Файл: modules/diary/dnev.php
Строк: 429
<?php
/* DCMS Special
* Дата последнего редактирования 13.01.2016
* Модифицировал densnet
*/
foreach (array('start', 'compress', 'sess', 'settings', 'db_connect', 'ipua', 'fnc', 'user') as $inc) {
require_once "../../sys/inc/$inc.php";
}
if (!isset($_GET['id'])) {
header("Location: /modules/diary/" . SID);
exit;
}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `diary` WHERE `id` = '" . intval($_GET['id']) . "'"), 0) == 0) {
header("Location: /modules/diary/" . SID);
exit;
}
$diary = mysql_fetch_assoc(mysql_query("SELECT * FROM `diary` WHERE `id` = '" . intval($_GET['id']) . "'"));
$dnev_avt = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $diary['id_user'] . "'"));
$diary_komm = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_komm` WHERE `id_dnev` = '" . $diary['id'] . "'"), 0);
mysql_query("UPDATE `diary` SET `komm` = '$diary_komm' WHERE `id`= '" . $diary['id'] . "'");
$all_see = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_look` WHERE `id_dnev` = '" . $diary['id'] . "'"), 0);
mysql_query("UPDATE `diary` SET `look` = '$all_see' WHERE `id`= '" . $diary['id'] . "'");
if ($diary['read'] == 1 && $user['level'] != 10) {
if ($diary['read'] == 1 && $user['id'] != $dnev_avt['id']) {
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE `user` = '" . $user['id'] . "' AND `friends` = '" . $dnev_avt['id'] . "'"), 0) == 0) {
header("Location: /index.php?" . SID);
exit;
}
}
}
if ($diary['read'] == 2 && $user['level'] != 10) {
if ($diary['read'] == 2 && $dnev_avt['id'] != $user['id']) {
header("Location: /modules/diary/" . SID);
exit;
}
}
if (isset($_GET['foto_add'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
} else {
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
$set['title'] = $diary['name'] . "n|n " . lang('Фото') . "";
require_once H . 'sys/inc/thead.php';
aut();
err();
#Навигация
echo "<div class='card-header'>";
echo "<a href='/' data-toggle='tooltip' data-placement='right' title='" . lang('На главную') . "'><i class='fa fa-home fa-lg'></i></a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='/modules/diary/'>" . lang('Блоги') . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='dnev.php?id=$diary[id]'>" . toOutput(cutStr($diary['name'], 30)) . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo lang('Изображение');
echo "</div>";
if (isset($_GET['ok'])) {
if (isset($_FILES['file1'])) {
if (preg_match('#.jpe?g$#i', $_FILES['file1']['name']) && $imgc = @imagecreatefromjpeg($_FILES['file1']['tmp_name'])) {
if (imagesx($imgc) > 128 || imagesy($imgc) > 128) {
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x == $img_y) {
$dstW = 128; // ширина
$dstH = 128; // высота
} elseif ($img_x > $img_y) {
$prop = $img_x / $img_y;
$dstW = 128;
$dstH = ceil($dstW / $prop);
} else {
$prop = $img_y / $img_x;
$dstH = 128;
$dstW = ceil($dstH / $prop);
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H . "modules/diary/images/$diary[id]_$user[id]_1.jpg", 100);
@chmod(H . "modules/diary/images/$diary[id]_$user[id]_1.jpg", 0777);
imagedestroy($screen);
} else {
copy($_FILES['file1']['tmp_name'], H . "sys/diary/$diary[id]_$user[id]_1.jpg");
}
}
}
if (isset($_FILES['file2'])) {
if (preg_match('#.jpe?g$#i', $_FILES['file2']['name']) && $imgc = @imagecreatefromjpeg($_FILES['file2']['tmp_name'])) {
