Файл: ewar/reviews.php
Строк: 124
<?php
include("includes/config.php");
include("includes/header.php");
$dm = authUser();
if (!$dm) {
header("Location: index.php");
exit;
}
if ($id == false) {
$k = ereg_replace("[^0-9]","",$_GET['k']);
$query = mysql_query("SELECT * FROM vartotojai WHERE id='$k'");
if (mysql_num_rows($query) == false) {
header("Location: index.php");
}
else
{
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="center">
<a class="btn_red" href="reviews.php?id=write&k=$k"><span>".$language['rasyti_atsiliepima']."</span></a>
</div>
<div class="razdel5"></div>";
$nuskaitoma = mysql_query("SELECT * FROM atsiliepimai WHERE kieno='$k'");
$viso = mysql_num_rows($nuskaitoma);
if ($viso == false) {
echo "<div class="center text_p">
".$language['atsiliepimu_nera']."
</div>";
}
else
{
$nuo = ereg_replace("[^0-9]","",$_GET['nuo']);
if ($nuo == "") {
$nuo = 0;
}
$puslapiu_skaicius = 20;
$nuskaitymas = mysql_query("SELECT * FROM atsiliepimai WHERE kieno='$k' ORDER BY id DESC LIMIT $nuo,$puslapiu_skaicius");
while($stulpeliai = mysql_fetch_assoc($nuskaitymas)) {
$vafetch = mysql_fetch_assoc(mysql_query("SELECT * FROM vartotojai WHERE id='".$stulpeliai['kas']."'"));
$stulpeliai['atsiliepimas'] = bbcode($stulpeliai['atsiliepimas']);
echo "<div class="juosta2 tr">";
if ($k == $dm['id']) {
echo "[<a href="reviews.php?id=delete&k=".$stulpeliai['id']."">x</a>]";
}
$player_nick = status($vafetch['statusas'], $vafetch['nick']);
echo "» <a href="index.php?id=info&k=".$vafetch['id']."">$player_nick</a>:
<br/>
<span class="small">".$stulpeliai['atsiliepimas']."</span>
<br/>
<span class="small">".$stulpeliai['kada']."</span>
</div>
<div class="razdel5"></div>";
}
echo "<div class="center text_p">";
$viso_puslapiai = 0;
$starto_skaicius = 1;
$ceil = ceil($viso / $puslapiu_skaicius);
$rodomas = ceil($nuo / $puslapiu_skaicius) + 1;
while($viso_puslapiai < $viso) {
if ($starto_skaicius == 1 or ($starto_skaicius >= $rodomas - 1 && $starto_skaicius < $rodomas + 3) or $starto_skaicius > $ceil - 1) {
$taskai = 0;
if ($nuo == $viso_puslapiai) {
echo "<a class="page" id="pushed" href="reviews.php?k=$k&nuo=$viso_puslapiai">$starto_skaicius</a>";
}
else
{
echo "<a class="page" href="reviews.php?k=$k&nuo=$viso_puslapiai">$starto_skaicius</a>";
}
}
else
{
if ($taskai == false) {
echo "...";
$taskai ++;
}
}
$viso_puslapiai = $viso_puslapiai + $puslapiu_skaicius;
$starto_skaicius ++;
}
echo "</div>";
}
}
}
elseif ($id == "write") {
$k = ereg_replace("[^0-9]","",$_GET['k']);
$query = mysql_query("SELECT * FROM vartotojai WHERE id='$k'");
if (mysql_num_rows($query) == false) {
header("Location: index.php");
}
else
{
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="lent w80 mlra">
<div class="bl-ttl"><div class="te"><div class="ttl">
".$language['rasyti']."
</div></div></div>
<form action="reviews.php?id=write2&k=$k" method="post">
<div class="center">
<span class="bold">".$language['atsiliepimas']."</span>(<a href="manual.php?id=bbcodes">BB CODE</a>):
<div class="razdel5"></div>
<textarea rows="10" cols="17" name="".$dm['inputas'].""></textarea>
<div class="razdel5"></div>
<button type="submit"><span>".$language['ok']."</span></button>
</div>
</form>
</div>";
}
}
elseif ($id == "write2") {
$k = ereg_replace("[^0-9]","",$_GET['k']);
$query = mysql_query("SELECT * FROM vartotojai WHERE id='$k'");
if (mysql_num_rows($query) == false) {
header("Location: index.php");
}
else
{
$atsiliepimas = filter($_POST[$dm['inputas']]);
$aaaa = false;
if ($dm['level'] < $settings['write_from'] && $user_id != $ADMIN_ID) {
$klaida = "".$language['rasyti_galesite_kai']." ".$settings['write_from']." ".$language['lygi']."";
}
elseif ($dm['silence'] > time()) {
if ($dm['js2'] == false) {
$klaida = "".$language['tu_tylos_rezime_ir']." ".val($dm['silence'] - time())." ".$language['val']."";
}
else
{
$aaaa = true;
$klaida = "".$language['tu_tylos_rezime_ir']." <span id="setTime1"></span><span id="getTime1" style="display:none;">".($dm['silence'] - time())."</span> ".$language['val']."";
}
}
elseif ($atsiliepimas == false) {
$klaida = $language['paliktas_tuscias_laukelis'];
}
elseif (mysql_num_rows(mysql_query("SELECT * FROM atsiliepimai WHERE kieno='$k' AND atsiliepimas='$atsiliepimas'")) > 0) {
$klaida = $language['toks_atsiliepimas_jau_egzistuoja'];
}
elseif (strlen($atsiliepimas) > 10000) {
$klaida = $language['atsiliepimo_tekstas_per_ilgas'];
}
if ($klaida != false) {
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="center text_p">
<img src="img/warning.png" alt="*"/>
<br/>
$klaida";
if ($dm['js2'] && $aaaa) {
js_count($dm['silence'] - time(),1,1);
}
echo "</div>";
}
else
{
$textas = "zxcvbnmasdfghjklqwertyuiop";
$str = str_shuffle($textas);
$inp = substr($str,0,8);
$atsiliepimas = str_replace("n","<br/>",$atsiliepimas);
mysql_query("INSERT INTO atsiliepimai(id,kieno,kas,atsiliepimas,kada) VALUES('','$k','".$dm['id']."','$atsiliepimas','".date("Y-m-d H:i:s")."')");
mysql_query("UPDATE vartotojai SET inputas='$inp',antispam=antispam+1 WHERE id='$user_id'");
if ($dm['id'] != $k) {
mysql_query("INSERT INTO `inbox` SET `kieno`='$k',`busena`='+',`nuo_ko_ar_kam`='$ADMIN_ID',`zinute`='[tau_parase_nauja_atsiliepima*]',`kada`='".time()."',`type`='1'");
}
header("Location: reviews.php?k=$k");
}
}
}
elseif ($id == "delete") {
$k = ereg_replace("[^0-9]","",$_GET['k']);
if (mysql_num_rows(mysql_query("SELECT * FROM atsiliepimai WHERE kieno='".$dm['id']."' AND id='$k'")) == false) {
header("Location: index.php");
}
else
{
mysql_query("DELETE FROM atsiliepimai WHERE kieno='".$dm['id']."' AND id='$k'");
header("Location: reviews.php?k=".$dm['id']."");
}
}
else
{
header("Location: index.php");
}
include("includes/foot.php");
?>