Файл: user/wall/comments.php
Строк: 182
<?php
/* DCMS S (Special)
* Версия файла 0.0.1
* Дата последнего редактирования 02.11.2015
* Модифицировал densnet
*/
require_once '../../sys/inc/start.php';
require_once H . 'sys/inc/compress.php';
require_once H . 'sys/inc/sess.php';
require_once H . 'sys/inc/settings.php';
require_once H . 'sys/inc/db_connect.php';
require_once H . 'sys/inc/ipua.php';
require_once H . 'sys/inc/fnc.php';
require_once H . 'sys/inc/user.php';
$id = intval($_GET['id']);
$wall = mysql_fetch_array(mysql_query("SELECT * FROM `wall` WHERE `id` = '" . intval($_GET['id']) . "';"));
$ank = user::get_user($wall['id_user']);
$set['title'] = ' Запись - ' . $ank['nick'] . '';
require_once H . 'sys/inc/thead.php';
title();
err();
aut();
if (isset($_GET['unlike']) && isset($user)) {
mysql_query("DELETE FROM `wall_like` WHERE `id_user` = '$user[id]' AND `id_komm` = '" . intval($_GET['id']) . "' LIMIT 1");
}
if (isset($_GET['like']) && isset($user)) {
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_like` WHERE `id_komm` = '" . intval($_GET['id']) . "' AND `id_user` = '$user[id]' LIMIT 1"), 0) != 0) {
} else {
mysql_query("INSERT INTO `wall_like` (`id_user`, `id_komm`) values('$user[id]', '" . intval($_GET['id']) . "')");
if (isset($user) && $user['id'] != $ank['id']) {
$mess = "$SexOcen Вашу [url=/user/wall/comments.php?id=$wall[id]]запись[/url].";
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$ank[id]', '$mess', '$time')");
}
$like = mysql_query("SELECT * FROM `wall_like` WHERE `id_komm` = '$wall[id]' ORDER BY `id`");
while ($postlike = mysql_fetch_assoc($like)) {
$userlike = user::get_user($postlike['id_user']);
if ($user['id'] != $userlike['id']) {
if ($user['id'] == $ank['id']) {
$not = "$SexOcen Вашу [url=/user/wall/comments.php?id=$wall[id]]запись[/url].";
} elseif ($user['id'] != $ank['id'] && $userlike['id'] != $ank['id']) {
$not = "$SexOcen Вашу [url=/user/wall/comments.php?id=$wall[id]]запись[/url].";
}
if ($userlike['id'] != $user['id'] && $userlike['id'] != $ank['id']) {
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) VALUES ('$user[id]', '$userlike[id]', '$not', '$time')");
}
}
}
}
}
$user_id = $ank['id'];
echo "<div class = 'comm'>";
if (($user['level'] >= 4) || ($user['id'] == $wall['id_user'])) {
echo "<span style = 'float:right' id = 'hide'>";
echo "<a href = 'edit.php?id=$wall[id]' title = 'Редактировать'><img src = '/style/icons/set.png' /></a> ";
echo "<a href = 'edit.php?id=$wall[id]&del' title = 'Удалить'><img src = '/style/icons/del.png' /></a>";
echo "</span>";
}
echo user($ank['id']);
echo " <small>" . date::times($wall['time']) . "</small></div><div class = 'comm'>";
echo "" . text::toOutput($wall['msg']) . " <br />";
$q_f = mysql_query("SELECT * FROM `wall_files` WHERE `id_wall` = '" . intval($_GET['id']) . "'");
while ($file = mysql_fetch_assoc($q_f)) {
if (preg_match('#jpg|jpeg|gif|png#i', $file['ras'])) {
if (isset($user) && $user['level'] > 1) {
echo "<a href = '/files/delete/$file[id]/' title = 'Удалить файл'><img src = '/files/$file[id]/$file[name].$file[ras]' max-width = '100' height = '100' style = 'margin: 1px;'/></a>";
} else {
echo "<img src = '/files/$file[id]/$file[name].$file[ras]' max-width = '100' height = '100' style = 'margin: 1px;'/>";
}
}
}
echo "</div>";