if (imagesx($imgc) > 128 || imagesy($imgc) > 128) {
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x == $img_y) {
$dstW = 128; // ширина
$dstH = 128; // высота
} elseif ($img_x > $img_y) {
$prop = $img_x / $img_y;
$dstW = 128;
$dstH = ceil($dstW / $prop);
} else {
$prop = $img_y / $img_x;
$dstH = 128;
$dstW = ceil($dstH / $prop);
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H . "modules/diary/images/$diary[id]_$user[id]_2.jpg", 100);
@chmod(H . "modules/diary/images/$diary[id]_$user[id]_2.jpg", 0777);
imagedestroy($screen);
} else {
copy($_FILES['file2']['tmp_name'], H . "sys/diary/$diary[id]_$user[id]_2.jpg");
}
}
}
if (isset($_FILES['file3'])) {
if (preg_match('#.jpe?g$#i', $_FILES['file3']['name']) && $imgc = @imagecreatefromjpeg($_FILES['file3']['tmp_name'])) {
if (imagesx($imgc) > 128 || imagesy($imgc) > 128) {
$img_x = imagesx($imgc);
$img_y = imagesy($imgc);
if ($img_x == $img_y) {
$dstW = 128; // ширина
$dstH = 128; // высота
} elseif ($img_x > $img_y) {
$prop = $img_x / $img_y;
$dstW = 128;
$dstH = ceil($dstW / $prop);
} else {
$prop = $img_y / $img_x;
$dstH = 128;
$dstW = ceil($dstH / $prop);
}
$screen = imagecreatetruecolor($dstW, $dstH);
imagecopyresampled($screen, $imgc, 0, 0, 0, 0, $dstW, $dstH, $img_x, $img_y);
imagedestroy($imgc);
imagejpeg($screen, H . "modules/diary/images/$diary[id]_$user[id]_3.jpg", 100);
@chmod(H . "modules/diary/images/$diary[id]_$user[id]_3.jpg", 0777);
imagedestroy($screen);
} else {
copy($_FILES['file3']['tmp_name'], H . "sys/diary/$diary[id]_$user[id]_3.jpg");
}
}
}
}
if (isset($_GET['del'])) {
unlink(H . "/modules/diary/images/" . $_GET['del'] . ".jpg");
header("Location: ?id=$diary[id]&foto_add" . SID);
}
echo "<div class='alert alert-warning'>";
echo lang("Внимание Можно загружать изображение формата") . " <b>JPG</b>";
echo "</div>";
echo "<form method='post' class='list-group-item' enctype='multipart/form-data' action='?id=$diary[id]&foto_add&ok'>";
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $user['id'] . '_1.jpg')) {
echo "<img src='/modules/diary/images/$diary[id]_$user[id]_1.jpg'/><br />";
echo "<a href='?id=$diary[id]&foto_add&del=$diary[id]_$user[id]_1'><small style='color: grey;'><i class='fa fa-trash-o fa-fw'></i> " . lang('Удалить') . "</small></a><br />";
echo "<hr>";
}
$doc->File('file1', 'Изображение', 'image/jpeg');
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $user['id'] . '_2.jpg')) {
echo "<img src='/modules/diary/images/$diary[id]_$user[id]_2.jpg'/><br />";
echo "<a href='?id=$diary[id]&foto_add&del=$diary[id]_$user[id]_2'><small style='color: grey;'><i class='fa fa-trash-o fa-fw'></i> " . lang('Удалить') . "</small></a><br />";
echo "<hr>";
}
$doc->File('file2', 'Изображение', 'image/jpeg');
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $user['id'] . '_3.jpg')) {
echo "<img src = '/modules/diary/images/$diary[id]_$user[id]_3.jpg'/><br />";
echo "<a href = '?id=$diary[id]&foto_add&del=$diary[id]_$user[id]_3'><small style='color: grey;'><i class='fa fa-trash-o fa-fw'></i> " . lang('Удалить') . "</small></a><br />";
echo "<hr>";
}
$doc->File('file3', 'Изображение', 'image/jpeg');
$doc->Button('btn btn-success btn-sm', null, 'download', 'Загрузить');
echo "</form>";
require_once H . 'sys/inc/tfoot.php';
}
if (isset($_GET['edit'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
} else {
