Файл: user/friends/index.php
Строк: 165
<?php
/*
* Друзья
* DCMS Special
* Модифицировал densnet
* Файл index.php
*/
require_once '../../sys/inc/start.php';
require_once '../../sys/inc/compress.php';
require_once '../../sys/inc/sess.php';
require_once '../../sys/inc/settings.php';
require_once '../../sys/inc/db_connect.php';
require_once '../../sys/inc/ipua.php';
require_once '../../sys/inc/fnc.php';
require_once '../../sys/inc/user.php';
only_reg();
$set['title'] = 'Список друзей';
require_once '../../sys/inc/thead.php';
if (isset($_GET['id'])) {
$ank = get_user(intval($_GET['id']));
if ($ank['id'] == 0) {
$ank = $user;
} else {
$ank = get_user(intval($_GET['id']));
}
} else {
only_reg('/reg.php');
$ank = $user;
}
aut();
if (isset($_POST['password'])) {
$set_cook = $_POST['password'];
setcookie("passfriend$ank[id]", $set_cook);
if (isset($_POST['password']) && $_POST['password'] == $ank['friends_password']) {
header("Location: ?id=$ank[id]");
}
}
if ($ank['friends_access'] == 'only_me') {
if ($ank['id'] == $user['id'] && isset($user) || $user['level'] >= 3) {
} else {
echo "<div class='err'>";
echo "Доступ к списку друзей пользователя <b>$ank[nick]</b> закрыт.";
echo "</div>";
require_once '../../sys/inc/tfoot.php';
exit();
}
} elseif ($ank['friends_access'] == 'friends') {
if ($ank['id'] == $user['id'] && isset($user) || $user['level'] >= 3 || $ank['id'] == $user['id'] && isset($user) || isset($umodd) || mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE (`user` = '$user[id]' AND `friends` = '$ank[id]') OR (`user` = '$ank[id]' AND `friends` = '$user[id]')"), 0) != 0) {
} else {
echo "<div class='err'>";
echo "Доступ к списку друзей пользователя <b>$ank[nick]</b> открыт только для друзей.";
echo "</div>";
require_once '../../sys/inc/tfoot.php';
exit();
}
} elseif ($ank['friends_access'] == 'pass') {
if (isset($_COOKIE["passfriend$ank[id]"]) && $_COOKIE["passfriend$ank[id]"] == $ank['friends_password'] || $ank['id'] == $user['id'] && isset($user) || $user['level'] >= 3) {
} else {
if (isset($_POST['password']) && $_POST['password'] != $ank['friends_password']) {
$err[] = "Пароль неправильный.";
}
err();
echo "<form class = 'err' action='' method='post'>";
echo "Список друзей пользователя <b>$ank[nick]</b> доступен только по паролю:<br/>";
echo "Пароль: <br/><input name='password' aria-required = 'true' aria-invalid = 'false' required = 'required' type = 'password' value=''/>";
echo "<button class = 'btn' name = 'submited'>";
echo "<img src = '/style/icons/tick.png' />";
echo "</button></form>";
require_once '../../sys/inc/tfoot.php';
exit();
}
}
$ank['id'] = $user['id'];
if (isset($_GET['id'])) {
$ank['id'] = intval($_GET['id']);
}
$q = mysql_query("SELECT * FROM `user` WHERE `id` = $ank[id] LIMIT 1");
if (mysql_num_rows($q) == 0) {
header("Location: index.php?" . SID);
exit;
}
$ank = mysql_fetch_array($q);
$k_online = mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` INNER JOIN `user` ON `friends`.`friends`=`user`.`id` WHERE `friends`.`user` = '$ank[id]' AND `friends`.`i` = '1' AND `user`.`date_last`>'" . (time() - 300) . "'"), 0);
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE `user` = '$ank[id]' AND `i` = '1'"), 0);
$k_z = mysql_result(mysql_query("SELECT COUNT(id) FROM `friends_new` WHERE `to` = '$ank[id]'"), 0);
echo "<div class = 'tabs t_bar clear_fix'>";
echo "<a href = '/user/friends/' class = 'active'>Друзья [$k_post]</a>";
if (isset($user) && $user['id'] == $ank['id']) {
echo "<a href = '/user/friends/new.php'>Заявки [$k_z]</a>";
echo "<a href = '/user/friends/online.php'>Онлайн [$k_online]</a>";
}
echo "</div>";
if ($k_post == 0) {
echo "<table class = 'razd'><tr><td class = 'null'>";
echo "<img src = '/style/icons/bullet_error.png' /> Нет друзей";
echo "</td></tr></table>";
}
$k_page = k_page($k_post, $set['p_str']);
$page = page($k_page);
$start = $set['p_str'] * $page - $set['p_str'];
$q = mysql_query("SELECT * FROM `friends` WHERE `user` = '$ank[id]' AND `i` = '1' ORDER BY time DESC LIMIT $start, $set[p_str]");
while ($f = mysql_fetch_array($q)) {
$ank = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$f[friends]' LIMIT 1"));
echo "<table class = 'razd'><tr><td class = 'icon14'>";
avatar($ank['id'], '48');
echo "</td><td class = 'null'>";
user($ank['id']);
echo "<br/>";
echo "<div class = 'dropdown'>";
echo "<a href = '#' class = 'button'><span class = 'icon icon96' /><span class = 'label'>Опции</span><span class = 'toggle'></span></a>";
echo "<div class = 'dropdown-slider'>";
if (isset($user) && $user['id'] != $ank['id']) {
echo "<a href = '/user/friends/new.php?del=$ank[id]' class = 'ddm'><span class = 'icon icon58' /><span class = 'label'>Удалить</span></a>";
}
echo "<a href = '/mail.php?id=$ank[id]' class = 'ddm negative'><span class = 'icon icon125' /><span class = 'label'>Сообщение</span></a>";
echo "</div></div>";
echo "</td></tr></table>";
}
if (isset($user) && $user['id'] == $ank['id']) {
echo "<div class = 'razd'>";
echo "<img src = '/style/icons/user--pencil.png' /> <a href = 'access.php'>Настройки</a><br/>";
echo "<img src = '/style/icons/user--arrow.png' /> <a href = 'invite.php'>Пригласить друга</a><br/>";
echo "</div>";
} else {
}
if ($k_page > 1) {
str('?id=' . $ank['id'] . '&', $k_page, $page);
}
require_once '../../sys/inc/tfoot.php';