Файл: adultscript-2.0.3-pro/files/templates/defboot/extend/ajax/friend_add.plugin.php
Строк: 87
<?php
defined('_VALID') or die('Restricted Access!');
function ajax_plugin_friend_add()
{
$data = array('status' => 0, 'msg' => '', 'code' => '', 'debug' => '');
if (isset($_POST['user_id'])) {
if (VAuth::loggedin()) {
$user_id = (int) trim($_POST['user_id']);
$friend_id = (int) $_SESSION['user_id'];
VLanguage::load('frontend.profile');
$db = VF::factory('database');
$db->query("SELECT status
FROM #__user_friends
WHERE user_id = ".$user_id."
AND friend_id = ".$friend_id."
LIMIT 1");
if ($db->affected_rows()) {
$status = $db->fetch_field('status');
if ($status == 'pending') {
$data['msg'] = __('friend-invited');
$data['code'] = '<button class="btn btn-default btn-xs" disabled="disabled"><i class="fa fa-user"></i> '.__('friend-invited-already').'</button>';
} elseif ($status == 'approved') {
$data['msg'] = __('friend-already');
$data['code'] = '<button class="btn btn-default btn-xs" disabled="disabled"><i class="fa fa-user"></i> '.__('friend-already-friend').'</button>';
} elseif ($status == 'denied') {
$data['msg'] = __('friend-denied');
$data['code'] = '<button class="btn btn-default btn-xs" disabled="disabled"><i class="fa fa-user"></i> '.__('friend-denied-friend').'</button>';
}
} else {
$db->query("SELECT allow_friends FROM #__user_preferences WHERE user_id = ".$user_id." LIMIT 1");
if ($db->affected_rows()) {
$allow_friends = $db->fetch_field('allow_friends');
$status = ($allow_friends == 'approve') ? 'pending' : 'approved';
$db->query("INSERT INTO #__user_friends
SET user_id = ".$user_id.",
friend_id = ".$friend_id.",
add_date = '".date('Y-m-d h:i:s')."',
status = '".$status."'");
if ($status == 'pending') {
$data['msg'] = __('friend-approve');
$data['code'] = $data['code'] = '<button class="btn btn-default btn-xs" disabled="disabled"><i class="fa fa-user"></i> '.__('friend-invite').'</button>';
} else {
$db->query("INSERT INTO #__user_friends
SET user_id = ".$friend_id.",
friend_id = ".$user_id.",
add_date = '".date('Y-m-d h:i:s')."',
status = 'approved'");
$db->query("UPDATE #__user_activity
SET total_friends = total_friends+1
WHERE user_id IN (".$user_id.", ".$friend_id.")");
$data['msg'] = __('friend-added');
$data['code'] = '<button id="profile-friend-del" class="btn btn-default btn-xs" disabled="disabled"><i class="fa fa-user"></i> '.__('leftmenu-removefriend').'</button>';
}
$data['status'] = 1;
} else {
$data['msg'] = 'Error!!!';
}
}
} else {
$data['msg'] = 'Please login to add friends!';
}
} else {
$data['msg'] = 'Invalid ajax request!';
}
return json_encode($data);
}