Файл: mysite/files/index.php
Строк: 1545
<?
require_once ("../../core/cuctema/core.php");
require_once ("../../core/cuctema/shif.php");
require_once ("../../core/cuctema/mp3.php");
if(isset($_GET['mp3']))
{
echo '<center>';
?>
<object type='application/x-shockwave-flash' data='player.swf' width='200' height='20' id='dewplayer' name='dewplayer'>
<param name='movie' value='flowplayer.swf' />
<param name='flashvars' value='mp3=2.mp3' />
<param name='wmode' value='transparent' />
</object>
<?
echo '</center>';
exit;
}
if(isset($_GET['mp4']))
{
?>
<object type="application/x-shockwave-flash" data="/mysite/files/player.swf" height="340" width="400"><param name="bgcolor" value="#FFFFFF" /><param name="allowFullScreen" value="true" /><param name="allowScriptAccess" value="always" /><param name="movie" value="/mysite/files/videoplayer.swf" /><param name="FlashVars" value="way=/file/1.mp4&swf=/mysite/files/videoplayer.swf&w=400&h=340&pic=&autoplay=1&tools=2&skin=blackblack&volume=70&q=1&comment=olololo" /></object>
<?
exit;
}
if(isset($user) && ($user['group_access']==4 || $user['group_access']>=7))$skp=NULL;
else{$skp=" AND `sk` = '0'";$nvs=1;}
if(isset($_GET['activate_multichecker']) && isset($user))$_SESSION['mrf']=1;
if(isset($_GET['mrf_cancel']))
{
unset($_SESSION['rpfs']);unset($_SESSION['mrf']);
}
if(isset($_SESSION['mrf']) && isset($user))$mrf=1;
if(isset($_GET['from']) && $_GET['from']!=NULL)$from=htmlspecialchars($_GET['from']);
if(isset($_GET['file']))
{
$file=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '".intval($_GET['file'])."' AND `cat` = 'files' AND `type2` = 'file'"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` = '".intval($_GET['file'])."' AND `cat` = 'files' AND `type2` = 'file'"),0)==0)
{
$set['title']="Файлы | Ошибка";
require_once ("../../core/cuctema/head.php");
aut();
echo "<div class='hide'>Файл ненайден!</div>";
require_once ("../../core/cuctema/foot.php");
}
$ank=get_user($file['id_user']);
if($file['sk']==1 && $user['group_access']!=4 && $user['group_access']<7 && $ank['id']!=$user['id'])
{
$set['title']="Файлы | Ошибка";
require_once ("../../core/cuctema/head.php");
aut();
echo "<div class='hide'>Файл заблокирован!</div>";
require_once ("../../core/cuctema/foot.php");
}
if($file['id_dir']==0)
{
$dir['id']=0;
$dir['name']='Файлы';
$dir['count']='/0/';
$dir['type']='all';
}
else $dir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$file[id_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
if(isset($_GET['szone']))
{
$set['title']='Зона обмена - Добавление файла';
require_once ("../../core/cuctema/head.php");
title();
aut();
err();
if(isset($_GET['dir']))$dirz=intval($_GET['dir']);
else $dirz=0;
if($dirz==0)
{
$dirz['id']=0;
$dirz['count']='/0/';
}
else $dirz=mysql_fetch_assoc(mysql_query("SELECT * FROM `shared_zone` WHERE `id` = '$dirz' LIMIT 1"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `shared_zone` WHERE `id` = '$dirz[id]' AND `id_soo` = '0' LIMIT 1"),0)==0 && $dirz['id']!=0)
{
echo "<div class='hide'>Ошибка!</div>";
require_once ("../../core/cuctema/foot.php");
}
if($ank['id']!=$user['id'])
{
echo "<div class='err'>Это не ваш файл</div>";
require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['ok']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `shared_zone` WHERE `mother` = '$dirz[id]' AND `dir` = '1' LIMIT 1"),0)==0)
{
mysql_query("DELETE FROM `shared_zone` WHERE `id_my_file`='$file[id]' AND `dir` = '0' AND `type` = 'file'");
mysql_query("INSERT INTO `shared_zone` (`dir`, `mother`, `time`, `id_my_file`, `counter`, `id_user`, `name`) values ('0', '$dirz[id]', '$time', '$file[id]', '$dirz[counter]$dirz[id]/', '$user[id]', '$file[name].$file[ras]')");
echo "<div class='main123 line_175'>Файл <b>".($file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png")?"<img src='/mysite/files/java_icons/$file[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$file[ras].png")?"<img src='/mysite/files/file_icons/$file[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")." ".htmlspecialchars($file['name']).".".htmlspecialchars($file['ras'])."</b> успешно добавлен в Зону oбмена в категорию <b><img src='/t/default/all/shared_zone/dir.png'/> ".htmlspecialchars($dirz['name'])."</b><br/>Чем больше посетителей откроет ваш файл, тем быстрее будет расти ваша популярность на 7emka.ru!</div><div class='menu123'><a href='/mysite/files/?file=$file[id]&user=$ank[id]'>← Назад</a></div>n";
require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['add']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `shared_zone` WHERE `mother` = '$dirz[id]' AND `dir` = '1' LIMIT 1"),0)==0)
{
echo "<div class='main123'><span style='font-size:small;color:red'>Внимание! За добавление файла в неправильную категорию вы можете получить нарушение.<br/>Если не знаете, в какую категорию добавлять, лучше не добавляйте вообще.</span><br/><br/>Добавить файл <b>".($file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png")?"<img src='/mysite/files/java_icons/$file[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$file[ras].png")?"<img src='/mysite/files/file_icons/$file[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")." ".htmlspecialchars($file['name']).".".htmlspecialchars($file['ras'])."</b> в категорию <b><img src='/t/default/all/shared_zone/dir.png'/> ".htmlspecialchars($dirz['name'])."</b>?<br/><a href='?file=$file[id]&user=$ank[id]&szone=1&dir=$dirz[id]&ok'><b>Да</b></a> <a href='?file=$file[id]&user=$ank[id]&szone=1&dir=$dirz[mother]'><b>Нет</b></a></div><div class='menu123'><img src='/style/icons/back.png' alt='back'/><a href='/mysite/files/?file=$file[id]'>Назад</a></div>n";
require_once ("../../core/cuctema/foot.php");
}
echo "<div class='back123 line_175'><span style='font-size:small;color:red'>Внимание! Перед добавлением файла в Зону обмена внимательно прочитайте <a href='/shared_zone/?rules'>Правила Зоны обмена</a>.<br/>За нарушение этих правил, ваш ник может быть заблокирован временно или навсегда.</span><br/>Перемещение файла <a href='/mysite/files/?file=$file[id]&user=$ank[id]'>".($file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png")?"<img src='/mysite/files/java_icons/$file[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$file[ras].png")?"<img src='/mysite/files/file_icons/$file[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")." ".htmlspecialchars($file['name']).".".htmlspecialchars($file['ras'])."</a></div>n";
$q=mysql_query("SELECT * FROM `shared_zone` WHERE `mother` = '$dirz[id]' AND `dir` = '1' AND `id_soo` = '0' ORDER BY `pos` ASC, `name` ASC");
while($post=mysql_fetch_assoc($q))
{
echo "<div class='main123 line_175'>";
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `shared_zone` WHERE `mother` = '$post[id]' AND `dir` = '1' LIMIT 1"),0)==0)echo "<img src='/t/default/all/shared_zone/dir.png' /> <a href='?file=$file[id]&user=$ank[id]&szone=1&dir=$post[id]&add'>".htmlspecialchars($post['name'])."</a><br/>n";
else echo "<img src='/t/default/all/shared_zone/dir.png' /> <a href='?file=$file[id]&user=$ank[id]&szone=1&dir=$post[id]'>".htmlspecialchars($post['name'])."</a>n";
echo "</div>";
}
require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['download']) && isset($_GET['file']))
{
}
else
{
$set['title']="Файлы | $ank[nick]";
require_once ("../../core/cuctema/head.php");
aut();
}
if(isset($_GET['download']))
{
$ras=$file['ras'];
$name=$file['name'];
$size=filesize(H."mysite/files/fd/$file[id].dat");
$type=ras_to_mime($ras);
if ($ras=='jar' && isset($_GET['java']) && $_GET['java']=='jad')
{
require_once ("../../core/cuctema/zip.php");
$zip=new PclZip(H.'mysite/files/fd/'.$file['id'].'.dat');
$content = $zip->extract(PCLZIP_OPT_BY_NAME, "META-INF/MANIFEST.MF" ,PCLZIP_OPT_EXTRACT_AS_STRING);
$jad=preg_replace("#(MIDlet-Jar-URL:( )*[^(n|r)]*)#i", NULL, $content[0]['content']);
$jad=preg_replace("#(MIDlet-Jar-Size:( )*[^(n|r)]*)(n|r)#i", NULL, $jad);
$jad=trim($jad);
$jad.="rnMIDlet-Jar-Size: ".filesize(H.'mysite/files/fd/'.$file['id'].'.dat')."";
$jad.="rnMIDlet-Jar-URL: http://7emka.ru/mysite/files/?file=$file[id]&download=1";
$jad=br($jad,"rn");
header('Content-Type: text/vnd.sun.j2me.app-descriptor');
