Файл: user/inc/profile_info.php
Строк: 211
<?
only_reg();
$set['title'] = 'Информация о себе';
if (isset($_POST['save'])){
if (isset($_POST['ank_name']) && preg_match('#^([A-zА-я -]*)$#ui', $_POST['ank_name']))
{
$user['ank_name']=$_POST['ank_name'];
mysql_query("UPDATE `user` SET `ank_name` = '".my_esc($user['ank_name'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
else $err[]=lang('Неверный формат имени');
if (isset($_POST['ank_d_r']) && (is_numeric($_POST['ank_d_r']) && $_POST['ank_d_r']>0 && $_POST['ank_d_r']<=31 || $_POST['ank_d_r']==NULL))
{
$user['ank_d_r']= (int) $_POST['ank_d_r'];
if ($user['ank_d_r']==null)$user['ank_d_r']='null';
mysql_query("UPDATE `user` SET `ank_d_r` = $user[ank_d_r] WHERE `id` = '$user[id]' LIMIT 1");
if ($user['ank_d_r']=='null')$user['ank_d_r']=NULL;
}
else $err[]=lang('Неверный формат дня рождения');
if (isset($_POST['ank_m_r']) && (is_numeric($_POST['ank_m_r']) && $_POST['ank_m_r']>0 && $_POST['ank_m_r']<=12 || $_POST['ank_m_r']==NULL))
{
$user['ank_m_r']= (int) $_POST['ank_m_r'];
if ($user['ank_m_r']==null)$user['ank_m_r']='null';
mysql_query("UPDATE `user` SET `ank_m_r` = $user[ank_m_r] WHERE `id` = '$user[id]' LIMIT 1");
if ($user['ank_m_r']=='null')$user['ank_m_r']=NULL;
}
else $err[]=lang('Неверный формат месяца рождения');
if (isset($_POST['ank_g_r']) && (is_numeric($_POST['ank_g_r']) && $_POST['ank_g_r']>0 && $_POST['ank_g_r']<=date('Y') || $_POST['ank_g_r']==NULL))
{
$user['ank_g_r']= (int) $_POST['ank_g_r'];
if ($user['ank_g_r']==null)$user['ank_g_r']='null';
mysql_query("UPDATE `user` SET `ank_g_r` = $user[ank_g_r] WHERE `id` = '$user[id]' LIMIT 1");
if ($user['ank_g_r']=='null')$user['ank_g_r']=NULL;
}
else $err[]=lang('Неверный формат года рождения');
if (isset($_POST['ank_city']) && preg_match('#^([A-zА-я -]*)$#ui', $_POST['ank_city']))
{
$user['ank_city']=$_POST['ank_city'];
mysql_query("UPDATE `user` SET `ank_city` = '".my_esc($user['ank_city'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
else $err[]=lang('Неверный формат названия города');
if (isset($_POST['ank_icq']) && (is_numeric($_POST['ank_icq']) && strlen($_POST['ank_icq'])>=5 && strlen($_POST['ank_icq'])<=9 || $_POST['ank_icq']==NULL))
{
$user['ank_icq']=$_POST['ank_icq'];
if ($user['ank_icq']==null)$user['ank_icq']='null';
mysql_query("UPDATE `user` SET `ank_icq` = $user[ank_icq] WHERE `id` = '$user[id]' LIMIT 1");
if ($user['ank_icq']=='null')$user['ank_icq']=NULL;
}
else $err[]=lang('Неверный формат ICQ');
if (isset($_POST['ank_skype']) && strlen2($_POST['ank_o_sebe']) <= 32)
{
mysql_query("UPDATE `user` SET `ank_skype` = '".my_esc($_POST['ank_skype'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
if (isset($_POST['pol']) && $_POST['pol']==1)
{
$user['pol']=1;
mysql_query("UPDATE `user` SET `pol` = '1' WHERE `id` = '$user[id]' LIMIT 1");
}
if (isset($_POST['pol']) && $_POST['pol']==0)
{
$user['pol']=0;
mysql_query("UPDATE `user` SET `pol` = '0' WHERE `id` = '$user[id]' LIMIT 1");
}
if (isset($_POST['ank_o_sebe']) && strlen2($_POST['ank_o_sebe']) <= 512)
{
