Файл: user/diary/diary.php
Строк: 627
<?
include_once '../../sys/inc/start.php';
include_once '../../sys/inc/compress.php';
include_once '../../sys/inc/db_connect.php';
include_once '../../sys/inc/ipua.php';
include_once '../../sys/inc/fnc.php';
include_once '../../sys/inc/user.php';
if (!isset($_GET['id'])) {
header("Location: /index.php?".SID);
exit;
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev` WHERE `id` = '$_GET[id]'"),0)==0) {
header("Location: /index.php?".SID);
exit;
}
$dnev=mysql_fetch_assoc(mysql_query("SELECT * FROM `dnev` WHERE `id` = '$_GET[id]'"));
$dnev_avt=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '$dnev[id_user]'"));
$k_kom=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]'"),0);
mysql_query("UPDATE `dnev` SET `komm` = '$k_kom' WHERE `id`= '$dnev[id]'");
$all_see=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_look` WHERE `id_dnev` = '$dnev[id]'"),0);
mysql_query("UPDATE `dnev` SET `look` = '$all_see' WHERE `id`= '$dnev[id]'");
if ($dnev['read']==1 && $user['level']!=10) {
if ($dnev['read']==1 && $user['id']!=$dnev_avt['id']) {
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE `user` = '$user[id]' AND `frend` = '$dnev_avt[id]'"),0)==0) {
header("Location: /index.php?".SID);
exit;
}
}
}
if ($dnev['read']==2 && $user['level']!=10) {
if ($dnev['read']==2 && $dnev_avt['id']!=$user['id']) {
header("Location: /index.php?".SID);
exit;
}
}
if (isset($_GET['foto_add'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {}
else {
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
$set['title']=$dnev['name']."n|n Фото";
include_once '../../sys/inc/thead.php';
top();
err();
if (isset($_GET['ok'])) {
if (isset($_FILES['file1']))
{
if (preg_match('#.jpe?g$#i',$_FILES['file1']['name']) && $imgc=@imagecreatefromjpeg($_FILES['file1']['tmp_name']))
{
if (imagesx($imgc)>128 || imagesy($imgc)>128)
{
$img_x=imagesx($imgc);
$img_y=imagesy($imgc);
if ($img_x==$img_y)
{
$dstW=128; // ширина
$dstH=128; // высота
}
elseif ($img_x>$img_y)
{
$prop=$img_x/$img_y;
$dstW=128;
$dstH=ceil($dstW/$prop);
}
else
{
$prop=$img_y/$img_x;
$dstH=128;
$dstW=ceil($dstH/$prop);
}
$screen=imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen,H."sys/diary/$dnev[id]_$user[id]_1.jpg",100);
@chmod(H."sys/diary/$dnev[id]_$user[id]_1.jpg",0777);
imagedestroy($screen);
}
else
{
copy($_FILES['file1']['tmp_name'], H."sys/diary/$dnev[id]_$user[id]_1.jpg");
}
}
}
if (isset($_FILES['file2']))
{
if (preg_match('#.jpe?g$#i',$_FILES['file2']['name']) && $imgc=@imagecreatefromjpeg($_FILES['file2']['tmp_name']))
{
if (imagesx($imgc)>128 || imagesy($imgc)>128)
{
$img_x=imagesx($imgc);
$img_y=imagesy($imgc);
if ($img_x==$img_y)
{
$dstW=128; // ширина
$dstH=128; // высота
}
elseif ($img_x>$img_y)
{
$prop=$img_x/$img_y;
$dstW=128;
$dstH=ceil($dstW/$prop);
}
else
{
$prop=$img_y/$img_x;
$dstH=128;
$dstW=ceil($dstH/$prop);
}
$screen=imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen,H."sys/diary/$dnev[id]_$user[id]_2.jpg",100);
@chmod(H."sys/diary/$dnev[id]_$user[id]_2.jpg",0777);
imagedestroy($screen);
}
else
{
copy($_FILES['file2']['tmp_name'], H."sys/diary/$dnev[id]_$user[id]_2.jpg");
}
}
}
if (isset($_FILES['file3']))
{
if (preg_match('#.jpe?g$#i',$_FILES['file3']['name']) && $imgc=@imagecreatefromjpeg($_FILES['file3']['tmp_name']))