header('Content-Disposition: attachment; filename="'.$file['name'].'.jad";');
echo $jad;
exit;
}
chmod(H."mysite/files/fd/$file[id].dat", 0777);
@mysql_query("UPDATE `files` SET `dl` = '".($file['dl']+1)."' WHERE `id` = '$file[id]' LIMIT 1");
$file_name="$name.$ras";
header("Content-Length:$size");
header("Content-Disposition:attachment; filename=$file_name");
header("Content-Type:$type;name=$file_name");
readfile(H."mysite/files/fd/$file[id].dat");
//include_once '../sys/inc/downloadfile.php';
//DownloadFile(H.'mysite/files/fd/78.dat', $name.'.'.$ras, ras_to_mime($ras));
exit;
}
if($user['ank_d_r']!=NULL && $user['ank_m_r']!=NULL && $user['ank_g_r']!=NULL)
{
$user['ank_age']=date("Y")-$user['ank_g_r'];
if(date("n")<$user['ank_m_r'])
{
$user['ank_age']=$user['ank_age']-1;
}
elseif(date("n")==$user['ank_m_r']&& date("j")<$user['ank_d_r'])
{
$user['ank_age']=$user['ank_age']-1;
}
}
if($dir['type']=='dir' && $dir['type_dir']!=0)$dirol=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$dir[type_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
if(isset($dirol))
{
if($dirol['type']=='only_me')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dirol['name'])."</b> доступна только автору!</div>";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='friends')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)!=0)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dirol['name'])."</b> доступна только друзьям автора!";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='pass')
{
if(isset($_POST['pass']) && $_POST['pass']==$dirol['pass'] && isset($user) || mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)!=0 && isset($user) || $ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0)mysql_query("INSERT INTO `enter` (`id_user`, `id_object`, `type`, `cat`) values ('$user[id]', '$dirol[id]', 'dostyp', 'file')");
$oki=1;
}
elseif((!isset($_POST['pass']) || isset($_POST['pass']) && $_POST['pass']!=$dirol['pass']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'])
{
echo "<div class='err'>";
if(isset($_POST['pass']) && $_POST['pass']!=$dirol['pass'])echo "Пароль неправильный<br/>";
echo "Доступ к папке <b>".htmlspecialchars($dirol['name'])."</b> запрещен пользователем!<br> Чтобы пройти в папку пользователя, введите пароль:";
echo "<br><form action='' method="post"> <input type="text" name="pass"><br><input type="submit" name="go"></div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='list')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)!=0)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Доступ к папке <b>".htmlspecialchars($dirol['name'])."</b> закрыт!</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
}
if(!isset($oki))
{
/*разделяем путь к файлу на id папок, которые ведут к файлу и выбираем папку, к которой мы не имеем доступа*/
$array=explode("/", $file['counter']);
foreach ($array as $key => $value)
{
if($value!=NULL)
{
$d1=mysql_fetch_assoc(mysql_query("SELECT * FROM `files` WHERE `id` = '$value' AND `cat` = 'files' AND `type2` = 'dir'"));
if($d1['type']=='only_me' && $user['id']!=$ank['id'])$id_dir=$d1['id'];
elseif($d1['type']=='friends' && $user['id']!=$ank['id'] && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)==0)$id_dir=$d1['id'];
elseif($d1['type']=='pass' && (mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$d2[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'] || !isset($user)))$id_dir=$d1['id'];
if($d1['type']=='list' && $user['id']!=$ank['id'] && mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)==0)$id_dir=$d1['id'];
}
}
if(isset($id_dir))$d2=mysql_fetch_assoc(mysql_query("SELECT * FROM `files` WHERE `id` = '$id_dir' AND `cat` = 'files' AND `type2` = 'dir'"));
if(isset($d2))
{
if($d2['type']=='only_me')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($d2['name'])."</b> доступна только автору!</div>";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($d2['type']=='friends')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)!=0)
{
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($d2['name'])."</b> доступна только друзьям автора!";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($d2['type']=='pass')
{
if(isset($_POST['pass']) && $_POST['pass']==$d2['pass'] && isset($user) || mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$d2[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)!=0 && isset($user) || $ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$d2[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0)mysql_query("INSERT INTO `enter` (`id_user`, `id_object`, `type`, `cat`) values ('$user[id]', '$d2[id]', 'dostyp', 'file')");
}
elseif((!isset($_POST['pass']) || isset($_POST['pass']) && $_POST['pass']!=$d2['pass']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$d2[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'])
{
echo "<div class='err'>";
if(isset($_POST['pass']) && $_POST['pass']!=$d2['pass'])echo "Пароль неправильный<br/>";
echo "Доступ к папке <b>".htmlspecialchars($d2['name'])."</b> запрещен пользователем!<br> Чтобы пройти в папку пользователя, введите пароль:";
echo "<br><form action='' method="post"> <input type="text" name="pass"><br><input type="submit" name="go"></div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($d2['type']=='list')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)!=0)
{
}
else
{
echo "<div class='err'>";
echo "Доступ к папке <b>".htmlspecialchars($d2['name'])."</b> закрыт!</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
}
}
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$file[id]' AND `type` = '+18' AND `cat` = 'file' LIMIT 1"),0)==0 && isset($_GET['passed']) && $file['+18']==1)mysql_query("INSERT INTO `enter` (`id_user`, `id_object`, `type`, `cat`) values ('$user[id]', '$file[id]', '+18', 'file')");
if($file['+18']==1){if(!isset($user)){echo "<div class='err'>Файлы с меткой <font color='red'>[+18]</font> доступны только для авторизированых пользователей.Пожалуйста, пройдите процес <a href='/'>авторизации</a> или <a href='/reg.php'>регистрации</a></div>";
require_once ("../../core/cuctema/foot.php");exit;
}
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$file[id]' AND `type` = '+18' AND `cat` = 'file' LIMIT 1"),0)==0 && !isset($_GET['passed']) && $user['ank_age']<18)
{
echo "<div class='err'>Внимание! Это содержимое только для взрослых!<br/>Нажимая ДА, Вы подтверждаете, что Вам 18 или более лет.<br/>Если Вам менее 18 лет - нажмите НЕТ.<br/><br/><a href='?file=$file[id]&user=$ank[id]&passed=1'>Да</a> <a href='?file=$file[id_dir]&user=$ank[id]'>Нет</a><br/></div>n";
require_once ("../../core/cuctema/foot.php");exit;}}
//echo "<div class='busi'><a href='$_SERVER[HTTP_HOST]'>$_SERVER[HTTP_HOST]</a>/<a href='/user/?id=$ank[id]'>$ank[nick]</a>/<a href='?user=$ank[id]'>Файлы</a></div>";
if(isset($user) && isset($_GET['delete_file']) && $file['sk']==0)
{
if(isset($_GET['ok']))
{
mysql_query("DELETE FROM `files` WHERE `id` = '$file[id]'");
mysql_query("DELETE FROM `shared_zone` WHERE `id_my_file` = '$file[id]' AND `type` = 'file'");
if(is_file(H."mysite/files/screens/$file[id]_big.png"))unlink(H."mysite/files/screens/$file[id]_big.png");
if(is_file(H."mysite/files/screens/$file[id].png"))unlink(H."mysite/files/screens/$file[id].png");
if(is_file(H."mysite/files/java_icons/$file[id].png"))unlink(H."mysite/files/java_icons/$file[id].png");
if(is_file(H."mysite/files/fd/$file[id].dat"))unlink(H."mysite/files/fd/$file[id].dat");
mysql_query("DELETE FROM `files_rating` WHERE `id_file` = '$file[id]'");
mysql_query("DELETE FROM `files_komm` WHERE `id_file` = '$file[id]'");
$_SESSION['uf_file_deleted']="$file[name].$file[ras]";
header("Location:?user=$ank[id]&dir=$dir[id]");
exit;
}
echo "<div class='err'>Вы действительно хотите удалить файл?!<br/><a href='?user=$ank[id]&file=$file[id]'>Нет</a> <a href='?user=$ank[id]&file=$file[id]&delete_file=1&ok'>Да</a></div>";
require_once ("../../core/cuctema/foot.php");
}
if(($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7) && isset($_GET['edit_file']) && isset($_POST['name']) && isset($_POST['desc']) && isset($_POST['komm']) && $file['sk']==0)
{
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])),1);
$ras=strtolower(eregi_replace('^.*.', NULL, $name));