mysql_query("UPDATE `user` SET `ank_o_sebe` = '".my_esc($_POST['ank_o_sebe'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
else $err[]=lang('О себе нужно писать меньше');
if (isset($_POST['ank_countr']) && preg_match('#^([A-zА-я -]*)$#ui', $_POST['ank_countr']))
{
mysql_query("UPDATE `user` SET `ank_countr` = '".my_esc($_POST['ank_countr'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
if (isset($_POST['ank_family']) && preg_match('#^([A-zА-я -]*)$#ui', $_POST['ank_family']))
{
mysql_query("UPDATE `user` SET `ank_family` = '".my_esc($_POST['ank_family'])."' WHERE `id` = '$user[id]' LIMIT 1");
}
# удаляем кэш файл
cache_delete::user($user['id']);
if (!isset($err))
{
$_SESSION['message'] = lang('Изменения успешно приняты');
exit(header('Location: ?'));
}
}
err();
$div_edit = 'p_m';
echo "<div class='div_edit_fon'><form method='post' action=''>";
echo "
<div class='$div_edit'>
".lang('Имя').":<br /><input type='text' name='ank_name' value='".output_text($user['ank_name'],false)."' maxlength='32' />
</div>";
echo "
<div class='$div_edit'>
".lang('Фамилия').":<br /><input type='text' name='ank_family' value='".output_text($user['ank_family'],false)."' maxlength='32' />
</div>";
echo '<div class="'.$div_edit.'">'.lang('Дата рождения').':';
//День
echo '<select name="ank_d_r"><option selected="'.$user['ank_d_r'].'" value="'.$user['ank_d_r'].'" >'.$user['ank_d_r'].'</option>';
for ($i = 1; $i < 32; ++$i)
{
echo '<option value="'.$i.'">'.$i.'</option>';
}
echo '</select>';
//Месяц
echo '<select name="ank_m_r"><option selected="'.$user['ank_m_r'].'" value="'.$user['ank_m_r'].'" >'.$user['ank_m_r'].'</option>';
for ($i = 1; $i < 13; ++$i)
{
echo '<option value="'.$i.'">'.$i.'</option>';
}
echo '</select>';
//Год
echo '
<select name="ank_g_r"><option selected="'.$user['ank_g_r'].'" value="'.$user['ank_g_r'].'" >'.$user['ank_g_r'].'</option>';
for ($i = 1920; $i < date('Y') - 7; ++$i)
{
echo '<option value="'.$i.'">'.$i.'</option>';
}
echo '</select></div>';
echo "
<div class='$div_edit'>
".lang('Пол').": <input name='pol' type='radio' ".($user['pol']==1?' checked="checked"':null)." value='1' />".lang('Муж.')."
<input name='pol' type='radio' ".($user['pol']==0?' checked="checked"':null)." value='0' />".lang('Жен.')."
</div>
<div class='$div_edit'>
".lang('Город').":<br /><input type='text' name='ank_city' value='".output_text($user['ank_city'],false)."' maxlength='32' />
</div>
<div class='$div_edit'>
".lang('Регион').":<br /><input type='text' name='ank_countr' value='".output_text($user['ank_countr'],false)."' maxlength='32' />
</div>
<div class='$div_edit'>
".lang('ICQ').":<br /><input type='text' name='ank_icq' value='$user[ank_icq]' maxlength='9' />
</div>
<div class='$div_edit'>
".lang('Skype логин')." :<br /><input type='text' name='ank_skype' value='".output_text($user['ank_skype'],false)."' maxlength='32' />
</div>
<div class='$div_edit'>
".lang('О себе').":<br />
<textarea name='ank_o_sebe' maxlength='512'>".output_text($user['ank_o_sebe'],false)."</textarea>
</div>
";
echo "
</div>
<div class='p_m'>
<input type='submit' name='save' value='".lang('Сохранить')."' />
</form>
</div>";
?>