{
if (imagesx($imgc)>128 || imagesy($imgc)>128)
{
$img_x=imagesx($imgc);
$img_y=imagesy($imgc);
if ($img_x==$img_y)
{
$dstW=128; // ширина
$dstH=128; // высота
}
elseif ($img_x>$img_y)
{
$prop=$img_x/$img_y;
$dstW=128;
$dstH=ceil($dstW/$prop);
}
else
{
$prop=$img_y/$img_x;
$dstH=128;
$dstW=ceil($dstH/$prop);
}
$screen=imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen,H."sys/diary/$dnev[id]_$user[id]_3.jpg",100);
@chmod(H."sys/diary/$dnev[id]_$user[id]_3.jpg",0777);
imagedestroy($screen);
}
else
{
copy($_FILES['file3']['tmp_name'], H."sys/diary/$dnev[id]_$user[id]_3.jpg");
}
}
}
}
if (isset($_GET['del'])) {
unlink(H.'/sys/diary/'.$_GET['del'].'.jpg');
}
echo "Внимание!Можно загружать картинки только формата <font color='red'>JPG</font><br />n";
echo "<form method='post' enctype='multipart/form-data' action='?id=$dnev[id]&foto_add&ok'>n";
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$user['id'].'_1.jpg')) {
echo "<img src='/sys/diary/$dnev[id]_$user[id]_1.jpg'/><br/>n";
echo "[<a href='?id=$dnev[id]&foto_add&del=$dnev[id]_$user[id]_1'>Удалить</a>]<br/>n";
}
echo "<input type='file' name='file1' accept='image/jpeg' /><br/>n";
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$user['id'].'_2.jpg')) {
echo "<img src='/sys/diary/$dnev[id]_$user[id]_2.jpg'/><br/>n";
echo "[<a href='?id=$dnev[id]&foto_add&del=$dnev[id]_$user[id]_2'>Удалить</a>]<br/>n";
}
echo "<input type='file' name='file2' accept='image/jpeg' /><br/>n";
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$user['id'].'_3.jpg')) {
echo "<img src='/sys/diary/$dnev[id]_$user[id]_3.jpg'/><br/>n";
echo "[<a href='?id=$dnev[id]&foto_add&del=$dnev[id]_$user[id]_3'>Удалить</a>]<br/>n";
}
echo "<input type='file' name='file3' accept='image/jpeg' /><br/>n";
echo "<input value='Загрузить изображения' type='submit' /><br />n";
echo "</form>n";
echo "<div class='foot'>";
icon_levo();echo "<a href='?id=$dnev[id]'>$dnev[name]</a>";
echo "</div>";
include_once '../../sys/inc/tfoot.php';
}
if (isset($_GET['edit'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {}
else {
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
if (isset($_GET['edit']) && isset($_GET['ok'])) {
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])));
if (isset($_POST['translit1']) && $_POST['translit1']==1)$name=translit($name);
if (strlen2($name)<3)$err='Короткое название для темы';
if (strlen2($name)>80)$err='Название темы не должно быть длиннее 32-х символов';
$name=mysql_real_escape_string($name);
$msg=esc(stripcslashes(htmlspecialchars($_POST['msg'])));
if (isset($_POST['translit2']) && $_POST['translit2']==1)$msg=translit($msg);
if (strlen2($msg)<15)$err='Короткое сообщение';
if (strlen2($msg)>100000)$err='Длина сообщения превышает предел в 5000 символа';
$msg=mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("UPDATE `dnev` SET `name` = '$name' WHERE `id`= '$dnev[id]'");
mysql_query("UPDATE `dnev` SET `msg` = '$msg' WHERE `id`= '$dnev[id]'");
mysql_query("UPDATE `dnev` SET `read` = '$_POST[read]' WHERE `id`= '$dnev[id]'");
mysql_query("UPDATE `dnev` SET `write` = '".mysql_real_escape_string($_POST[write])."' WHERE `id`= '$dnev[id]'");
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
}
$set['title']=$dnev['name']."n|n редактирование";