if (!isset($_GET['id']) && !is_numeric($_GET['id'])) {
header("Location: index.php?" . SID);
exit;
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `wall` WHERE `id` = '" . intval($_GET['id']) . "' LIMIT 1", $db), 0) == 0) {
header("Location: index.php?" . SID);
exit;
}
$wall = mysql_fetch_array(mysql_query("SELECT * FROM `wall` WHERE `id` = '" . intval($_GET['id']) . "';"));
if (isset($_POST['msg']) && isset($user)) {
$msg = $_POST['msg'];
if (text::utf8_strlen($msg) > 10024) {
$err = 'Слишком длинное сообщение';
} elseif (text::utf8_strlen($msg) < 2) {
$err = 'Короткое сообщение';
} elseif (mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_comments` WHERE `id_wall` = '" . intval($_GET['id']) . "' AND `id_user` = '$user[id]' AND `msg` = '" . mysql_real_escape_string($msg) . "' LIMIT 1"), 0) != 0) {
$err = 'Ваше сообщение повторяет предыдущее';
} else {
mysql_query("INSERT INTO `wall_comments` (`id_user`, `time`, `msg`, `id_wall`) values('$user[id]', '$time', '" . mysql_real_escape_string($msg) . "', '" . intval($_GET['id']) . "')");
mysql_query("UPDATE `user` SET `money` = '" . ($user['money'] + 5) . "', `activity` = '" . ($user['activity'] + 2) . "' WHERE `id` = '$user[id]' LIMIT 1");
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_count` WHERE `id_wall` = '" . intval($_GET['id']) . "' AND `id_user` = '$user[id]' LIMIT 1"), 0) == 0) {
mysql_query("INSERT INTO `wall_count` (`id_user`, `id_wall`) values('$user[id]', '" . intval($_GET['id']) . "')");
}
mysql_query("INSERT INTO `wall` (`user_id`, `who`, `time`) values('$user_id', '" . $user['id'] . "', '" . time() . "')");
if (isset($user) && $user['id'] != $ank['id']) {
$mess = "$SexOst комментарий в Вашей [url=/user/wall/comments.php?id=$wall[id]&page=end]записи[/url]. ";
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$ank[id]', '$mess', '$time')");
}
$komm = mysql_query("SELECT * FROM `wall_comments` WHERE `id_wall` = '$wall[id]' ORDER BY `id`");
while ($posts = mysql_fetch_assoc($komm)) {
$userkomm = user::get_user($posts['id_user']);
if ($user['id'] != $userkomm['id']) {
if ($user['id'] == $ank['id']) {
$not = "$SexKomm Вашу [url=/user/wall/comments.php?id=$wall[id]]запись[/url]. ";
} elseif ($user['id'] != $ank['id'] && $userkomm['id'] != $ank['id']) {
$not = "$SexKomm Вашу [url=/user/wall/comments.php?id=$wall[id]]запись[/url]. ";
}
if ($userkomm['id'] != $user['id'] && $userkomm['id'] != $ank['id']) {
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) VALUES ('$user[id]', '$userkomm[id]', '$not', '$time')");
}
}
}
}
} elseif (isset($_GET['del']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_comments` WHERE `id` = '" . intval($_GET['del']) . "' && `id_wall` = '" . intval($_GET['id']) . "'"), 0)) {
if (isset($user) && ($user['level'] >= 4) || isset($user) && ($user['id'] = $wall['id_user'])) {
mysql_query("DELETE FROM `wall_comments` WHERE `id` = '" . intval($_GET['del']) . "' LIMIT 1");
header("Location: comments.php?id=" . intval($_GET['id']) . "" . SID);
exit;
}
}
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_comments` WHERE `id_wall` = '" . intval($_GET['id']) . "'"), 0);
$k_page = k_page($k_post, $set['p_str']);
$page = page($k_page);
$start = $set['p_str'] * $page - $set['p_str'];
$q = mysql_query("SELECT * FROM `wall_comments` WHERE `id_wall` = '" . intval($_GET['id']) . "' ORDER BY `time` ASC LIMIT $start, $set[p_str]");
