Файл: group/to_chat.php
Строк: 150
<?
require_once ("../core/cuctema/core.php");
if (!isset($user)){
$set['title']='Внимание!';
require_once ("../core/cuctema/head.php");
aut();
echo'<div class="hide">Извините, эта функция доступна только зарегистрированным пользователям. <a href="/registration/">Регистрация</a> быстрая и бесплатная.</div><br />';
require_once ("../core/cuctema/foot.php");
exit();
}
$group=mysql_fetch_assoc(mysql_query("SELECT * FROM `group` where `id` = '".intval($_GET['id'])."' LIMIT 1"));
$set['title']='Чат';
require_once ("../core/cuctema/head.php");
err();
aut();
//echo "<div class="d2">$urlik / <a href="/group">Группы</a> / <a href="/group/group?id=".$group['id']."">".output_text($group['name'])."</a> / Чат </div>";
if(mysql_result(mysql_query("SELECT COUNT(`id`) FROM `group` WHERE `id` = '$group[id]'"), 0)==0){
msg('Такой Группы нет');
require_once ("../core/cuctema/foot.php");
exit;
}
if(mysql_result(mysql_query("SELECT COUNT(`id`) FROM `group` WHERE `id` = '$group[id]' AND `chat` = '1'"), 0)==1){
require_once ("../core/cuctema/head.php");
msg('Чат выключен');
require_once ("../core/cuctema/foot.php");
exit;
}
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `read` = '0'"), 0)==0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `group_user` WHERE `id_group` = '$group[id]' AND `id_user` = '$user[id]' AND`act` = '1'"), 0)==0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `admin` = ''"), 0)==0){
echo "<div class='hide'>
Читать могут только участники!
<br/>
<a href='/group/group?id=".$group['id']."&in' class='btn btn-danger'>Вступить</a>
<a href='".htmlspecialchars($_SERVER['HTTP_REFERER'])."' class='btn'>Назад</a>
</div>";
require_once ("../core/cuctema/foot.php");
exit;
}
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `group_ban` WHERE `id_group` = '$group[id]' AND `id_user` = '$user[id]' AND `time` > '".time()."'"), 0)==1){
$ban=mysql_fetch_assoc(mysql_query("SELECT * FROM `group_ban` where `id_user` = '".$user['id']."' LIMIT 1"));
echo 'Вы забанены до '.vremja($ban['time']).' <br />Причина '.output_text($ban['opis']).'<br />';
require_once ("../core/cuctema/foot.php");
exit;
}
if (isset($user))mysql_query("DELETE FROM `group_online` WHERE `id_user` = '".$user['id']."' AND `id_group` = '".$group['id']."'");
mysql_query("DELETE FROM `group_online` WHERE `time` < '".(time()-120)."' AND `id_group` = '".$group['id']."'");
if (isset($user)){mysql_query("INSERT INTO `group_online` (`id_user`, `time`, `id_group`,`gde`) values('".$user['id']."', '".time()."', '".$group['id']."','4')");
}
if(isset($_GET['kto_tyt'])){
$kto = mysql_query("SELECT `id_user` FROM `group_online` WHERE `id_group`='$group[id]' AND `gde`='4' ");
while($kont = mysql_fetch_assoc($kto))
{
$ank=mysql_fetch_array(mysql_query("select * from `user` where `id`='".$kont['id_user']."' limit 1;"));
echo "<div class='d2'>";
echo "".online($ank['id'])." <a href='/profile?id=".$ank['id']."'>".$ank['nick']."</a> ";
echo "</div>";
}
require_once ("../core/cuctema/foot.php");
exit;
}
if (isset($_GET['del']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `group_chat` WHERE `id` = '".intval($_GET['del'])."' AND `id_group` = '".intval($_GET['id'])."'"),0)==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `group_user` WHERE `id_group` = '".intval($_GET['id'])."' AND `id_user` = '".$user['id']."' AND (`level` = '1' OR `level` = '3' OR `level` = '2')"),0)==1)
{
$post=mysql_fetch_assoc(mysql_query("SELECT * FROM `group_chat` WHERE `id` = '".intval($_GET['del'])."' LIMIT 1"));
mysql_query("DELETE FROM `group_chat` WHERE `id` = '$post[id]'");
msg('Сообщение удалено');
}
if (isset($_GET['otv'])) {
$otvet=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_GET['otv'])."'"));
if (isset($user) && !empty($_POST['msg'])) {
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
if (strlen2($msg)>1024){$err='Сообщение слишком длинное';}
elseif (strlen2($msg)<2){$err='Короткое сообщение';}
elseif (mysql_result(mysql_query("SELECT COUNT(*) FROM `group_chat` WHERE `id_group` = '".intval($_GET['id'])."' AND `id_user` = '$user[id]' AND `msg` = '".my_esc($msg)."' LIMIT 1"),0)!=0){$err='Ваше сообщение повторяет предыдущее';}
$msg=mysql_real_escape_string($msg);
if (!isset($err)) {
mysql_query("INSERT INTO `group_chat` (`id_user`, `time`, `msg`, `id_group`) values('$user[id]', '$time', '".my_esc($msg)."', '".intval($_GET['id'])."')");
mysql_query("UPDATE `user` SET `balls` = '".($user['balls']+1)."' WHERE `id` = '$user[id]' LIMIT 1");
include_once '../akt_rating.php';
if ($user[id]!=$user_temp[id]) {
$msg1="Вам ответили в [url=/group/chat?id=".intval($_GET['id'])."&page=1]чате[/url]";
mysql_query("INSERT INTO `jurnal` (`id_kont`, `msg`, `time`) values('$otvet[id]', '$msg1', '$time')");
}
header("Location: chat?id=".intval($_GET['id'])."&page=1".SID);