include_once '../../sys/inc/thead.php';
top();
err();
echo "<form method='post' action='?id=$dnev[id]&edit&ok'>";
echo "Название (3-32 символа):<br />n";
echo "<input name='name' type='text' maxlength='32' value='$dnev[name]' /><br />n";
if ($user['set_translit']==1)echo "<label><input type='checkbox' name='translit1' value='1' /> Транслит</label><br />n";
echo "Сообщение (15-5000 символов):<br />n";
echo "<textarea name='msg'>$dnev[msg]</textarea><br />n";
if ($user['set_translit']==1)echo "<label><input type='checkbox' name='translit2' value='1' /> Транслит</label><br />n";
echo "Читатели:<br />n<select name='read'>n";
echo "<option value='0'".($dnev['read']==0?" selected='selected'":null).">Все</option>n";
echo "<option value='1'".($dnev['read']==1?" selected='selected'":null).">Друзья</option>n";
echo "<option value='2'".($dnev['read']==2?" selected='selected'":null).">Только я</option>n";
echo "</select><br />n";
echo "Писатели:<br />n<select name='write'>n";
echo "<option value='0'".($dnev['write']==0?" selected='selected'":null).">Все</option>n";
echo "<option value='1'".($dnev['write']==1?" selected='selected'":null).">Друзья</option>n";
echo "<option value='2'".($dnev['write']==2?" selected='selected'":null).">Только я</option>n";
echo "</select><br />n";
echo "<input value='Изменить' type='submit' /><br />n";
echo "</form>n";
echo "<div class='foot1'>";
echo "« <a href='?id=$dnev[id]'>$dnev[name]</a>";
echo "</div>";
include_once '../../sys/inc/tfoot.php';
}
if (isset($_GET['otv'])) {
$dnev=mysql_fetch_assoc(mysql_query("SELECT * FROM `dnev` WHERE `id` = '$_GET[id]'"));
$dnev_avt=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '$dnev[id_user]'"));
$user_temp=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".mysql_real_escape_string($_GET[otv])."'"));
if (isset($user) && isset($_POST['msg'])) {
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
if (strlen2($msg)<4)$err='Короткое сообщение';
if (strlen2($msg)>10000)$err='Длина сообщения превышает предел в 1000 символов';
$msg=mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("INSERT INTO `dnev_kom` (`id_dnev`, `id_user`, `msg`, `otv`, `time`) values('$dnev[id]', '$user[id]', '$msg', '$user_temp[id]', '$time')");
if ($user['id']!=$dnev_avt['id']) {
$msg1="В вашем дневникe [red][url=/user/diary/diary.php?id=$dnev[id]]$dnev[name][/url][/red] оставили сообщение ";
mysql_query("INSERT INTO `jurnal` (`id_kont`, `msg`, `time`) values('$dnev_avt[id]', '$msg1', '$time')");
}
if ($user['id']!=$user_temp['id'] && $user_temp['id']!=$dnev_avt['id']) {
$msg1="Вам ответили в дневнике [url=/user/diary/diary.php?id=$dnev[id]&page=end]$dnev[name][/url]";
mysql_query("INSERT INTO `jurnal` (`id_kont`, `msg`, `time`) values('$user_temp[id]', '$msg1', '$time')");
}
unset($_POST[msg]);
unset($msg);
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
}
$set['title']=$dnev['name']."n|n ответ $user_temp[nick]";
include_once '../../sys/inc/thead.php';
top();
err();
if (isset($user) && ($dnev['write']==0 || ($dnev['write']==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE `user` = '$user[id]' AND `frend` = '$dnev_avt[id]'"),0)!=0 || $dnev_avt['id']==$user['id'] || $user['level']==10) || ($dnev['write']==2 && $dnev_avt['id']==$user['id']) || $user['level']==10)) {