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
if (isset($_GET['edit']) && isset($_GET['ok'])) {
$name = esc(stripcslashes(htmlspecialchars($_POST['name'])));
if (utf8_strlen($name) < 3) {
$err = lang('Короткое название для темы');
}
if (utf8_strlen($name) > 100) {
$err = lang('Название темы не должно быть длиннее 100 символов');
}
$name = mysql_real_escape_string($name);
$msg = esc(stripcslashes(htmlspecialchars($_POST['msg'])));
$write = mysql_real_escape_string($_POST['write']);
$read = $_POST['read'];
if (utf8_strlen($msg) < 15) {
$err = lang('Короткое сообщение');
}
if (utf8_strlen($msg) > 10000) {
$err = lang('Длина сообщения превышает предел в 10000 символа');
}
$msg = mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("UPDATE `diary` SET `name` = '$name' WHERE `id`= '" . $diary['id'] . "'");
mysql_query("UPDATE `diary` SET `msg` = '$msg' WHERE `id`= '" . $diary['id'] . "'");
mysql_query("UPDATE `diary` SET `read` = '$read' WHERE `id`= '" . $diary['id'] . "'");
mysql_query("UPDATE `diary` SET `write` = '$write' WHERE `id`= '" . $diary['id'] . "'");
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
}
$set['title'] = $diary['name'] . "n|n " . lang('редактирование') . "";
require_once H . 'sys/inc/thead.php';
aut();
err();
#Навигация
echo "<div class='card-header'>";
echo "<a href='/' data-toggle='tooltip' data-placement='right' title='" . lang('На главную') . "'><i class='fa fa-home fa-lg'></i></a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='/modules/diary/'>" . lang('Блоги') . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='dnev.php?id=$diary[id]'>" . toOutput(cutStr($diary['name'], 30)) . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo lang('Редактирование');
echo "</div>";
echo "<form method = 'post' name='form' class = 'list-group-item' action = '?id=$diary[id]&edit&ok'>";
$doc->Input('name', 'Название', 100, "$diary[name]");
echo auto_bb("form", "msg");
$doc->Textarea('msg', 'Сообщение', 10000, "$diary[msg]", 'form-control', 4);
echo "<br />" . lang('Читатели') . ": ";
echo "<select class='browser-default' name='read'>";
echo "<option value='0' " . ($diary['read'] == 0 ? " selected = 'selected'" : null) . ">" . lang('Все') . "</option>";
echo "<option value='1' " . ($diary['read'] == 1 ? " selected = 'selected'" : null) . ">" . lang('Друзья') . "</option>";
echo "<option value='2' " . ($diary['read'] == 2 ? " selected = 'selected'" : null) . ">" . lang('Только я') . "</option>";
echo "</select>";
echo "<br />" . lang('Писатели') . ": ";
echo "<select class='browser-default' name='write'>";
echo "<option value='0' " . ($diary['write'] == 0 ? " selected = 'selected'" : null) . ">" . lang('Все') . "</option>";
echo "<option value='1' " . ($diary['write'] == 1 ? " selected = 'selected'" : null) . ">" . lang('Друзья') . "</option>";
echo "<option value='2' " . ($diary['write'] == 2 ? " selected = 'selected'" : null) . ">" . lang('Только я') . "</option>";
echo "</select>";
echo "<br />";
echo "<br />";
$doc->Button('btn btn-success btn-sm', 'ok', 'save', 'Сохранить');
$doc->Link('btn btn-secondary btn-sm', "dnev.php?id=$diary[id]", null, 'Отмена');
echo "</form>";
require_once H . 'sys/inc/tfoot.php';
}
if (isset($_GET['otv'])) {
$dnev = mysql_fetch_assoc(mysql_query("SELECT * FROM `diary` WHERE `id` = '" . intval($_GET['id']) . "'"));