exit;
}
}
}
if (!empty($_POST['msg']) && isset($user))
{
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
$mat=antimat($msg);
if ($mat)$err[]='В тексте сообщения обнаружен мат: '.$mat;
if (strlen2($msg)>1024){$err='Сообщение слишком длинное';}
elseif (strlen2($msg)<2){$err='Короткое сообщение';}
elseif (mysql_result(mysql_query("SELECT COUNT(*) FROM `group_chat` WHERE `id_group` = '".intval($_GET['id'])."' AND `id_user` = '$user[id]' AND `msg` = '".my_esc($msg)."' LIMIT 1"),0)!=0){$err='Ваше сообщение повторяет предыдущее';}
elseif(!isset($err)){
$admin=mysql_fetch_array(mysql_query("SELECT * FROM `group` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1"));
if ( isset($user) && $user['id'] == $admin['admin'] ) {}
else {
$an=mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = $admin[admin] LIMIT 1"));
$msgrat1= "В вашем чате [url=/group/group?id=".intval($_GET['id'])."]оставили комментарий[/url]";
mysql_query("INSERT INTO `jurnal` (`id_user`, `id_kont`, `msg`, `time`) values('0', '$an[id]', '$msgrat1', '$time')");
}
mysql_query("INSERT INTO `group_chat` (`id_user`, `time`, `msg`, `id_group`) values('$user[id]', '$time', '".my_esc($msg)."', '".intval($_GET['id'])."')");
mysql_query("UPDATE `user` SET `balls` = '".($user['balls']+1)."' WHERE `id` = '$user[id]' LIMIT 1");
msg('Ваш комментарий успешно принят');
}
}
err();
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `group_online` WHERE `id_group` = '$group[id]' AND `gde`='4'"), 0);//счётчик сколько онлайн
echo " <div class='d2'>n";
echo "<a href='?id=$group[id]&kto_tyt'>Кто в чате</a> ($count)<br />";
echo " </div>n";
if(isset($_GET['otv'])){
$otvet=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_GET['otv'])."'"));
if ((isset($user) && mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `write` = '1'"), 0)==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `group_user` WHERE `id_group` = '$group[id]' AND `id_user` = '$user[id]'"), 0)==1) || (isset($user) && mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `write` = '0'"), 0)==1))
{
echo "<form method="post" name='message' action="?id=".intval($_GET['id'])."&otv=$otvet[id]">n";
if(isset($_GET['cop']))$vs=$_SESSION['sm'];
if ($set['web'] && is_file(H.'style/themes/'.$set['set_them'].'/altername_post_form.php'))
include_once H.'style/themes/'.$set['set_them'].'/altername_post_form.php';
else
echo " <div class='d2'>n";
echo "Сообщение:<br />n<textarea name="msg" style="width:90%" rows="7">$otvet[nick], $vs</textarea><br />n";
echo "<input value="Отправить" type="submit" />n";
echo "</form>n";
echo " </div>n";
}
}
else{
if ((isset($user) && mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `write` = '1'"), 0)==1 && mysql_result(mysql_query("SELECT COUNT(*) FROM `group_user` WHERE `id_group` = '$group[id]' AND `id_user` = '$user[id]'"), 0)==1) || (isset($user) && mysql_result(mysql_query("SELECT COUNT(*) FROM `group` WHERE `id` = '$group[id]' AND `write` = '0'"), 0)==1))
{
echo "<form method="post" name='message' action="?id=".intval($_GET['id'])."">n";
if ($set['web'] && is_file(H.'style/themes/'.$set['set_them'].'/altername_post_form.php'))
include_once H.'style/themes/'.$set['set_them'].'/altername_post_form.php';
else
echo " <div class='d2'>n";
echo "Сообщение:<br />n<textarea name="msg" style="width:90%" rows="7"></textarea><br />n";
echo "<input value="Отправить" type="submit" />n";
echo "</form>n";
echo " </div>n";
}
}
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `group_chat` WHERE `id_group` = '".intval($_GET['id'])."'"),0);
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
$q=mysql_query("SELECT * FROM `group_chat` WHERE `id_group` = '".intval($_GET['id'])."' ORDER BY `id` DESC LIMIT $start, $set[p_str]");
if ($k_post==0)
{
echo " <div class='hide'>n";
echo "Нет комментариевn";
echo " </div>n";
}
while ($post = mysql_fetch_assoc($q))
{
//$ank=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1"));
$ank=get_user($post['id_user']);
if ($num==0){
echo"<div class='d1'>n";
$num=1;
}
elseif ($num==1)
{
echo"<div class='d2'>n";
$num=0;
}
echo "<table><tr><td>";
avatar($ank['id']);
echo "</td>n";
echo "<td>";
echo "".online($ank['id'])." <a href='/id$ank[id]'>$ank[nick]</a> (".vremja($post['time']).")<br/>n";
echo output_text($post['msg'])."<br/>n";
if (isset($user))
echo "[<a href='?id=$group[id]&otv=$ank[id]'>Ответ</a>]n";
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `group_user` WHERE `id_group` = '".$group['id']."' AND `id_user` = '".$user['id']."' AND (`level` = '1' OR `level` = '3' OR `level` = '2')"),0)==1)
echo "[<a href='?id=$group[id]&del=$post[id]'>Удалить</a>]<br />n";
echo "</td></tr></table></div>";
}
if ($k_page>1)str("chat?id=".intval($_GET['id']).'&',$k_page,$page); // Вывод страниц
require_once ("../core/cuctema/foot.php");
?>