echo "<form method='post' name='message' action='?id=$dnev[id]&otv=$user_temp[id]'>n";
echo "Сообщение (4-1000 символов):<br />n<textarea name="msg"></textarea><br />n";
if ($user['set_translit']==1)echo "<label><input type="checkbox" name="translit" value="1" /> Транслит</label><br />n";
echo "<input name='post' value='Ответить' type='submit' /><br />n";
echo "<a href="/smiles/">Смайлы</a>";
echo "</form>n";
echo "<div class='foot1'>";
icon_levo();echo "<a href='?id=$dnev[id]'>$dnev[name]</a>";
echo "</div>";
include_once '../../sys/inc/tfoot.php';
}
else {
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
}
if (isset($user) && isset($_POST['msg'])) {
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
if (strlen2($msg)<4)$err='Короткое сообщение';
if (strlen2($msg)>10000)$err='Длина сообщения превышает предел в 1000 символов';
$msg=mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("INSERT INTO `dnev_kom` (`id_dnev`, `id_user`, `msg`, `time`) values('$dnev[id]', '$user[id]', '$msg', '$time')");
if ($user[id]!=$dnev_avt[id]) {
////
$q = mysql_query("SELECT * FROM `frends` WHERE `user` = '$user[id]' AND `lenta_forum` = '1' AND `i` = '1'");
while ($f = mysql_fetch_array($q))
{
$a = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$f[frend]' LIMIT 1"));
$msg_obsuzh="Принял участие в обсуждении дневника [url=/user/diary/diary.php?id=$dnev[id]]$dnev[name][/url] у обитателя [b]$dnev_avt[nick][/b]";
mysql_query("INSERT INTO `obsuzh` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$a[id]', '$msg_obsuzh', '$time')");
}
///
$msg1="В вашем дневнике [red][url=/user/diary/diary.php?id=$dnev[id]]$dnev[name][/url][/red] оставили сообщение";
mysql_query("INSERT INTO `jurnal` (`id_kont`, `msg`, `time`) values('$dnev_avt[id]', '$msg1', '$time')");
}
mysql_query("UPDATE `user` SET `komm_blog` = '".($user['komm_blog']+1)."' WHERE `id` = '$user[id]' LIMIT 1");
unset($_POST['msg']);
unset($msg);
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
}
if (isset($_GET['del'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
mysql_query("DELETE FROM `dnev_kom` WHERE `id` = '".mysql_real_escape_string($_GET[del])."' AND `id_dnev` = '$dnev[id]'");
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
else {
header("Location: /".SID);
exit;
}
}
if (isset($_GET['del_all_com'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
mysql_query("DELETE FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]'");
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
else {
header("Location: /".SID);
exit;
}
}
if (isset($_GET['del_full'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
mysql_query("DELETE FROM `dnev` WHERE `id` = '$dnev[id]'");
mysql_query("DELETE FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]'");
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
else {
header("Location: /".SID);
exit;
}
}
if (isset($_GET['hide'])) {
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
mysql_query("UPDATE `dnev_kom` SET `hide` = '".mysql_real_escape_string($_GET[set])."' WHERE `id`= '$_GET[hide]'");
header("Location: diary.php?id=$dnev[id]".SID);
exit;
}
else {
header("Location: /".SID);
exit;
}
}
if (isset($user) && $user['id']!=$dnev_avt['id']) {
