Файл: include/ajax/block_user.php
Строк: 36
<?php
defined('_VALID') or die('Restricted Access!');
require $config['BASE_DIR']. '/classes/filter.class.php';
require $config['BASE_DIR']. '/include/compat/json.php';
require $config['BASE_DIR']. '/include/adodb/adodb.inc.php';
require $config['BASE_DIR']. '/include/dbconn.php';
$response = array('status' => 0, 'msg' => show_msg($lang['ajax.block_user_success']));
if ( isset($_POST['user_id']) ) {
if ( isset($_SESSION['uid']) ) {
$filter = new VFilter();
$uid = intval($_SESSION['uid']);
$user_id = $filter->get('user_id', 'INTEGER');
if ( $uid == $user_id ) {
$response['msg'] = show_err($lang['ajax.block_user_self']);
} else {
$sql = "SELECT UID FROM users_blocks WHERE UID = " .$uid. " AND BID = " .$user_id. " LIMIT 1";
$conn->execute($sql);
if ( $conn->Affected_Rows() == 1 ) {
$response['msg'] = show_err('This user is already blocked!');
} else {
$sql = "INSERT INTO users_blocks (UID, BID) VALUES (" .$uid. ", " .$user_id. ")";
$conn->execute($sql);
$sql = "UPDATE signup SET popularity = popularity-3 WHERE UID = " .$user_id. " LIMIT 1";
$conn->execute($sql);
$response['status'] = 1;
}
}
} else {
$response['msg'] = show_err($lang['ajax.block_user_login']);
}
}
echo json_encode($response);
die();
?>