$dnev_avt = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $diary['id_user'] . "'"));
$user_temp = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '" . mysql_real_escape_string($_GET['otv']) . "'"));
if (isset($user) && isset($_POST['msg'])) {
$msg = $_POST['msg'];
if (utf8_strlen($msg) < 4) {
$err = lang('Короткое сообщение');
}
if (utf8_strlen($msg) > 10000) {
$err = lang('Длина сообщения превышает предел в 10000 символов');
}
$msg = mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("INSERT INTO `diary_komm` (`id_dnev`, `id_user`, `msg`, `otv`, `time`) values('" . $diary['id'] . "', '" . $user['id'] . "', '$msg', '" . mysql_real_escape_string($user_temp['id']) . "', '$time')");
if ($user['id'] != $dnev_avt['id']) {
$msg1 = "" . ($user['sex'] ? '' . lang('ответил') . '' : '' . lang('ответила') . '') . " " . lang('Вам в блоге') . " [url=/modules/diary/dnev.php?id=$diary[id]]$diary[name][/url]";
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$dnev_avt[id]', '$msg1', '$time')");
}
if ($user['id'] != $user_temp['id'] && $user_temp['id'] != $dnev_avt['id']) {
$msg1 = "" . ($user['sex'] ? '' . lang('ответил') . '' : '' . lang('ответила') . '') . " " . lang('Вам в блоге') . " [url=/modules/diary/dnev.php?id=$diary[id]]$diary[name][/url]";
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '" . $user_temp['id'] . "', '$msg1', '$time')");
}
unset($_POST['msg']);
unset($msg);
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
}
$set['title'] = $diary['name'] . "n|n " . lang('ответ') . " $user_temp[nick]";
require_once H . 'sys/inc/thead.php';
aut();
err();
$msg = isset($_POST['msg']) ? htmlspecialchars($_POST['msg']) : '';
#Навигация
echo "<div class='card-header'>";
echo "<a href='/' data-toggle='tooltip' data-placement='right' title='" . lang('На главную') . "'><i class='fa fa-home fa-lg'></i></a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='/modules/diary/'>" . lang('Блоги') . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='dnev.php?id=$diary[id]'>" . toOutput(cutStr($diary['name'], 30)) . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo lang('Ответ');
echo "</div>";
if (isset($user) && ($diary['write'] == 0 || ($diary['write'] == 1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE `user` = '" . $user['id'] . "' AND `friends` = '" . $dnev_avt['id'] . "'"), 0) != 0 || $dnev_avt['id'] == $user['id'] || $user['level'] == 10) || ($diary['write'] == 2 && $dnev_avt['id'] == $user['id']) || $user['level'] == 10)) {
echo "<form method = 'post' name = 'message' class = 'list-group-item' action = '?id=$diary[id]&otv=$user_temp[id]'>";
echo auto_bb("message", "msg");
echo "<textarea placeholder='" . lang('Введите ответ') . "...' name='msg' length='10024' class='form-control'></textarea><br />";
$doc->Button('btn btn-primary btn-sm', 'post', 'pencil', 'Опубликовать');
echo "</form>";
require_once H . 'sys/inc/tfoot.php';
} else {
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
}
if (isset($user) && isset($_POST['msg'])) {
$msg = $_POST['msg'];
if (utf8_strlen($msg) < 4) {
$err = lang('Короткое сообщение');
}
if (utf8_strlen($msg) > 10000) {
$err = lang('Длина сообщения превышает предел в 10000 символов');
}
$msg = mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("INSERT INTO `diary_komm` (`id_dnev`, `id_user`, `msg`, `time`) values('$diary[id]', '$user[id]', '$msg', '$time')");
