMIT 1"),0)==1 || $_GET['id']==$soo['admid']) || isset($user) && !isset($_GET['id']) && (mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_users` WHERE `id_user` = '$user[id]' AND `id_soo`='$soo[id]' AND `activate`='0' AND `invit`='0' LIMIT 1"),0)==1 || $user['id']==$soo['admid']))
{
if(isset($_GET['id']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1"),0)==1)
{
$id=intval($_GET['id']);
$ank=get_user($id);
}
else
{
$ank=get_user($user['id']);
}
$ank_soo = mysql_fetch_assoc(mysql_query("SELECT * FROM `soo_users` WHERE `id_user`='$ank[id]' LIMIT 1"));
$set['title']=$soo['name'].' - '.$ank['nick']; // заголовок страницы
include_once '../head.php';
if(isset($_GET['del']) && $user['id']!=$ank['id'] && $user['id']==$soo['admid'])
{
mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values ('0', '$ank[id]', 'Вас выгнали из сообщества [url=/soo/$soo[id]]$soo[name][/url]', '$time')");
mysql_query("DELETE FROM `soo_chat` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]'");
mysql_query("DELETE FROM `soo_forum_thems` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]'");
mysql_query("DELETE FROM `soo_forum_mess` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]'");
mysql_query("DELETE FROM `soo_users` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]' LIMIT 1");
$q=mysql_query("SELECT * FROM `soo_obmen_files` WHERE `id_soo`='$soo[id]' AND `id_user`='$ank[id]'");
while ($del = mysql_fetch_assoc($q))
{
unlink(H.'sys/soo/obmen/files/'.$del['id'].'.dat');
mysql_query("DELETE FROM `soo_obmen_komm` WHERE `id_soo`='$soo[id]' AND `id_file`='$del[id]'");
}
mysql_query("DELETE FROM `soo_obmen_files` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]'");
mysql_query("DELETE FROM `soo_votes_otvet` WHERE `id_user`='$ank[id]' AND `id_soo`='$soo[id]' LIMIT 1");
mysql_query("UPDATE `soo` SET `users` = '".($soo['users']-1)."' WHERE `id` = '$soo[id]' LIMIT 1");
msg('Юзер успешно выгнан из соо');
}
if(isset($user) && $ank['id']!=$user['id'] && $ank['id']!=$soo['admid'] && $user['id']==$soo['admid']){
if(isset($_POST['level']) && ($_POST['level']==0 || $_POST['level']==1 || $_POST['level']==2))
{
$level = intval($_POST['level']);
mysql_query("UPDATE `soo_users` SET `level`='$level' WHERE `id_soo`='$soo[id]' AND `id_user`='$ank[id]' LIMIT 1");
msg('Изменения успешно приняты');
}}
if(isset($user) && $ank['id']!=$user['id'] && $ank['id']!=$soo['admid'] && $user['id']==$soo['admid']){
if(isset($_POST['level']) && $_POST['level']==3)
{
if ($soo['new_adm']==$ank['id']){msg('Вы уже отправили заявку этому пользователю!');}
else{
mysql_query("UPDATE `soo` SET `new_adm`='$ank[id]' WHERE `id`='$soo[id]' LIMIT 1");
mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `msg`, `time`) values ('0', '$ank[id]', 'Вам хотят передать сообщество [url=/soo/$soo[id]]$soo[name][/url] [url=/soo/admin.php?s=$soo[id]&new_sozd=ok]Принять[/url] / [url=/soo/index.php?s=$soo[id]&new_sozd=not]Отказаться[/url]', '$time')");
msg('Заявка успешно отправлена пользователю!');}
}}
if($ank['id']!=$soo['admid'] && $ank_soo['ban']!=NULL && $ank_soo['ban']>$time)
{
echo'<b>Участник забанен до '.vremja($ank_soo['ban']).' за '.output_text($ank_soo['prich']).'</b><br/>';
}
