Файл: gamele.ru/core2/ch.php
Строк: 157
<?php
session_start();
include($_SERVER["DOCUMENT_ROOT"]."/includes/config.inc.php");
include(DROOT."/includes/functions.php");
$pers = GetUser();
if(!preg_match("/{$HTTP_HOST}/",getenv('HTTP_REFERER')) or $pers['pcid']!=md5($pers['id'].$pers['pass'].$pers['Autch_time'].getIP().$_SERVER['HTTP_USER_AGENT'].$pers['block'])){
if($pers['block']!=''){
exit("<script>top.location = '/index.php?act=logout';</script>");
}else{
exit("<script>top.frames['main_top'].location = '/main.php?useaction=error-page';</script>");
}
}
if($pers['loc'] != '28'){
$location = mysql_fetch_assoc(mysql_query("SELECT `loc`,`room`,`city` FROM `loc` WHERE `id`='".$pers['loc']."' LIMIT 1;"));
}elseif($pers['loc'] == '28'){
list($pers['x'], $pers['y']) = explode('_', $pers['pos']);
$location = mysql_fetch_assoc(mysql_query("SELECT `name`,`city` FROM `nature` WHERE `x`='".$pers['x']."' AND `y`='".$pers['y']."' LIMIT 1;"));
$location['loc'] = $location['name'];
}
$_GET['order'] = $_GET['order']?$_GET['order']:$pers['filt'];
$res = mysql_query("SELECT `id`,`login`,`sleep`,`dealer`,`loc`,`clan_d`,`level`,`clan`,`clan_gif`,`clan_id`,`sklon`,`last`,`affect`,`pos`,`invisible`,`OnlineType` FROM `user` WHERE `loc`='".$pers['loc']."' AND `pos`='".$pers['pos']."' AND `last`>'".(time()-300)."' AND `id` != '12309' AND `type`='1'");
$all = mysql_query("SELECT `id`,`login`,`sleep`,`dealer`,`loc`,`clan_d`,`level`,`clan`,`clan_gif`,`clan_id`,`sklon`,`last`,`affect`,`pos`,`invisible`,`OnlineType` FROM `user` WHERE `last`>'".(time()-300)."' AND `type`='1'");
switch($_GET['view']){
case'all':
$invisible = mysql_num_rows(mysql_query("SELECT * FROM `user` WHERE `last`>'".(time()-300)."' AND `invisible`>'".time()."'"));
break;
default;
$invisible = mysql_num_rows(mysql_query("SELECT * FROM `user` WHERE `loc`='".$pers['loc']."' AND `pos`='".$pers['pos']."' AND `last`>'".(time()-300)."' AND `invisible`>'".time()."'"));
}
echo'<html>
<head>
<LINK href=/ch/list.css rel=STYLESHEET type=text/css>
<meta content="text/html; charset=windows-1251" http-equiv=Content-type>
<META Http-Equiv=Cache-Control Content=no-cache>
<meta http-equiv=PRAGMA content=NO-CACHE>
<META Http-Equiv=Expires Content=0>
</HEAD>
<SCRIPT LANGUAGE="JavaScript" src="/js/signs.js"></SCRIPT>
<SCRIPT LANGUAGE="JavaScript" src="/ch/ch_list.js"></SCRIPT>
<body bgcolor=#FCFAF3 mardginheight=0 topmardgin=0 topmargin=0 marginheight=0 onscroll="top.save_scroll_p()" onLoad="document.body.scrollTop=top.OnlineScrollPosition">
<table border=0 cellpadding=0 cellspacing=0 width=100%>
<td height="56" align="center" valign="middle" class="td1"><a href=ch.php?lo=1&><span class="placename"><b>'.(($location['room'])?$location['room']:$location['city']).''.(($location['loc'])?', '.(($location['room'])?$location['room']:$location['loc']).' ':'').'</b></span><br><span class="col">'.(($invisible)?'</b><b>Невидимок</b> [ '.$invisible.' ]<br>':'').'<b>['.(mysql_num_rows($res)).' '.(($pers['clan_id']=='admin')?'из '.(mysql_num_rows($all)).' ]<br><a href=ch.php?lo=1&view=all&order='.$_GET['order'].'><span class="placename">Весь список</span></a>':(($pers['login']=='morg')?'<a href=ch.php?lo=1&view=all&order='.$_GET['order'].'><b>из</b></a> [ '.(mysql_num_rows($all)).' (<b>'.mysql_num_rows($all).'</b>+'.(mysql_num_rows($all)).') ]</font>':'из '.(mysql_num_rows($all)).']')).'</span></a></td>