$q = mysql_query("SELECT * FROM `friends` WHERE `user` = '$user[id]' AND `lenta_diary` = '1' AND `i` = '1'");
while ($f = mysql_fetch_array($q)) {
$a = get_user($f['friends']);
$msg_obsuzh = "" . ($user['sex'] ? '' . lang('принял') . '' : '' . lang('приняла') . '') . " " . lang('участие в обсуждении блога') . " [url=/modules/diary/dnev.php?id=$diary[id]]$diary[name][/url] " . lang('у пользователя') . " [b]$dnev_avt[nick][/b]";
mysql_query("INSERT INTO `notifications` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$a[id]', '$msg_obsuzh', '$time')");
}
if ($user['id'] != $dnev_avt['id']) {
$msg1 = "" . ($user['sex'] ? '' . lang('оставил') . '' : '' . lang('оставила') . '') . " " . lang('сообщение в Вашем блоге') . " [red][url=/modules/diary/dnev.php?id=$diary[id]]$diary[name][/url][/red]";
mysql_query("INSERT INTO `notification` (`id_user`, `id_kont`, `msg`, `time`) values('$user[id]', '$dnev_avt[id]', '$msg1', '$time')");
}
unset($_POST['msg']);
unset($msg);
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
}
}
if (isset($_GET['del'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
mysql_query("DELETE FROM `diary_komm` WHERE `id` = '" . mysql_real_escape_string($_GET['del']) . "' AND `id_dnev` = '$diary[id]'");
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
} else {
header("Location: /modules/diary/" . SID);
exit;
}
}
if (isset($_GET['del_all_com'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
mysql_query("DELETE FROM `diary_komm` WHERE `id_dnev` = '$diary[id]'");
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
} else {
header("Location: /modules/diary/" . SID);
exit;
}
}
if (isset($_GET['del_full'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
mysql_query("DELETE FROM `diary` WHERE `id` = '$diary[id]'");
mysql_query("DELETE FROM `diary_komm` WHERE `id_dnev` = '$diary[id]'");
header("Location: /modules/diary/dnev.php?id=$diary[id]" . SID);
exit;
} else {
header("Location: /modules/diary/" . SID);
exit;
}
}
if (isset($_GET['hide'])) {
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
mysql_query("UPDATE `diary_komm` SET `hide` = '" . mysql_real_escape_string($_GET['set']) . "' WHERE `id`= '" . $_GET['hide'] . "'");
header("Location: dnev.php?id=$diary[id]" . SID);
exit;
} else {
header("Location: /modules/diary/" . SID);
exit;
}
}
if (isset($user) && $user['id'] != $dnev_avt['id']) {
$user_see = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_look` WHERE `id_dnev` = '$diary[id]' AND `id_user` = '$user[id]'"), 0);
if ($user_see == 0) {
mysql_query("INSERT INTO `diary_look` (`id_dnev`, `id_user`, `time`) values('$diary[id]', '$user[id]', '$time')");
}
if ($user_see != 0) {
mysql_query("UPDATE `diary_look` SET `time` = '$time' WHERE `id_user`= '$user[id]' AND `id_dnev` = '$diary[id]'");
}
}
require_once H . 'sys/inc/thead.php';
aut();
err();
#Навигация
echo "<div class='card-header'>";
echo "<a href='/' data-toggle='tooltip' data-placement='right' title='" . lang('На главную') . "'><i class='fa fa-home fa-lg'></i></a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='/modules/diary/'>" . lang('Блоги') . "</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo toOutput(cutStr($diary['name'], 30));
echo "</div>";
echo "<div class='list-group-item'>";
