Файл: clan_chat.php
Строк: 85
<?
require_once ('system/func.php');
auth(); // Только для авторизованных
$clan = mysql_fetch_assoc(mysql_query("SELECT * FROM `clans` WHERE `id` = '".$user['id_clan']."'"));
if(!$clan){
$_SESSION['msg'] == 'Такой клан не существует';
header('Location: /clans/');
exit();
}
if($user['clan_chat_read'] == 1){
mysql_query("UPDATE `users` SET `clan_chat_read` = '0' WHERE `id` = '".$myID."'");
header('Location: ?');
exit();
}
$title = 'Клановый чат';
require_once ('system/header.php');
if(isset($_GET['text'])){
$text = text($_POST['text']);
$ban = mysql_query('SELECT * FROM `ban` WHERE `id_user` = "'.$myID.'" AND `last` > "'.time().'" ORDER BY `id` DESC LIMIT 1');
$ban = mysql_fetch_array($ban);
$last = mysql_query('SELECT * FROM `clanchat` WHERE `id_user` = "'.$myID.'" ORDER BY `id` DESC LIMIT 1');
$last = mysql_fetch_array($last);
if(strlen($text) < 3 or strlen($text) > 300)$err = 'Длина сообщения должна быть в пределах 3 - 300 символов';
if($ban)$err = "На вас наложен, бан осталось ".tl($ban[last]-time());
if($last['time'] > time()-5)$err = 'Разрешается писать раз в 5 секунд';
if(!$err){
if(mysql_query("INSERT INTO `clanchat` SET `id_user` = '$user[id]', `time` = '".time()."', `text` = '".$text."', `id_clan` = '$clan[id]'")){
mysql_query("UPDATE `users` SET `clan_chat_read` = '1' WHERE `id_clan` = '".$clan['id']."'");
$_SESSION['msg'] = 'Сообщение отправлено';
header('Location: /clan/chat/');
exit();
}else{
$_SESSION['msg'] = 'Неизвестная ошибка';
header('Location: /clan/chat/');
exit();
}
}else{
$_SESSION['msg'] = $err;
header('Location: /clan/chat/');
exit();
}
}
if(isset($_GET['delete_post']) and $user['clan_rang'] >= 4){
mysql_query("DELETE FROM `clanchat` WHERE `id` = '".num($_GET['delete_post'])."'");
$_SESSION['msg'] = 'Пост удален';
header('Location: ?');
exit();
}
echo "<div class='block center'>";
if($user['level'] < 3){
echo "В чате можно писать только с ".ico('icons','level.png')." 3 уровня";
}else{
if(isset($_GET['to'])){
echo "<form method='post' action='?text'>";
$opponent = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".num($_GET['to'])."' LIMIT 1"));
echo "<input type='text' name='text' value = '".text($opponent['login']).", '>";
echo "<input type='submit' class='btn' value='Отправить'>
<a href='/clan/chat/' class='btn'>Обновить</a>
</form>";
}else{
echo "<form method='post' action='?text'>";
echo "<input type='text' name='text'>";
echo "<input type='submit' class='btn' value='Отправить'>
<a href='/clan/chat/' class='btn'>Обновить</a>
</form>";
}
}
echo "</div>";
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `clanchat` WHERE `id_clan` = '$clan[id]'"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `clanchat` WHERE `id_clan` = '$clan[id]' ORDER BY `id` DESC LIMIT $start, $set[p_str]");
if($k_post == 0) echo "Сообщений не найдено...";
while($post = mysql_fetch_assoc($q)) {
echo "<div class='block'>";
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = $post[id_user] LIMIT 1"));
echo icons_user($ank[id])." <a href='/profile/$ank[id]'>$ank[login]</a>, ".vremja($post['time'])." ";
if($myID != $ank['id'])echo "<a href='?to=$ank[id]'>[Отв]</a>";
$msg = str_replace(array($user[login].','), "<b><b>$user[login]</b>,</b> ", $post['text']);
echo "<br>".text_msg($msg);
if($user['clan_rang'] >= 4)echo " <a href='?delete_post=$post[id]'><font color='red'>[×]</font></a>";
echo "</div>";
}
echo "<div class='block'>";
str('?',$k_page,$page); // Вывод страниц
echo "</div>";
$clan = ""; require_once ('system/footer.php');
?>