$user_see=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_look` WHERE `id_dnev` = '$dnev[id]' AND `id_user` = '$user[id]'"),0);
if ($user_see==0) {
mysql_query("INSERT INTO `dnev_look` (`id_dnev`, `id_user`, `time`) values('$dnev[id]', '$user[id]', '$time')");
}
if ($user_see!=0) {
mysql_query("UPDATE `dnev_look` SET `time` = '$time' WHERE `id_user`= '$user[id]' AND `id_dnev` = '$dnev[id]'");
}
}
include_once '../../sys/inc/thead.php';
top();
err();
echo "<table class='post'>n";
echo "<tr><td class='icon15' title='$dnev_avt[p_avatar]'>";
avatar_little($dnev_avt['id']);
echo "</td><td class='p_t'>";
echo "<span style='float : right;'>n";
echo "<font color='red'>".vremja($dnev['time'])."</font>n";
echo "</span>";
icon_diary();echo output_text($dnev['name'])."n";
echo "<br/>n";
online($dnev_avt['id']);
echo "<a href='/user/profile.php?id=$dnev_avt[id]'>n";
echo GradientText("$dnev_avt[nick]", "$dnev_avt[ncolor]", "$dnev_avt[ncolor2]");
echo "</a> n";
echo "<a href='/user/ank.php?id=$dnev_avt[id]' title='Анкета $dnev_avt[nick]'>";
icon_info_ank();echo "</a> ";
medals($dnev_avt['id']);
strana($dnev_avt['id']);
admin($dnev_avt['id']);
echo "</td></tr>";
echo "</table>";
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$dnev_avt['id'].'_1.jpg')) {
echo "<div class='foot'>";
echo "<img src='/sys/diary/$dnev[id]_$dnev_avt[id]_1.jpg'/>";
echo "</div>";
}
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$dnev_avt['id'].'_2.jpg')) {
echo "<div class='foot'>";
echo "<img src='/sys/diary/$dnev[id]_$dnev_avt[id]_2.jpg'/>";
echo "</div>";
}
if (is_file(H.'/sys/diary/'.$dnev['id'].'_'.$dnev_avt['id'].'_3.jpg')) {
echo "<div class='foot'>";
echo "<img src='/sys/diary/$dnev[id]_$dnev_avt[id]_3.jpg'/>";
echo "</div>";
}
echo "<div class='foot1'>";
echo output_text($dnev['msg'])."<br/>n";
echo "</div>";
echo "<div class='foot1'>";
echo "Читатели:n";
if ($dnev['read']==0) echo "<font color='red'>Все</font> | n";
if ($dnev['read']==1) echo "<font color='red'>Друзья</font> | n";
if ($dnev['read']==2) echo "<font color='red'>Только я</font> | n";
echo "Писатели:n";
if ($dnev['write']==0) echo "<font color='red'>Все</font><br/>n";
if ($dnev['write']==1) echo "<font color='red'>Друзья</font><br/>n";
if ($dnev['write']==2) echo "<font color='red'>Только я</font><br/>n";
if ($user['id']==$dnev_avt['id']) echo "[<a href='diary.php?id=$dnev[id]&foto_add'>Фото</a>]n";
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
echo "[<a href='diary.php?id=$dnev[id]&edit'>Изменить</a>]n";
echo "[<a href='diary.php?id=$dnev[id]&del_all_com'>Очистить комм.</a>]n";
echo "[<a href='diary.php?id=$dnev[id]&del_full'>Удалить</a>]<br/>n";
}
echo "</div>";
echo "<div class='foot1'>";
$k_kom=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]'"),0);
icon_comm_news();echo "Комментариев: <font color='red'>+$k_kom</font> <br/>";
$all_see=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_look` WHERE `id_dnev` = '$dnev[id]'"),0);
icon_prosm_news();echo "Просмотров: <font color='red'>+$all_see</font>";
echo "</div>";
if (isset($user) && ($dnev['write']==0 || ($dnev['write']==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE `user` = '$user[id]' AND `frend` = '$dnev_avt[id]'"),0)!=0 || $dnev_avt['id']==$user['id'] || $user['level']==10) || ($dnev['write']==2 && $dnev_avt['id']==$user['id']) || $user['level']==10)) {