echo "<b><i class='fa fa-book fa-fw'></i> " . toOutput($diary['name']) . "</b>";
echo "</div>";
echo "<div class='list-group-item'>";
echo toOutput($diary['msg']) . "<br />";
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $dnev_avt['id'] . '_1.jpg')) {
echo "<img src='/modules/diary/images/$diary[id]_$dnev_avt[id]_1.jpg' />";
}
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $dnev_avt['id'] . '_2.jpg')) {
echo "<img src='/modules/diary/images/$diary[id]_$dnev_avt[id]_2.jpg' />";
}
if (is_file(H . '/modules/diary/images/' . $diary['id'] . '_' . $dnev_avt['id'] . '_3.jpg')) {
echo "<img src='/modules/diary/images/$diary[id]_$dnev_avt[id]_3.jpg' />";
}
echo "<br />";
echo user($dnev_avt['id']);
echo " <font color='grey' title='" . date::time($diary['time']) . "'>" . date::times($diary['time']) . "</font><br />";
$diary_komm = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_komm` WHERE `id_dnev` = '$diary[id]'"), 0);
$all_see = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_look` WHERE `id_dnev` = '$diary[id]'"), 0);
echo "<i class='fa fa-comments'></i> $diary_komm ";
echo "<i class='fa fa-star'></i> $all_see";
echo "</div>";
echo "<div class='list-group-item'>";
echo "<span style='float:right;' id = 'hides'>";
if ($user['id'] == $dnev_avt['id']) {
echo "<a href='dnev.php?id=$diary[id]&foto_add' data-toggle='tooltip' data-placement='bottom' title='" . lang('Добавить изображение') . "'><i class='fa fa-camera fa-fw'></i></a> ";
}
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
echo "<a href = 'dnev.php?id=$diary[id]&edit' data-toggle='tooltip' data-placement='bottom' title='" . lang('Редактировать запись') . "'><i class='fa fa-edit fa-fw'></i></a> ";
echo "<a href = 'dnev.php?id=$diary[id]&del_all_com' data-toggle='tooltip' data-placement='bottom' title='" . lang('Очистить комментарии') . "'><i class='fa fa-paint-brush fa-fw'></i></a> ";
echo "<a href = 'dnev.php?id=$diary[id]&del_full' data-toggle='tooltip' data-placement='bottom' title='" . lang('Удалить запись') . "'><i class='fa fa-trash-o fa-fw'></i></a><br/>";
}
echo "</span>";
echo "<i class='fa fa-eye fa-fw'></i> " . lang('Читатели') . ": ";
if ($diary['read'] == 0) {
echo "<font color='grey'>" . lang('Все') . "</font> ";
}
if ($diary['read'] == 1) {
echo "<font color='grey'>" . lang('Друзья') . "</font> ";
}
if ($diary['read'] == 2) {
echo "<font color='grey'>" . lang('Только я') . "</font> ";
}
echo "<br /><i class='fa fa-pencil fa-fw'></i> " . lang('Писатели') . ": ";
if ($diary['write'] == 0) {
echo "<font color='grey'>" . lang('Все') . "</font>";
}
if ($diary['write'] == 1) {
echo "<font color='grey'>" . lang('Друзья') . "</font>";
}
if ($diary['write'] == 2) {
echo "<font color='grey'>" . lang('Только я') . "</font>";
}
echo "</div>";
$msg = isset($_POST['msg']) ? htmlspecialchars($_POST['msg']) : '';
if (isset($user) && ($diary['write'] == 0 || ($diary['write'] == 1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE `user` = '$user[id]' AND `friends` = '$dnev_avt[id]'"), 0) != 0 || $dnev_avt['id'] == $user['id'] || $user['level'] == 10) || ($diary['write'] == 2 && $dnev_avt['id'] == $user['id']) || $user['level'] == 10)) {
echo "<form method = 'post' class = 'list-group-item' name = 'message' action = '?id=$diary[id]'>";
echo auto_bb("message", "msg");