//$name=eregi_replace('.[^.]*$', NULL, $name); // имя файла без расширения
$name=eregi_replace('[^]*$', NULL, $name); // имя файла без расширения
if (strlen2($name)<1)$err='Короткое название';
$komm=$_POST['komm'];
if($komm==2 || $komm==3)$k=$komm;else $k=1;
if($ras==NULL || !isset($ras) || $ras==$name)$err='Неверный формат названия файла';
$desc=$_POST['desc'];
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id_dir` = '$dir[id]' AND `name` = '$name' AND `ras` = '$ras' AND `id_user` = '$ank[id]' AND `id` != '$file[id]'"),0)!=0)$err='Файл с таким названием уже есть в этой папке';
if (!isset($err))
{
if($ras!=$file['ras'] && is_file(H."mysite/files/screens/$file[id]_big.png"))unlink(H."mysite/files/screens/$file[id]_big.png");
if($ras!=$file['ras'] && is_file(H."mysite/files/screens/$file[id].png"))unlink(H."mysite/files/screens/$file[id].png");
if($ras!=$file['ras'] && $file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png"))unlink(H."mysite/files/java_icons/$file[id].png");
if(isset($_POST['p18']) && $_POST['p18']==1)$p18=1;else $p18=0;
//mysql_query("UPDATE `files` SET `name` = '$name', `ras` = '$ras', `komm` = '$k', `+18` = '$p18', `desc` = '$desc' WHERE `id` = '$file[id]'");
mysql_query("UPDATE `files` SET `name` = '$name',`komm` = '$k', `+18` = '$p18', `desc` = '$desc' WHERE `id` = '$file[id]'");
msg("Файл <b>".htmlspecialchars($_POST['name']).".".htmlspecialchars($_POST['ras'])."</b> успешно отредактирован");
$clad=1;
$file=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '".intval($_GET['file'])."' AND `cat` = 'files' AND `type2` = 'file'"));
}
}
if(isset($_GET['edit_file']) && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && !isset($clad) && $file['sk']==0)
{
err();
echo "<div class='menu123'>Файл: <a href='?user=$ank[id]&file=$file[id]'>".($file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png")?"<img src='java_icons/$file[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$file[ras].png")?"<img src='file_icons/$file[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")." <b>".htmlspecialchars($file['name']).".".htmlspecialchars($file['ras'])."</b></a></div>";
echo "<div class='main123 line_175'><form method='post' action='?user=$ank[id]&file=$file[id]&edit_file' style='menu'>Название:<br/><input type='text' name='name' value='".htmlspecialchars($file['name'])."'>.".htmlspecialchars($file['ras'])."<br/>";
echo "<input type='checkbox' name='p18' value='1'".($file['+18']==1?" checked='checked'":null)."> Только для взрослых <font color='red'>(+18)</font><br/>";
echo "Описание:<br />n";
echo "<textarea name='desc'>$file[desc]</textarea><br />n";
echo "Комментируют:<br/>";
echo "<label><input type="radio"".($file['komm']==1?" checked='checked'":NULL)." name="komm" value="1" /> Все</label><br />n";
echo "<label><input type="radio"".($file['komm']==2?" checked='checked'":NULL)." name="komm" value="2" /> Только друзья</label><br />n";
echo "<label><input type="radio"".($file['komm']==3?" checked='checked'":NULL)." name="komm" value="3" /> Никто</label><br />n";
echo "<input type='submit' name='ok' value='Сохранить'></form></div>";
echo "<div class='menu123'><a href='?user=$ank[id]&file=$file[id]&delete_file'><img src='http://i.spaces.ru/cross_r.gif'/> Удалить файл</a></div>";
require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['cur_file']) && !isset($clad))
{
if ($file['sk']==0){
echo "<div class='main123 line_175'><span style='color:#333'>Ссылка для вставки</span><br /><input type='text' value='[url=http://7emka.ru/mysite/files/?user=$ank[id]&file=$file[id]]$ank[nick] | Файлы | $file[name].$file[ras][/url]' maxlength='512' style='width:60%'/></div>n";
}else{
echo "<div class='err'>Файл заблокирован!</div>n";
}
echo "<div class='menu123 line_175'><a href='?user=$ank[id]&file=$file[id]'>← Назад</a></div>n";
require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['sk']) && ($user['group_access']==4 || $user['group_access']>=7))
{
if($file['sk']==0)
{
if(isset($_GET['ok']) && isset($_POST['msg']))
{
if(strlen2($_POST['msg'])<1)$err[]='Укажите причину';
if(!isset($err))
{
mysql_query("DELETE FROM `shared_zone` WHERE `id_my_file` = '$file[id]' AND `type` = 'file'");
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `name` = 'Заблокированные' AND `sk` = '1' AND `type2` = 'dir' AND `cat` = 'files' AND `id_dir` = '0' AND `id_user` = '$ank[id]'"),0)==0)
{
mysql_query("INSERT INTO `files` SET `name` = 'Заблокированные', `type` = 'all', `time` = '$time', `time2` = '$time', `id_dir` = '0', `counter` = '/0/', `type2` = 'dir', `cat` = 'files', `id_user` = '$ank[id]', `sk` = '1'");
$idd=mysql_insert_id();
$bdir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$idd'"));
}
else $bdir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `name` = 'Заблокированные' AND `sk` = '1' AND `type2` = 'dir' AND `cat` = 'files' AND `id_dir` = '0' AND `id_user` = '$ank[id]'"));
mysql_query("UPDATE `files` SET `sk` = '1', `sk_user` = '$user[id]', `sk_msg` = '$_POST[msg]', `sk_time` = '$time', `id_dir` = '$bdir[id]', `counter` = '$bdir[counter]$bdir[id]/' WHERE `id` = '$file[id]'");
header("Location:?file=$file[id]&user=$ank[id]");
exit;
}
}
echo "<div class='main123 line_175'><form method='post' action='?file=$file[id]&user=$ank[id]&sk=1&ok'>Причина:<br/><textarea name='msg'></textarea><br/><input type='submit' value='Заблокировать'></form></div>";
}
else
{
mysql_query("UPDATE `files` SET `sk` = '0', `sk_user` = '$user[id]', `id_dir` = '0', `counter` = '/0/', `sk_time` = '$time' WHERE `id` = '$file[id]'");
header("Location:?file=$file[id]&user=$ank[id]");
exit;
}
echo "<div class='menu123'><a href='?file=$file[id]&user=$ank[id]'>← Назад</a></div>n";require_once ("../../core/cuctema/foot.php");
}
if(isset($_GET['dzone']) && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7))
{
if(isset($_GET['ok']))mysql_query("DELETE FROM `shared_zone` WHERE `id_my_file`='$file[id]' AND `dir` = '0' AND `type` = 'file'");
else
{
echo "<div class='err'>Вы действительно хотите удалить этот файл из Зоны oбмена?<br/><a href='?file=$file[id]&user=$ank[id]'>Нет</a> <a href='?file=$file[id]&user=$ank[id]&dzone=1&ok'>Да</a></div>";
require_once ("../../core/cuctema/foot.php");
}
}
if(isset($_GET['edit_komm']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id` = '".intval($_GET['edit_komm'])."' AND `id_file` = '$file[id]'$skp"),0)!=0 && $file['sk']==0)
{
$komm=mysql_fetch_array(mysql_query("SELECT * FROM `files_komm` WHERE `id` = '".intval($_GET['edit_komm'])."' AND `id_file` = '$file[id]'"));
if(isset($_GET['ok']) && isset($_POST['ok']))
{
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
$mat=antimat($msg);
if ($mat)$err[]='В тексте сообщения обнаружен мат: '.$mat;
if (strlen2($msg)>1024){$err='Сообщение слишком длинное';}
if (strlen2($msg)<2){$err='Короткое сообщение';}
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$file[id]' AND `id_user` = '$user[id]' AND `msg` = '".mysql_escape_string($msg)."' LIMIT 1"),0)!=0){$err='Ваше сообщение повторяет предыдущее';}
if(!isset($err))
{
mysql_query("UPDATE `files_komm` SET `msg` = '$msg' WHERE `id` = '$komm[id]'");
header("Location:?file=$file[id]&user=$user[id]");
exit;
}
}
err();
echo "<form method='post' name='message' action='?file=$file[id]&user=$user[id]&edit_komm=$komm[id]&ok'>n";
echo "Сообщение:<br /><textarea name='msg'>$komm[msg]</textarea><br />";
if ($user['set_translit']==1)echo "<label><input type="checkbox" name="translit" value="1" /> Транслит</label><br/>n";
echo "<input value="Отправить" type="submit" name='ok' />n";echo "</form>n";
echo "<div class='foot'><img src='/style/icons/back.png'/> <a href='?file=$file[id]&user=$user[id]'>Назад</a></div>";
require_once ("../../core/cuctema/foot.php");
}
elseif(isset($_GET['reply']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id` = '".intval($_GET['reply'])."' AND `id_file` = '$file[id]'$skp"),0)!=0 && $file['sk']==0)
{
$komm=mysql_fetch_array(mysql_query("SELECT * FROM `files_komm` WHERE `id` = '".intval($_GET['reply'])."' AND `id_file` = '$file[id]'"));
$ank2=mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$komm[id_user]'"));
if($ank2['id']!=$user['id'])
{