echo "<form method='post' name='message' action='?id=$dnev[id]'>n";
echo "Сообщение: <a href='/smiles/'>Смайлы</a> | <a href='/bb-code.php'>ББ-коды</a><br />n<textarea name="msg" cols='12' rows='2' style='width:50%' placeholder="Введите сообщение..."></textarea><br />n";
echo "<input name='post' value='Добавить комментарий' type='submit' />n";
if ($user['set_translit']==1)echo "<label><input type="checkbox" name="translit" value="1" /> Транслит</label><br />n";
echo "</form>n";
}
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]'"),0);
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
$lim=" LIMIT $start, $set[p_str]";
$q=mysql_query("SELECT * FROM `dnev_kom` WHERE `id_dnev` = '$dnev[id]' ORDER BY `time` DESC$lim");
if (mysql_num_rows($q)==0) {
echo "<div class='foot1'>n";
echo "Дневник "$dnev[name]" еще не обсуждали<br/>n";
echo "</div>";
}
$post_k=$start;
while ($post = mysql_fetch_assoc($q))
{
$ank=get_user($post['id_user']);
echo "<table class='posti'>n";
echo " <tr>n";
echo " <td class='p_t'>n";
$post_k++;
$num_post=$post_k;
if (isset($user))
online($ank['id']);
echo "<a href='/user/profile.php?id=$ank[id]' title='$ank[p_nick]'>n";
echo GradientText("$ank[nick]", "$ank[ncolor]", "$ank[ncolor2]");
echo "</a> n";
echo "<a href='/user/ank.php?id=$ank[id]' title='Анкета $ank[nick]'>";
icon_info_ank();echo "</a> ";
medals($ank['id']);
strana($ank['id']);
admin($ank['id']);
echo "<br/>n";
if ($post['hide']==1) echo "<font color='red'>[скрыт]</font> ";
if ($post['hide']==0 || ($post['hide']==1 && ($user['id']==$dnev_avt['id'] || $user['id']==$post['id_user'] || $user['level']==10))) {
if ($post['otv']!=0) {
$tmp_user=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '$post[otv]'"));
echo "Ответ $tmp_user[nick]: n";
}
echo output_text($post['msg'])."n";
}
echo "<span style='float : right;'>n";
echo "<font color='red'>".vremja($post['time'])."</font>";
echo "</span>n";
echo "<span style='float : right;'>n";
if (isset($user) && ($dnev['write']==0 || ($dnev['write']==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE `user` = '$user[id]' AND `frend` = '$dnev_avt[id]'"),0)!=0 || $dnev_avt['id']==$user['id'] || $user['level']>=3) || ($dnev['write']==2 && $dnev_avt['id']==$user['id']) || $user['level']>=3)) {
echo "<a href='diary.php?id=$dnev[id]&otv=$ank[id]'>";icon_mini_pensil();echo "</a>n";
}
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
if ($post['hide']==0){
echo "<a href='diary.php?id=$dnev[id]&hide=$post[id]&set=1'>";
icon_hide_on();
echo "</a>n";
}
if ($post['hide']==1){
echo "<a href='diary.php?id=$dnev[id]&hide=$post[id]&set=0'>";
icon_hide_off();
echo "</a>n";
}
}
if ($user['id']==$dnev_avt['id'] || $user['level']==10) {
echo "<a href='diary.php?id=$dnev[id]&del=$post[id]'>";icon_del();echo "</a>n";
}
echo "</span>n";
echo "</td></tr>";
echo "</table>n";
}
if ($k_page>1)str("?id=$dnev[id]&",$k_page,$page); // Вывод страниц
echo "<div class='foot1'>";
icon_diary();echo "<a href='/user/diary/dnev_list.php?id=$dnev_avt[id]'>Все записи</a> $dnev_avt[nick]<br/>n";
echo "</div>";
echo "<div class='foot1'>";
icon_levo();echo "<a href='/user/diary/'>Дневники</a>n";
echo "</div>";
include_once '../../sys/inc/tfoot.php';
?>