echo "<textarea placeholder='" . lang('Введите комментарий') . "...' name='msg' length='10000' class='form-control'>$msg</textarea><br />";
echo "<button class='btn btn-primary btn-sm' name='post'>" . lang('Добавить') . "</button>";
echo "</form>";
}
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_komm` WHERE `id_dnev` = '$diary[id]'"), 0);
$k_page = k_page($k_post, $set['p_str']);
$page = page($k_page);
$start = $set['p_str'] * $page - $set['p_str'];
$lim = " LIMIT $start, $set[p_str]";
$q = mysql_query("SELECT * FROM `diary_komm` WHERE `id_dnev` = '$diary[id]' ORDER BY `time` DESC$lim");
if (mysql_num_rows($q) == 0) {
$doc->NoResult();
}
$post_k = $start;
while ($post = mysql_fetch_assoc($q)) {
$ank = get_user($post['id_user']);
$post_k++;
$num_post = $post_k;
echo "<table class = 'list-group-item-komm'><tr><td class = 'icon14'>";
avatar($ank['id'], '48', 'border-radius: 2px;');
echo "</td><td class = 'null'>";
echo "<span style = 'float:right;color: grey;'><small>" . date::timek($post['time']) . "</small></span>";
echo user($ank['id']) . " ";
echo "<br />n";
echo "<div id='accordion' role='tablist' aria-multiselectable='true'>";
echo "<div role='tab' id='headingTwo'>";
echo "<span style='float: right;'><a class='collapsed' data-toggle='collapse' data-parent='#accordion' href='#diary_$post[id]' aria-expanded='false' aria-controls='collapseTwo'><i class='fa fa-ellipsis-v fa-fw'></i></a></span>";
echo "</div>";
if ($post['hide'] == 0 || ($post['hide'] == 1 && ($user['id'] == $dnev_avt['id'] || $user['id'] == $post['id_user'] || $user['level'] == 10))) {
if ($post['otv'] != 0) {
$tmp_user = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $post['otv'] . "'"));
echo "<i>$tmp_user[nick]</i>, ";
}
echo toOutput($post['msg']) . "n";
if ($post['hide'] == 1) {
echo "<br /><font color = 'red'><small>" . lang('Комментарий скрыт') . "</small></font> ";
}
}
echo "<div id='diary_$post[id]' class='panel-collapse collapse' role='tabpanel' aria-labelledby='dairy_$post[id]'><small>";
if (isset($user) && $user['id'] != $ank['id']) {
if (isset($user) && ($diary['write'] == 0 || ($diary['write'] == 1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE `user` = '$user[id]' AND `friends` = '" . $dnev_avt['id'] . "'"), 0) != 0 || $dnev_avt['id'] == $user['id'] || $user['level'] >= 3) || ($diary['write'] == 2 && $dnev_avt['id'] == $user['id']) || $user['level'] >= 3)) {
echo "<a href='dnev.php?id=$diary[id]&otv=$ank[id]' style='color: grey'>" . lang('Ответить') . "</a> ";
}
}
if ($user['id'] == $dnev_avt['id'] || $user['level'] == 10) {
if ($post['hide'] == 0) {
echo "<a href='dnev.php?id=$diary[id]&hide=$post[id]&set=1' style='color: grey'>" . lang('Скрыть') . "</a> n";
}
if ($post['hide'] == 1) {
echo "<a href = 'dnev.php?id=$diary[id]&hide=$post[id]&set=0' style='color: grey'>" . lang('Восстановить') . "</a> n";
}
echo "<a href = 'dnev.php?id=$diary[id]&del=$post[id]' style='color: grey'>" . lang('Удалить') . "</a>";
}
echo "</small></div>";
echo "</div>";
echo "</td></tr></table>";
}
if ($k_page > 1) {
echo "<div class='list-group-item'>";
str("?id=$diary[id]&", $k_page, $page);
echo "</div>";
}
echo "<div class='list-group-item'>";
echo "<a href='/modules/diary/dnev_list.php?id=$dnev_avt[id]'><i class='fa fa-arrow-left fa-fw'></i> " . lang('Все записи') . " $dnev_avt[nick]</a>";
echo "</div>";
require_once H . 'sys/inc/tfoot.php';