echo "$ank2[nick] написал:<div class='p_m'>".htmlspecialchars($komm['msg'])."</div>";
echo "<form method='post' name='message' action='?file=$file[id]&user=$user[id]&$passgen'>n";
echo "Сообщение:<br /><textarea name='msg'></textarea><br />";
if ($user['set_translit']==1)echo "<label><input type="checkbox" name="translit" value="1" /> Транслит</label>n";
echo "<input type='hidden' name='reply' value='$ank2[id]'>";
echo "<input type='hidden' name='komm_reply' value='$komm[id]'>";
echo "<br/><input value="Отправить" type="submit" />n";
echo "</form>n";
echo "<div class='foot'><img src='/style/icons/back.png'/> <a href='?file=$file[id]&user=$user[id]'>Назад</a></div>";
require_once ("../../core/cuctema/foot.php");
}
}
if (isset($user) && $user['id']!=$ank['id'] && $user['balls']>=50 && $user['rating']>=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_rating` WHERE `id_user` = '$user[id]' AND `id_file` = '$file[id]'"), 0)==0 && $file['sk']==0)
{
if (isset($_GET['rating']) && $_GET['rating']=='down')
{
mysql_query("UPDATE `files` SET `rating` = '".($file['rating']-1)."' WHERE `id` = '$file[id]' LIMIT 1",$db);
mysql_query("INSERT INTO `files_rating` (`id_user`, `id_file`, `time`, `rating`) values('$user[id]', '$file[id]', '$time', '1')",$db);
msg ('Ваш отрицательный отзыв принят');
$file=mysql_fetch_assoc(mysql_query("SELECT * FROM `files` WHERE `id` = $file[id] LIMIT 1"));
}
elseif(isset($_GET['rating']) && $_GET['rating']=='up')
{
mysql_query("UPDATE `files` SET `rating` = '".($file['rating']+1)."' WHERE `id` = '$file[id]' LIMIT 1",$db);
mysql_query("INSERT INTO `files_rating` (`id_user`, `id_file`, `time`, `rating`) values('$user[id]', '$file[id]', '$time', '2')",$db);
msg ('Ваш положительный отзыв принят');
$file=mysql_fetch_assoc(mysql_query("SELECT * FROM `files` WHERE `id` = $file[id] LIMIT 1"));
}
}
if (isset($_POST['msg']) && isset($user) && $file['sk']==0)
{
$msg=$_POST['msg'];
if (isset($_POST['translit']) && $_POST['translit']==1)$msg=translit($msg);
$mat=antimat($msg);
if ($mat)$err[]='В тексте сообщения обнаружен мат: '.$mat;
if (strlen2($msg)>1024){$err='Сообщение слишком длинное';}
elseif (strlen2($msg)<2){$err='Короткое сообщение';}
elseif (mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$file[id]' AND `id_user` = '$user[id]' AND `msg` = '".mysql_escape_string($msg)."' LIMIT 1"),0)!=0){$err='Ваше сообщение повторяет предыдущее';}
elseif(!isset($err))
{
if(isset($_POST['reply']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '".intval($_POST['reply'])."'"),0)!=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_user` = '".intval($_POST['reply'])."' AND `id_file` = '$file[id]'"),0)!=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id` = '".intval($_POST['komm_reply'])."' AND `id_file` = '$file[id]'"),0)!=0)
{
$ru=mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '".intval($_POST['reply'])."'"));
if($ru['id']!=$user['id'])
{
$kr=mysql_fetch_array(mysql_query("SELECT * FROM `files_komm` WHERE `id_user` = '".intval($_POST['komm_reply'])."' AND `id_file` = '$file[id]'"));
$reply=1;
}
}
$q3=NULL;$qq=mysql_query("SELECT * FROM `files_komm` WHERE `id_file` = '$file[id]'");while($ppost=mysql_fetch_array($qq)){$a=get_user($ppost['id_user']);if($a){$array=explode(";", $q3);foreach ($array as $key => $value){if($value==$a['id'])$g=1;}if(!isset($g))$q3="".($q3!=NULL?"$q3;":null)."$a[id]";if(isset($g))unset($g);}}
$array=explode(";", $q3);foreach ($array as $key => $value){
$a=get_user($value);
if($value!=NULL && $a)
{
$k=mysql_fetch_array(mysql_query("SELECT * FROM `files_komm` WHERE `id_file` = '$file[id]' AND `id_user` = '$a[id]' ORDER BY `id` DESC LIMIT 1"));
if($a['id']!=$ank['id'] && $user['id']!=$a['id'])
{
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `jurnal` WHERE `id_kont` = '$a[id]' AND `type` = 'files' AND `id_object` = '$file[id]'"),0)==0)mysql_query("INSERT INTO `jurnal` (`id_user`, `id_kont`, `msg`, `time`, `type`, `id_object`) values('".$user['id']."', '$a[id]', '[url=/mysite/?name=$ank[nick]]$user[nick][/url] оставил комментарий к файлу [url=/mysite/files/?file=$file[id]&user=$user[id]]$file[name].$file[ras][/url]', '$time', 'files', '$file[id]')");
else mysql_query("UPDATE `jurnal` SET `time` = '$time', `read` = '0' WHERE `id_kont` = '$a[id]' AND `type` = 'files' AND `id_object` = '$file[id]'");
}
}
}
mysql_query("INSERT INTO `files_komm` (`id_file`, `id_user`, `time`, `msg`".(isset($reply)?", `reply`, `komm_reply`":null).") values('$file[id]', '$user[id]', '$time', '".my_esc($msg)."'".(isset($reply)?", '$ru[id]', '$kr[msg]'":null).")");
if($ank['id']!=$user['id'])
{
if($user['pol']==1)$pol='оставил'; else $pol='оставила';
mysql_query("INSERT INTO `jurnal` (`id_user`, `id_kont`, `msg`, `time`, `type`, `id_object`) values('".$user['id']."', '$ank[id]', '[url=/mysite/?name=$ank[nick]]$user[nick][/url] $pol комментарий в вашем [url=/mysite/files/?file=$file[id]&user=$ank[id]]файле[/url]', '$time', 'files', '$file[id]')");
}
//mysql_query("UPDATE `user` SET `balls` = '".($user['balls']+1)."' WHERE `id` = '$user[id]' LIMIT 1");
//msg('Сообщение успешно добавлено');
}
header("Location:?file=$file[id]&user=$ank[id]");
}
if (isset($_GET['delete_komm']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id`='".intval($_GET['delete_komm'])."' AND `id_file`='$file[id]' LIMIT 1"),0)!=0 && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && $file['sk']==0)
{
mysql_query("DELETE FROM `files_komm` WHERE `id`='".intval($_GET['delete_komm'])."' LIMIT 1");
//msg('Комментарий успешно удален');
header("Location:?file=$file[id]&user=$ank[id]");
}
if (isset($_GET['sk_komm']) && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id`='".intval($_GET['sk_komm'])."' AND `id_file`='$file[id]' LIMIT 1"),0)!=0 && $file['sk']==0)
{
$komm=mysql_fetch_array(mysql_query("SELECT * FROM `files_komm` WHERE `id`='".intval($_GET['sk_komm'])."' AND `id_file`='$file[id]' LIMIT 1"));
if($komm['sk']==1)$sk=0;else $sk=1;
mysql_query("UPDATE `files_komm` SET `sk` = '$sk', `sk_user` = '$user[id]' WHERE `id`='".intval($_GET['sk_komm'])."' LIMIT 1");
//msg('Комментарий успешно удален');
header("Location:?file=$file[id]&user=$ank[id]");
}
err();
if(isset($from) && $from=='shared_zone')
{
$aback='/shared_zone';
$uback='Зона обмена';
}
else
{
$aback="?dir=$dir[id]&user=$ank[id]";
$nback=htmlspecialchars($dir['name']);
}
//echo "<div class='foot'><img src='/style/icons/back.png'/> <a href='$aback'>$nback</a></div>";
if($file['sk_user']!=0 && $file['sk']==0&& ($user['group_access']==4 || $user['group_access']>=7))
{
$sku=get_user($file['sk_user']);
echo "<div class='menu123'><font color='green'>Файл разблокировал </font><b>";
echo "<a href='/user/?id=$sku[id]'>$sku[nick]</a> ".online($sku['id'])."";
echo "</b> <font color='blue'>(".vremja($file['sk_time']).")</font></div>";
}
if($file['sk']==1&& ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7))
{
echo "<div class='err'>";
$sku=get_user($file['sk_user']);
if($sku['pol']==0)$a='a';else $a=null;
echo "Файл заблокировал$a ";
echo "<a href='/user/?id=$sku[id]'>$sku[nick]</a> ".online($sku['id'])."";
echo " <font color='blue'>(".vremja($file['sk_time']).")</font><br/>Причина: ".output_text($file['sk_msg'])."";
if($user['group_access']==4 || $user['group_access']>=7)echo "<br/><a href='?file=$file[id]&user=$ank[id]&sk=1'><span style='color:green'>[разблокировать]</span></a>";
echo "</div>";
}
echo "<div class='main123 line_175'>n";
echo "".($file['ras']=='jar' && is_file(H."mysite/files/java_icons/$file[id].png")?"<img src='java_icons/$file[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$file[ras].png")?"<img src='file_icons/$file[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")." <b>".htmlspecialchars($file['name'])."</b><span style='color:grey;'>.$file[ras]</span>".($file['+18']==1?" <font color='red'>(+18)</font>":null)."";
if($file['sk']==0 && ($user['group_access']==4 || $user['group_access']>=7))echo " <a href='/mysite/files/?file=$file[id]&user=$ank[id]&sk=1'><span style='color:red;'>[заблокировать]</span></a>n";
echo "<br />n";
if ($webbrowser == true)
{
if($file['ras']=='mp3'){
echo "<div class='center'>n";
echo '<object id="audioplayer1" data="player.swf" type="application/x-shockwave-flash" width="80%" height="40"">';