echo "<div class = 'comm'>";
$like = mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_like` WHERE `id_komm` = '" . intval($_GET['id']) . "'"), 0);
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `wall_like` WHERE `id_komm` = '" . intval($_GET['id']) . "' AND `id_user` = '$user[id]' LIMIT 1"), 0) == 0) {
echo "<a href = 'comments.php?id=" . intval($_GET['id']) . "&like'><img src = '/style/icons/like1.png' /> <font color = '#7f7f7f'><b>Нравится</b></font></a> ";
} else {
echo "<a href = 'comments.php?id=" . intval($_GET['id']) . "&unlike'><img src = '/style/icons/like0.png' /> <font color = '#5890ff'><b>Нравится</b></font></a> ";
}
echo "· <a href = 'like_all.php?id=" . intval($_GET['id']) . "'><img src = '/style/icons/like1.png' /> <font color = '#7f7f7f'><b>$like</b></font></a>";
$kum = @mysql_result(mysql_query("SELECT id_user FROM `wall_like` WHERE `id_komm` = '" . intval($_GET['id']) . "'"), 0);
$kom = @mysql_result(mysql_query("SELECT nick FROM `user` WHERE `id` = '$kum' LIMIT 1"), 0);
$kem = $like - 1;
#Выводит тех, кому понравилась новость
if ($user['id'] == $kum) {
if ($like == 1) {
$vam = "Вам это нравится";
} elseif ($like >= 2) {
$vam = "Вам и еще <a href = 'like_all.php?id=" . intval($_GET['id']) . "'>" . sklon_text($kem, array('пользователю', 'пользователям', 'пользователям')) . "</a> это нравится";
}
} else {
$vam = "<a href = 'like_all.php?id=" . intval($_GET['id']) . "'>" . sklon_text($like, array('пользователю', 'пользователям', 'пользователям')) . "</a> это нравится";
}
if ($like == 1) {
echo "<div class = 'hr'></div>";
echo "<img src = '/style/icons/like.png' /> $vam";
} elseif ($like >= 2) {
echo "<div class = 'hr'></div>";
echo "<img src = '/style/icons/like.png' /> $vam";
}
echo "</div>";
while ($post = mysql_fetch_assoc($q)) {
$ank = user::get_user($post['id_user']);
echo "<table class = 'comm'><tr><td class = 'icon14'>";
avatar($ank['id'], '48');
echo "</td><td class = 'null'>";
if (isset($user) && ($user['level'] >= 4) || isset($user) && ($user['id'] == $wall['id_user'])) {
echo "<span style = 'float:right;' id = 'hide'>n";
echo "<a href = '?id=" . intval($_GET['id']) . "&del=$post[id]' title = 'Удалить комментарий'><img src = '/style/icons/del.png' /></a>";
echo "</span>";
}
user($ank['id']);
echo " <small>" . date::times($post['time']) . "</small>";
echo "<br />";
echo text::toOutput($post['msg']);
echo "</td></tr></table>";
}
if ($k_page > 1) {
str("?id=" . intval($_GET['id']) . '&', $k_page, $page);
}
if ($wall['privat_komm'] == 1) {
echo "<div class = 'errs'>";
echo "Автор $SexZapr комментировать";
echo "</div>";
} else {
if (isset($user)) {
echo "<form method = 'post' name = 'message' class = 'comm' action = '?id=" . intval($_GET['id']) . "&page=$page'>";
echo "<textarea aria-required = 'true' aria-invalid = 'false' required = 'required' name = 'msg' rows = '2' style = 'width:70%' placeholder = 'Что Вы об этом думаете?'></textarea><br />n";
echo "<button class = 'button-green'>Добавить</button>";
echo "</form>";
}
}
echo "<div class = 'comm'>";
echo "<a href = '/info.php?id=$ank[id]&act=wall' style = 'color:#88C057;'><img src = '/style/icons/left.png' /> Вернуться к $ank[nick]</a>";
echo "</div>";
require_once H . 'sys/inc/tfoot.php';