echo'<a href="/info.php?id='.$ank['id'].'">'.$ank['nick'].'</a> '.online($ank['id']).'<br/>';
if($ank['id']==$soo['admid'])
{
if($ank['pol']==0)echo'Создала сообщество: '.vremja($soo['time']).'<br/>'; else echo'Создал сообщество: '.vremja($soo['time']).'<br/>';
}
else
{
if($ank['pol']==0)echo'Вступила в сообщество: '.vremja($ank_soo['time']).'<br/>'; else echo'Вступил в сообщество: '.vremja($ank_soo['time']).'<br/>';
}
if($ank_soo['invit_us']!=NULL && $ank_soo['invit_us']!=0)
{
$ank_invit = get_user($ank_soo['invit_us']);
if($ank_invit['pol']==0)
{
echo'Пригласила: ';
}
else
{
echo'Пригласил: ';
}
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_users` WHERE `id_soo`='$soo[id]' AND `id_user` = '$ank_invit[id]' LIMIT 1"),0)==1)echo'<a href="info.php?s='.$soo['id'].'&id='.$ank_invit['id'].'">'.$ank_invit['nick'].'</a><br/>'; else echo'<a href="/info.php?id='.$ank_invit['id'].'">'.$ank_invit['nick'].'</a><br/>';
}
echo'Тем на форуме: '.mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_forum_thems` WHERE `id_soo` = '$soo[id]' AND `id_user`='$ank[id]'"),0).'<br/>';
echo'Сообщений на форуме: '.mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_forum_mess` WHERE `id_soo` = '$soo[id]' AND `id_user`='$ank[id]'"),0).'<br/>';
echo'Сообщений в мини-чате: '.mysql_result(mysql_query("SELECT COUNT(*) FROM `soo_chat` WHERE `id_soo` = '$soo[id]' AND `id_user`='$ank[id]'"),0).'<br/>';
echo "</td>";
echo "</table>";
$user_s = mysql_fetch_assoc(mysql_query("SELECT * FROM `soo_users` WHERE `id_soo`='$soo[id]' AND `id_user`='$user[id]' LIMIT 1"));
$ank_s = mysql_fetch_assoc(mysql_query("SELECT * FROM `soo_users` WHERE `id_soo`='$soo[id]' AND `id_user`='$ank[id]' LIMIT 1"));
if(isset($user) && $ank['id']!=$user['id'] && $ank['id']!=$soo['admid'] && ($user['id']==$soo['admid'] || $user_s['level']>'0' && $user_s['level']>$ank_s['level']))
{
echo "<img src='/style/img/p.gif' alt='' class='icon'/>n";
echo'<a href="banned.php?s='.$soo['id'].'&ban='.$ank['id'].'">Забанить</a><br/>';
if($user_s['level']>'1')
{
echo "<img src='/style/img/p.gif' alt='' class='icon'/>n";
echo'<a href="?s='.$soo['id'].'&id='.$ank['id'].'&del">Выгнать из соо</a><br/>';
echo "<img src='/style/img/p.gif' alt='' class='icon'/>n";
echo'<a href="admin.php?s='.$soo['id'].'&bl&uz='.$ank['id'].'">Добавить в ЧС</a><br/>';
}
if(isset($user) && $user['id']==$soo['admid'])
{
echo'<form method="post" action="?s='.$soo['id'].'&id='.$ank['id'].'&'.$passgen.'">';
echo'Должность:<br/>';
echo '<select name="level">';
echo '<option value="0"'.($ank_s['level']==0?' selected="selected"':null).'>Пользователь</option>';
echo '<option value="1"'.($ank_s['level']==1?' selected="selected"':null).'>Модератор</option>';
echo '<option value="2"'.($ank_s['level']==2?' selected="selected"':null).'>Администратор</option>';
echo '<option value="3"'.($ank_s['level']==3?' selected="selected"':null).'>Создатель</option>';
echo '</select><br />';
echo'<input name="save" type="submit" value="Сохранить"></form>';
}}
echo'</div>';
echo'<div class="foot"><img src="/style/img/l.gif" alt="" class="icon"/><a href="index.php?s='.$soo['id'].'">В сообщество</a></div>';
echo'</div>';
}
}
}
include_once '../foot.php';
?>