echo '<param value="player.swf" name="movie"/><param value="loop=no&autostart=no&soundFile=/mysite/files/fd/'.$file['id'].'.dat" name="FlashVars"/>
<param value="high" name="quality"/><param value="false" name="menu"/>
<param value="mp3=/mysite/files/fd/'.$file['id'].'.dat">
<param value="transparent" name="wmode"/></object>';
echo "</div>n";
}
}
//echo '<object type="application/x-shockwave-flash" data="player.swf" width="200" height="20" id="dewplayer" name="dewplayer"><param name="movie" value="player.swf"><param name="flashvars" value="mp3=/mysite/files/fd/'.$file['id'].'.dat"><param name="wmode" value="transparent"></object>';
$id_file=$file['id'];
$ras=$file['ras'];
$filee=H."mysite/files/fd/$id_file.dat";
if(!is_file(H."mysite/files/java_icons/$file[id].png") && $ras=='jar')include_once H."mysite/files/screen_creators/java.php";
elseif(!is_file(H."mysite/files/screens/".$file['id']."_big.png") && ($ras=='jpg' || $ras=='jpeg' || $ras=='gif' || $ras=='png' || $ras=='bmp'))include_once H."mysite/files/screen_creators/images.php";
elseif(!is_file(H."mysite/files/screens/".$file['id']."_big.png") && ($ras=='3gp' || $ras=='avi' || $ras=='asf' || $ras=='mp4' || $ras=='mpe' || $ras=='mpeg' || $ras=='mpg' || $ras=='wmv'))include_once H."mysite/files/screen_creators/videos.php";
if(is_file(H."mysite/files/screens/".$file['id']."_big.png"))echo "<div class='center'><a href='screens/".$file['id']."_big.png'><img src='screens/".$file['id']."_big.png'/></a></div>";
if($file['desc']!=NULL)echo "<div class='left'>".output_text($file['desc'])."</div>";
echo "</div>n";
$diary_next = mysql_query("SELECT * FROM `files` WHERE `id` > '".$file['id']."' AND `id_user` = '".$ank['id']."' ORDER BY `id` ASC LIMIT 1");
$diary_last = mysql_query("SELECT * FROM `files` WHERE `id` < '".$file['id']."' AND `id_user` = '".$ank['id']."' ORDER BY `id` DESC LIMIT 1");
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` < '".$file['id']."' AND `id_user` = '".$ank['id']."' LIMIT 1"),0)!=0 || mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` > '".$file['id']."' AND `id_user` = '".$ank['id']."' LIMIT 1"),0)!=0)
echo "<div class='d1'><center>n";
while ($last = mysql_fetch_array($diary_last)){
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` < '".$file['id']."' AND `id_user` = '".$ank['id']."' LIMIT 1"),0)!=0)echo "<a href='?file=".$last['id']."&user=".$ank['id']."'>← Назад</a>n";
}
while ($next = mysql_fetch_array($diary_next)){
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` > '".$file['id']."' AND `id_user` = '".$ank['id']."' LIMIT 1"),0)!=0)echo " <a href='?file=".$next['id']."&user=".$ank['id']."'>Вперёд →</a>n";
}
echo "</center></div>n";
echo "<div class='main123_new line_175' style='background-color: #FFF8C4;'><img src='/t/default/all/shared_zone/download.png'/> <a href='?file=$file[id]&user=$ank[id]&download=1' title='Скачать файл'>Скачать ".($ras=='jar'?"JAR ":null)."(".size_file(filesize(H."mysite/files/fd/$file[id].dat")).")</a>".($ras=='jar'?" (<a href='?file=$file[id]&user=$ank[id]&download=1&java=jad' title='Скачать файл'>JAD</a>)":null)."</div>n";
echo "<div class='main123 line_175' style='color: grey'>";
echo "<b style='color: #666;'>Закачек :</b> $file[dl]<br/>";
echo "Файл добавлен: ";
echo " <a href='/mysite/?name=$ank[nick]'><b>$ank[nick]</b></a> ".online($ank['id'])." ";
if($dir['type']=='only_me')$dir_img='dir_locked.png';
elseif($dir['type']=='friends')$dir_img='dir_user.png';
elseif($dir['type']=='pass')$dir_img='dir_pass.png';
elseif($dir['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
//echo "<br/>Папка: <img src='/t/default/all/shared_zone/$dir_img'> ".htmlspecialchars($dir['name'])."";
echo "<br/>Папка: <a href='$aback'><img src='/t/default/all/shared_zone/$dir_img'> $nback</a>";
echo "<br />Рейтинг: ";
if (isset($user) && $user['id']!=$ank['id'] && $user['balls']>=50 && $user['rating']>=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_rating` WHERE `id_user` = '$user[id]' AND `id_file` = '$file[id]'"), 0)==0 && $file['sk']==0)echo "[<a href="?file=$file[id]&user=$ank[id]&rating=down" title="Отдать отрицательный голос">-</a>] ";
echo "$file[rating]";
if (isset($user) && $user['id']!=$ank['id'] && $user['balls']>=50 && $user['rating']>=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `files_rating` WHERE `id_user` = '$user[id]' AND `id_file` = '$file[id]'"), 0)==0 && $file['sk']==0)echo " [<a href="?file=$file[id]&user=$ank[id]&rating=up" title="Отдать положительный голос">+</a>]";
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `shared_zone` WHERE `id_my_file` = '$file[id]' AND `type` = 'file' LIMIT 1"),0)!=0)
{
echo "<br />n";
$fishz=mysql_fetch_assoc(mysql_query("SELECT * FROM `shared_zone` WHERE `id_my_file` = '$file[id]' AND `type` = 'file' LIMIT 1"));
$dir_situated=mysql_fetch_assoc(mysql_query("SELECT * FROM `shared_zone` WHERE `id` = '$fishz[mother]' LIMIT 1"));
$dir_situated2=mysql_fetch_assoc(mysql_query("SELECT * FROM `shared_zone` WHERE `id` = '$dir_situated[mother]' LIMIT 1"));
if($dir_situated['mother']!=0)echo "<font color='grey'>Зона Обмена:</font> <a href='/shared_zone/?dir=$dir_situated2[id]'>".(stripcslashes(htmlspecialchars($dir_situated2['name'])))."</a>/<a href='/shared_zone/?dir=$dir_situated[id]'>".htmlspecialchars($dir_situated['name'])."</a>n";
else echo "<font color='grey'>Зона обмена:</font> <a href='/shared_zone/?dir=".$dir_situated['id']."'>".(stripcslashes(htmlspecialchars($dir_situated['name'])))."</a>n";
//echo "<font color='green'>Категория ЗО:</font> <b><a href='/shared_zone/?dir=".$dir_situated['id']."'>".(stripcslashes(htmlspecialchars($dir_situated['name'])))."</a></b>n";
if($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7)echo " <a href='?file=$file[id]&user=$ank[id]&dzone=1'>[удалить]</a><br/>";
}
echo "</div>n";
if($file['sk']==0){
echo "<div class='back123 line_175'>";
if(($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && $file['sk']==0)
{
echo "<a href='?file=$file[id]&user=$ank[id]&edit_file'><img src='http://i.spaces.ru/edit.gif' /> Редактировать</a><br />n";
//echo "<img src='http://i.spaces.ru/cross_r.gif' alt='' class='icon'/>n";
echo "<a href='?file=$file[id]&user=$ank[id]&delete_file'><img src='http://i.spaces.ru/cross_r.gif' alt='' class='icon'/> Удалить</a><br />n";
if($ank['id']==$user['id'])echo "<a href='?file=$file[id]&user=$ank[id]&szone=1'><img src='http://i.spaces.ru/toZO.gif' alt='' class='icon'/> В зону</a><br />n";
}
echo "<a href='?file=$file[id]&user=$ank[id]&cur_file'><img src='http://i.spaces.ru/share.gif' /> Отправить другу</a>";
echo "</div>";
}
if(isset($user) && $user['id']==$ank['id'])
{
mysql_query("UPDATE `files` SET `a_time` = '$time' WHERE `id` = '$file[id]'");
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$file[id]' AND `id_user` != '$user[id]' AND `time` > '$file[a_time]'"),0)!=0)header("Location:?file=$file[id]&user=$ank[id]");
}
/*
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `jurnal` WHERE `id_kont` = '$user[id]' AND `cat` = 'files' AND `type` = 'komm' AND `id_object2` = '$file[id]' AND `read` = '0'"),0)!=0)
{
mysql_query("UPDATE `jurnal` SET `read` = '1', `last_time` = '$time' WHERE `id_kont` = '$user[id]' AND `cat` = 'files' AND `type` = 'komm' AND `id_object2` = '$file[id]' AND `read` = '0'");
header("Location:?user=$ank[id]&file=$file[id]");
}
*/
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$file[id]'$skp"),0);
echo "<div class='main123 line_175'>Комментариев: $k_post";
echo "</div>";
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
if ($k_post==0)
{
echo "<div class='main123'>n";
echo "Нет комментариевn";
echo " </div>n";
}
$q=mysql_query("SELECT * FROM `files_komm` WHERE `id_file` = '$file[id]'$skp ORDER BY `id` ASC LIMIT $start, $set[p_str]");
while ($post = mysql_fetch_assoc($q))
{
$ank2=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '$post[id_user]' LIMIT 1"));
echo " <div class='main123 line_175'>n";
echo "<a href='/mysite/?name=$ank2[nick]'>$ank2[nick]</a>".online($ank2['id'])."";
echo " (".vremja($post['time']).")<br/>";
if($post['sk']==1 && $post['sk_user']!=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '$post[sk_user]'"),0))