</tr>
<tr><td><img src=http://image.gamele.ru/1x1.gif width=1 height=5></td></tr>
<tr><td align="center" valign="middle"><script>
document.write ('<input type=checkbox onclick="top.OnlineStop=!top.OnlineStop;top.reload(false);" '+ (top.OnlineStop ? '' : 'checked') + '>');</script> <a href="ch.php?lo=1&order=a_z'.(($_GET['view']=='all')?'&view=all':'').'" class="sort">'.(($_GET['order']=='a_z')?'<b>a-z</b>':'a-z').'</a> <a href="ch.php?lo=1&order=z_a'.(($_GET['view']=='all')?'&view=all':'').'" class="sort">'.(($_GET['order']=='z_a')?'<b>z-a</b>':'z-a').'</a> <a href="ch.php?lo=1&order=0_33'.(($_GET['view']=='all')?'&view=all':'').'" class="sort">'.(($_GET['order']=='0_33')?'<b>0-99</b>':'0-99').'</a> <a href="ch.php?lo=1&order=33_0'.(($_GET['view']=='all')?'&view=all':'').'" class="sort">'.(($_GET['order']=='33_0')?'<b>99-0</b>':'99-0').'</a></td></tr>
<tr><td><img src=http://image.gamele.ru//1x1.gif width=1 height=5></td></tr>
<tr><td nowrap>
<SCRIPT>
var ChatListU = new Array(';
$s = "":Дружинник:15:pv20.gif;Представители Власти;Робот Представителей Власти:0:0:0:0:0:0",n";
while ($row = mysql_fetch_array(($_GET['view'])?$all:$res)) {
if($row['invisible']<time() and $row['id']!='12309'){
if(effects($row['id'],0)!=''){
$traw=effects($row['id'],0);
}else{
$traw=0;
}
$s .= '"'.strtolower($row['login']).':';
$s .= $row['login'].':';
$s .= $row['level'].':';
if($row['clan_id']!='admin' and $row['clan_id']!='none'){
$s .= $row['clan_gif'].';'.$row['clan'].';'.$row['clan_d'].':';
}else{
$s .= '0:';
}
$s .= ($row['sleep']>time())?$row['sleep']-time().':':'0:';
$s .= (!empty($_SESSION['ignor'][$row['login']])?'1:':'0:'); // Игнор - надо доработать чат
$s .= $traw?$traw.':':'0:';
$s .= ((accesses($row['id'],'dealer'))?((accesses($row['id'],'dealer',1)<3)?accesses($row['id'],'dealer',1):'0').':':'0:');
$s .= $row['sklon']?$row['sklon'].':':'0:';
$s .= $row['OnlineType'].'"';
$s .= ",n";
}elseif($row['invisible']>time() and accesses($pers['id'],'pvu') and $row['id']!='12309'){
if(effects($row['affect'],0)!=''){
$traw=effects($row['affect'],0);
}else{
$traw=0;
}
$s .= '"'.strtolower($row['login']).':';
$s .= $row['login'].':';
$s .= $row['level'].':';
if($row['clan_id']!='admin' and $row['clan_id']!='none'){
$s .= $row['clan_gif'].';'.$row['clan'].';'.$row['clan_d'].':';
}else{
$s .= '0:';
}
$s .= ($row['sleep']>time())?$row['sleep']-time().':':'0:';
$s .= '0:'; // Игнор - надо доработать чат
$s .= $traw?$traw.':':'0:';
$s .= ((accesses($row['id'],'dealer'))?((accesses($row['id'],'dealer',1)<3)?accesses($row['id'],'dealer',1):'0').':':'0:');
$s .= $row['sklon']?$row['sklon'].':':'0:';
$s .= '2"';
$s .= ",n";
}
}
mysql_free_result($res);
echo substr($s,0,strlen($s)-2);
echo');
chatlist_build(''.$_GET['order'].'');
</SCRIPT><br>
</td></tr>
</table>
</body>';
?>