{
$sku=mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$post[sk_user]'"));
echo "<font color='red'>Скрыл".($sku['pol']==0?'a':null)." $sku[nick]</font><br/>";
}
if($post['reply']!=0 && mysql_result(mysql_query("SELECT COUNT(*) FROM `user` WHERE `id` = '$post[reply]'"),0))
{
$ru=mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$post[reply]'"));
echo "$ru[nick], ";
}
echo output_text($post['msg'])."<br />n";
if($file['sk']==0)
{
if(isset($user) && $ank2['id']!=$user['id'])echo " <a href='?file=$file[id]&user=$ank[id]&reply=$post[id]' title='Ответить на комментарий'>[ответить]</a>";
if($user['group_access']>=6)echo " <a href='?file=$file[id]&user=$ank[id]&edit_komm=$post[id]' title='Редактировать комментарий'>[ред]</a> ";
if($user['group_access']>=6)echo " <a href='?file=$file[id]&user=$ank[id]&sk_komm=$post[id]' title='".($post['sk']==1?"Показать":"Скрыть")." комментарий'>[".($post['sk']==1?"показать":"скрыть")."]</a>";
if($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7)echo " <a href='?file=$file[id]&user=$ank[id]&delete_komm=$post[id]' title='Удалить комментарий'>[удалить]</a>";
if(isset($user) && isset($cmpl_module))echo " <a href='/?cmpl=$post[id]&category=file&type=komm' title='Жалоба на комментарий'>[жалоба]</a>";
}
echo " </div>n";
}
if ($k_page>1)str("?file=$file[id]&user=$ank[id]&",$k_page,$page); // Вывод страниц
if (isset($user) && $file['sk']==0)
{
echo "<div class='menu123 line_175'><form method='post' name='msg' action='?file=$file[id]&user=$ank[id]&$passgen'>n";
echo "Сообщение:<br /><textarea name='msg'></textarea><br />";
if ($user['set_translit']==1)echo "<label><input type="checkbox" name="translit" value="1" /> Транслит</label><br />n";
echo "<input value="Отправить" type="submit" />n";
echo "</form></div>n";
}
echo "<div class='menu123'>← <a href='$aback'>$nback</a></div>";
require_once ("../../core/cuctema/foot.php");
}
////////
//////DIR>0
/////
////
///
//
//////
elseif(isset($_GET['dir']) && intval($_GET['dir'])!=NULL && intval($_GET['dir'])!=0)
{
$dir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '".intval($_GET['dir'])."' AND `cat` = 'files' AND `type2` = 'dir'"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` = '".intval($_GET['dir'])."' AND `cat` = 'files' AND `type2` = 'dir'"),0)==0)
{
$set['title']="Файлы | Ошибка";
require_once ("../../core/cuctema/head.php");
aut();
echo "<div class='err'>Папка ненайдена!</div>";
require_once ("../../core/cuctema/foot.php");
}
$ank=get_user($dir['id_user']);
if($dir['sk']==1 && $user['group_access']!=4 && $user['group_access']<7 && $ank['id']!=$user['id'])
{
$set['title']="Файлы | Ошибка";
require_once ("../../core/cuctema/head.php");
aut();
echo "<div class='err'>Папка заблокирована!</div>";
require_once ("../../core/cuctema/foot.php");
}
if($dir['id_dir']==0)
{
$dir2['id']=0;
$dir2['name']='Файлы';
$dir2['count']='/0/';
$dir2['type']='all';
}
else $dir2=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$dir[id_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
$set['title']="Файлы | $ank[nick]";
require_once ("../../core/cuctema/head.php");
aut();
if($dir['type']=='dir' && $dir['type_dir']!=0)$dirol=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$dir[type_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
if(isset($dirol))
{
if($dirol['type']=='only_me')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dirol['name'])."</b> доступна только автору!</div>";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='friends')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)!=0)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dirol['name'])."</b> доступна только друзьям автора!";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='pass')
{
if(isset($_POST['pass']) && $_POST['pass']==$dirol['pass'] && isset($user) || mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)!=0 && isset($user) || $ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0)mysql_query("INSERT INTO `enter` (`id_user`, `id_object`, `type`, `cat`) values ('$user[id]', '$dirol[id]', 'dostyp', 'file')");
$oki=1;
}
elseif((!isset($_POST['pass']) || isset($_POST['pass']) && $_POST['pass']!=$dirol['pass']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dirol[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'])
{
echo "<div class='err'>";
if(isset($_POST['pass']) && $_POST['pass']!=$dirol['pass'])echo "Пароль неправильный<br/>";
echo "Доступ к папке <b>".htmlspecialchars($dirol['name'])."</b> запрещен пользователем!<br> Чтобы пройти в папку пользователя, введите пароль:";
echo "<br><form action='' method="post"> <input type="text" name="pass"><br><input type="submit" name="go"></div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dirol['type']=='list')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)!=0)
{
$oki=1;
}
else
{
echo "<div class='err'>";
echo "Доступ к папке <b>".htmlspecialchars($dirol['name'])."</b> закрыт!</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
}
/*разделяем путь к файлу на id папок, которые ведут к файлу и выбираем папку, к которой мы не имеем доступа*/
if(!isset($oki))
{
$array=explode("/", $dir['counter']);
foreach ($array as $key => $value)
{
if($value!=NULL)
{
$d1=mysql_fetch_assoc(mysql_query("SELECT * FROM `files` WHERE `id` = '$value' AND `cat` = 'files' AND `type2` = 'dir'"));
if($d1['type']=='only_me' && $user['id']!=$ank['id'])$id_dir=$d1['id'];
elseif($d1['type']=='friends' && $user['id']!=$ank['id'] && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)==0)$id_dir=$d1['id'];
elseif($d1['type']=='pass' && (mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$d2[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'] || !isset($user)))$id_dir=$d1['id'];
if($d1['type']=='list' && $user['id']!=$ank['id'] && mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)==0)$id_dir=$d1['id'];
}
}
if($dir['type']=='only_me')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dir['name'])."</b> доступна только автору!</div>";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dir['type']=='friends')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$ank[id]') OR (`user` = '$ank[id]' AND `frend` = '$user[id]')"),0)!=0)
{
}
else
{
echo "<div class='err'>";
echo "Папка <b>".htmlspecialchars($dir['name'])."</b> доступна только друзьям автора!";
echo "</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dir['type']=='pass')
{
if(isset($_POST['pass']) && $_POST['pass']==$dir['pass'] && isset($user) || mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dir[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)!=0 && isset($user) || $ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7)
{
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dir[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0)mysql_query("INSERT INTO `enter` (`id_user`, `id_object`, `type`, `cat`) values ('$user[id]', '$dir[id]', 'dostyp', 'file')");
}
elseif((!isset($_POST['pass']) || isset($_POST['pass']) && $_POST['pass']!=$dir['pass']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `enter` WHERE `id_user` = '$user[id]' AND `id_object` = '$dir[id]' AND `type` = 'dostyp' AND `cat` = 'file' LIMIT 1"),0)==0 && $user['id']!=$ank['id'])
{
echo "<div class='err'>";
if(isset($_POST['pass']) && $_POST['pass']!=$dir['pass'])echo "Пароль неправильный<br/>";
echo "Доступ к папке <b>".htmlspecialchars($dir['name'])."</b> запрещен пользователем!<br> Чтобы пройти в папку пользователя, введите пароль:";
echo "<br><form action='' method="post"> <input type="text" name="pass"><br><input type="submit" name="go"></div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
elseif($dir['type']=='list')
{
if($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7 || mysql_result(mysql_query("SELECT COUNT(*) FROM `dl` WHERE `id_user` = '$ank[id]' AND `id_ank` = '$user[id]'"),0)!=0)
{
}
else
{
echo "<div class='err'>";
echo "Доступ к папке <b>".htmlspecialchars($dir['name'])."</b> закрыт!</div>";
require_once ("../../core/cuctema/foot.php");
exit;
}
}
}
$aback="?dir=$dir2[id]&user=$ank[id]";
$nback=htmlspecialchars($dir2['name']);
//echo "<div class='busi'><a href='$_SERVER[HTTP_HOST]'>$_SERVER[HTTP_HOST]</a>/<a href='/user/?id=$ank[id]'>$ank[nick]</a>/<a href='?user=$ank[id]'>Файлы</a></div>";
if(($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7) && isset($_GET['delete_dir']) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
if(isset($_GET['ok']))
{
$q=mysql_query("SELECT * FROM `files` WHERE `type2` = 'file' AND `cat` = 'files' AND `counter` like '%/$dir[id]/%' AND `id_user` = '$ank[id]'");
while($post=mysql_fetch_array($q))
{
mysql_query("DELETE FROM `files` WHERE `id` = '$post[id]'");
mysql_query("DELETE FROM `shared_zone` WHERE `id_my_file` = '$post[id]' AND `type` = 'file'");
if(is_file(H."mysite/files/screens/$post[id]_big.png"))unlink(H."mysite/files/screens/$post[id]_big.png");
if(is_file(H."mysite/files/screens/$post[id].png"))unlink(H."mysite/files/screens/$post[id].png");
if(is_file(H."mysite/files/java_icons/$post[id].png"))unlink(H."mysite/files/java_icons/$post[id].png");
if(is_file(H."mysite/files/fd/$post[id].dat"))unlink(H."mysite/files/fd/$post[id].dat");
mysql_query("DELETE FROM `files_rating` WHERE `id_file` = '$post[id]'");
mysql_query("DELETE FROM `files_komm` WHERE `id_file` = '$post[id]'");
}
mysql_query("DELETE FROM `files` WHERE `id` = '$dir[id]'");
$_SESSION['uf_dir_deleted']="$dir[name]";
header("Location:?user=$ank[id]&dir=$dir2[id]");
exit;
}
echo "<div class='err'>Вы действительно хотите удалить папку и её содержимое?!<br/><a href='?user=$ank[id]&dir=$dir[id]'>Нет</a> <a href='?user=$ank[id]&dir=$dir[id]&delete_dir=1&ok'>Да</a></div>";
require_once ("../../core/cuctema/foot.php");
}
if($ank['id']==$user['id'] && isset($user) && isset($_GET['add']) && $_GET['add']=='file' && isset($_FILES['file']) && $dir['sk']==0)
{
$name=esc(stripcslashes(htmlspecialchars($_FILES['file']['name'])));
$vneti = '-7emka_ru';
$name=ereg_replace('(#|?)', NULL, $name);
$ras=strtolower(eregi_replace('^.*.', NULL, $name));
$name=eregi_replace('.[^.]*$', NULL, $name); // имя файла без расширения
$size=filesize($_FILES['file']['tmp_name']);
if (isset($_POST['desc']))$desc=$_POST['desc'];
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id_dir` = '$dir[id]' AND `name` = '$name' AND `ras` = '$ras' AND `id_user` = '$ank[id]'"),0)!=0)
$err='Файл с таким названием уже есть в этой папке';
if (!isset($err))
{
if(isset($_POST['p18']) && $_POST['p18']==1)$p18=1;else $p18=0;
mysql_query("INSERT INTO `files` SET `name` = '$name$vneti', `desc` = '$desc', `time` = '$time', `time2` = '$time', `id_dir` = '$dir[id]', `counter` = '$dir[counter]$dir[id]/', `type2` = 'file', `cat` = 'files', `id_user` = '$user[id]', `ras` = '$ras', `+18` = '$p18'");
$id_file=mysql_insert_id();if (!@copy($_FILES['file']['tmp_name'], H."mysite/files/fd/$id_file.dat"))
{
mysql_query("DELETE FROM `files` WHERE `id` = '$id_file' LIMIT 1");
$err[]='Ошибка при выгрузке';
}
else {
$filee=H."mysite/files/fd/$id_file.dat";
if($ras=='jar')include_once H."mysite/files/screen_creators/java.php";
elseif($ras=='3gp' || $ras=='avi' || $ras=='asf' || $ras=='mp4' || $ras=='mpe' || $ras=='mpeg' || $ras=='mpg' || $ras=='wmv')include_once H."mysite/files/screen_creators/videos.php";
elseif($ras=='jpg' || $ras=='jpeg' || $ras=='gif' || $ras=='png' || $ras=='bmp')include_once H."mysite/files/screen_creators/images.php";
$q = mysql_query("SELECT * FROM `readers` WHERE `user` = '$user[id]' AND `file` = '1' AND `i` = '1'");
while ($f = mysql_fetch_array($q))
{
$a = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$f[reader]' LIMIT 1"));
mysql_query("INSERT INTO `lenta` (`id_user`, `id_kont`, `msg`, `time`, `type`, `id_object`, `id_object2`) values('$user[id]', '$a[id]', '$name.$ras', '$time', 'file', '$id_file', '$dir[id]')");
}
header("Location:?file=$id_file&user=$ank[id]");
}
}
}
if(isset($_GET['add']) && $_GET['add']=='file' && $ank['id']==$user['id'] && !isset($clad) && $dir['sk']==0)
{
err();
if($dir['type']=='only_me')$dir_img='dir_locked.png';
elseif($dir['type']=='friends')$dir_img='dir_user.png';
elseif($dir['type']=='pass')$dir_img='dir_pass.png';
elseif($dir['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
echo "<div class='menu123'>Папка: <a href='?user=$ank[id]&dir=$dir[id]'><b><img src='/t/default/all/shared_zone/$dir_img'/> ".htmlspecialchars($dir['name'])."</b></a></div>";
echo "<div class='main123 line_175'><form method="post" enctype="multipart/form-data" action='?user=$ank[id]&dir=$dir[id]&add=file&CK=0'>";
echo "Выберите файл *<br />n";
echo "<input name='file' type='file'/><br />n";
echo "<input type='checkbox' name='p18' value='1'> Только для взрослых <font color='red'>(+18)</font><br/>";
echo "Описание:<br />n";
echo "<textarea name='desc'></textarea><br />n";
echo "<input class="submit" type="submit" value="Выгрузить" />n";
echo "</form></div>";
echo "<div class='back123 line_175'><b>*Размер файла должен быть меньше 10 MB</b>";
echo'<br/><span style="font-size:small;color:blue">Загрузка может длиться несколько минут. Это зависит от размера файла и скорости передачи данных на вашем устройстве.</span><br/></div><div class="msg"><span style="color: #218094">Если у вас не видно выше кнопки выбора файла, значит ваш браузер не поддерживает загрузку файлов!</span></div>';
require_once ("../../core/cuctema/foot.php");
}
if(($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7) && isset($_GET['edit_dir']) && isset($_POST['name']) && isset($_POST['pass']) && isset($_POST['type']) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
$type=$_POST['type'];
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id` = '$dir[type_dir]' AND `type` != 'all'"),0)!=0 && $type=='dir')$type='all';
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])),1);
if (strlen2($name)<1)$err='Короткое название';
if (strlen2($name)>32)$err='Название не должно быть длиннее 32-х символов';
$name=my_esc($name);
$pass=$_POST['pass'];
if($type=='pass')
{
if (strlen2($pass)<1)
{
$err='Слишком короткий пароль!';
}
if (strlen2($pass)>32)
{
$err='Длина пароля вревышает 32 символа';
}
}
else
{
$pass=NULL;
}
if (!isset($err))
{
mysql_query("UPDATE `files` SET `name` = '$name', `pass` = '$pass', `type` = '$type'".($type=='dir' && $dir['type']!=$type?"".($dir2['type']=='dir'?", `type_dir` = '$dir2[type_dir]'":", `type_dir` = '$dir2[id]'")."":null)." WHERE `id` = '$dir[id]'");
if($type=='all' && $dir['type']!='all')mysql_query("UPDATE `files` SET `type` = 'all' WHERE `type_dir` = '$dir[id]' AND `type2` = 'dir' AND `cat` = 'files' AND `type` = 'dir'");
elseif($type!='all')mysql_query("UPDATE `files` SET `type` = 'dir', `type_dir` = '$dir[id]' WHERE `type2` = 'dir' AND `cat` = 'files' AND (`type` = 'all' OR `type_dir` = '$dir[dir_type]' AND `type` = 'dir') AND `counter` like '%/$dir[id]/%'");
msg("Папка <b>".htmlspecialchars($_POST['name'])."</b> успешно отредактирована");
$clad=1;
$dir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '".intval($_GET['dir'])."' AND `cat` = 'files' AND `type2` = 'dir'"));
}
}
if(isset($_GET['edit_dir']) && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && !isset($clad) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
err();
if($dir['type']=='only_me')$dir_img='dir_locked.png';
elseif($dir['type']=='friends')$dir_img='dir_user.png';
elseif($dir['type']=='pass')$dir_img='dir_pass.png';
elseif($dir['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
echo "<div class='menu123'>Папка: <a href='?user=$ank[id]&dir=$dir[id]'><b><img src='/t/default/all/shared_zone/$dir_img'/> ".htmlspecialchars($dir['name'])."</b></a></div>";
echo "<div class='main123 line_175'><form method='post' action='?user=$ank[id]&dir=$dir[id]&edit_dir' style='menu'>Название:<br/><input type='text' name='name' value='".htmlspecialchars($dir['name'])."'".($dir['sk']==1?" disabled='disabled' ":null)."><br/>";
echo "Давать доступ:<br/>";
$type_dir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$dir[type_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
if($type_dir['type']=='only_me')$dir_text='только мне';
elseif($type_dir['type']=='friends')$dir_text='только друзям';
elseif($type_dir['type']=='pass')$dir_text='только по паролю';
elseif($type_dir['type']=='list')$dir_text='обитателям из <a href="/settings/?dl">списка доступа</a>';
echo "<label><input type='radio'".($dir['type']=='all' || $dir['type']=='dir'?" checked='checked'":NULL)." name="type" value='".($dir2['type']=='all'?"all":"dir")."' /> ".($dir2['type']=='all'?"Всем":"Tем же, кому и к папке <b>".htmlspecialchars($type_dir['name'])."</b> - $dir_text")."</label><br />n";
echo "<label><input type="radio"".($dir['type']=='only_me'?" checked='checked'":NULL)." name="type" value="only_me" /> Только мне</label><br />n";
echo "<label><input type="radio"".($dir['type']=='friends'?" checked='checked'":NULL)." name="type" value="friends" /> Только друзям</label><br />n";
echo "<label><input type="radio"".($dir['type']=='pass'?" checked='checked'":NULL)." name="type" value="pass" /> Только по паролю n";
echo "<input name='pass' size='16' maxlength='16' type='text' value='".htmlspecialchars($dir['pass'])."'/></label><br/>n";
echo "<label><input type="radio"".($dir['type']=='list'?" checked='checked'":NULL)." name="type" value="list" /> Обитателям из <a href='/settings/?dl'>списка доступа</a></label><br />n";
echo "<input type='submit' name='ok' value='Сохранить'></form></div>";
echo "<div class='menu123 line_175'><img src='/style/icons/delete.png'/> <a href='?user=$ank[id]&dir=$dir[id]&delete_dir'>Удалить папку</a></div>";
require_once ("../../core/cuctema/foot.php");
}
if(($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7) && isset($_GET['add']) && $_GET['add']=='dir' && isset($_POST['name']) && isset($_POST['pass']) && isset($_POST['type']) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
$type=$_POST['type'];
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])),1);
if (strlen2($name)<1)$err='Короткое название';
if (strlen2($name)>32)$err='Название не должно быть длиннее 32-х символов';
$name=my_esc($name);
$pass=$_POST['pass'];
if($type=='pass')
{
if (strlen2($pass)<1)
{
$err='Слишком короткий пароль!';
}
if (strlen2($pass)>32)
{
$err='Длина пароля вревышает 32 символа';
}
}
else
{
$pass=NULL;
}
if (!isset($err))
{
mysql_query("INSERT INTO `files` SET `name` = '$name', `pass` = '$pass', `type` = '$type', `time` = '$time', `time2` = '$time', `id_dir` = '$dir[id]', `counter` = '$dir[counter]$dir[id]/', `type2` = 'dir', `cat` = 'files', `id_user` = '$user[id]'".($type=='dir'?"".($dir['type']=='dir'?", `type_dir` = '$dir[type_dir]'":", `type_dir` = '$dir[id]'")."":null)."");
msg("Папка <b>".htmlspecialchars($_POST['name'])."</b> успешно создана");
$clad=1;
}
}
if(isset($_GET['add']) && $_GET['add']=='dir' && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && !isset($clad) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
err();
if($dir['type']=='only_me')$dir_img='dir_locked.png';
elseif($dir['type']=='friends')$dir_img='dir_user.png';
elseif($dir['type']=='pass')$dir_img='dir_pass.png';
elseif($dir['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
echo "<div class='menu123'>Папка: <a href='?user=$ank[id]&dir=$dir[id]'><b><img src='/t/default/all/shared_zone/$dir_img'/> ".htmlspecialchars($dir['name'])."</b></a></div>";
echo "<form method='post' action='?user=$ank[id]&dir=$dir[id]&add=dir' style='menu'><div class='main123 line_175'>Название:<br/><input type='text' name='name'><br/>";
echo "Давать доступ:<br/>";
if($dir['type']=='dir')$type_dir=mysql_fetch_array(mysql_query("SELECT * FROM `files` WHERE `id` = '$dir[type_dir]' AND `cat` = 'files' AND `type2` = 'dir'"));
else $type_dir=$dir;
if($type_dir['type']=='only_me')$dir_text='только мне';
elseif($type_dir['type']=='friends')$dir_text='только друзям';
elseif($type_dir['type']=='pass')$dir_text='только по паролю';
elseif($type_dir['type']=='list')$dir_text='обитателям из <a href="/settings/?dl">списка доступа</a>';
echo "<label><input type='radio'".(isset($_POST['type']) && ($_POST['type']=='all' || $_POST['type']=='dir') || !isset($_POST['type'])?" checked='checked'":null)." name="type" value='".($dir['type']=='all'?"all":"dir")."' /> ".($dir['type']=='all'?"Всем":"Tем же, кому и к папке <b>".htmlspecialchars($type_dir['name'])."</b> - $dir_text")."</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='only_me'?" checked='checked'":NULL)." name="type" value="only_me" /> Только мне</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='friends'?" checked='checked'":NULL)." name="type" value="friends" /> Только друзям</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='pass'?" checked='checked'":NULL)." name="type" value="pass" /> Только по паролю n";
echo "<input name='pass' size='16' maxlength='16' type='text' value='".(isset($_POST['pass'])?$_POST['pass']:null)."'/></label><br/>n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='list'?" checked='checked'":NULL)." name="type" value="list" /> Обитателям из <a href='/settings/?dl'>списка доступа</a></label><br />n";
echo "<input type='submit' name='ok' value='Добавить'></div></form>";
require_once ("../../core/cuctema/foot.php");
}
$set['title']="Файлы | $ank[nick]";
require_once ("../../core/cuctema/head.php");
if(isset($_SESSION['uf_dir_deleted']))
{
msg("Папка <b>".htmlspecialchars($_SESSION['uf_dir_deleted'])."</b> успешно удалена");
unset($_SESSION['uf_dir_deleted']);
}
if($dir['type']=='only_me')$dir_img='dir_locked.png';
elseif($dir['type']=='friends')$dir_img='dir_user.png';
elseif($dir['type']=='pass')$dir_img='dir_pass.png';
elseif($dir['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `cat` = 'files' AND `id_user` = '$ank[id]' AND `id_dir` = '0'".($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7?null:" AND `sk` = '0'").""),0);
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
if($ank['id']==$user['id'])include_once 'checkeraksmultiselectfdi.php';
if(isset($mrf) && $ank['id']==$user['id'])
{
echo "<div class='back123'>Выберите файлы и нажмите ".($count!=0?"<a href='?dir=$dir[id]&user=$ank[id]&page=$page&mok'>":null)."Переместить сюда".($count!=0?"</a>":null)."</div>";
}
else
{
echo "<div class='main123 line_175'><img src='/t/default/all/shared_zone/$dir_img'/> <b>".htmlspecialchars($dir['name'])."</b></div>";
}
if ($k_post==0)
{
echo " <div class='main123 line_175'>n";
echo "Пустоn";
echo " </div>n";
}
$q=mysql_query("SELECT * FROM `files` WHERE `cat` = 'files' AND `id_user` = '$ank[id]' AND `id_dir` = '$dir[id]'".($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7?null:" AND `sk` = '0'")." ORDER BY `type2` DESC, `time` ASC LIMIT $start, $set[p_str]");
while($post=mysql_fetch_array($q))
{
echo "<div class='main123 line_175' style='color: gray;'>";
if (isset($mrf) && $post['type2']=='file')
{
if(isset($_SESSION['rpfs']))
{
$array=explode(";", $_SESSION['rpfs']);
foreach ($array as $key => $value)
{
if($post['id']==$value && $value!=NULL)$ych=1;
}
}
echo "<input type='checkbox' name='mrf_$post[id]' value='1' ".(isset($ych)?" checked='checked'":null)."/> ";
if(isset($ych))unset($ych);
}
if($post['sk']==1)$dir_img='dir_locked.png';
elseif($post['type']=='only_me')$dir_img='dir_locked.png';
elseif($post['type']=='friends')$dir_img='dir_user.png';
elseif($post['type']=='pass')$dir_img='dir_pass.png';
elseif($post['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
if(is_file(H."mysite/files/screens/$post[id].png"))echo "<a href='?file=$post[id]&user=$ank[id]'><img src='screens/$post[id].png'/></a><br/>";
echo "<a href='?".($post['type2']=='dir'?"dir":"file")."=$post[id]&user=$ank[id]'>".($post['type2']=='dir'?"<img src='/t/default/all/shared_zone/$dir_img'>":"".($post['ras']=='jar' && is_file(H."mysite/files/java_icons/$post[id].png")?"<img src='java_icons/$post[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$post[ras].png")?"<img src='file_icons/$post[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")."")." ".htmlspecialchars($post['name'])."".($post['type2']=='file'?".".$post['ras']."".($post['sk']==1?" <font color='red'>(заблокирован)</font>":null)."":null)."</a>".($post['type2']=='dir'?" (".mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `type2` = 'file' AND `cat` = 'files' AND `counter` like '%/$post[id]/%'"),0).")":null)."";
$count_komm=mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$post[id]'$skp"),0);
if($post['type2']=='file')echo "<br/> <img src='http://i.spaces.ru/dload.gif'/> $post[dl] <img src='http://i.spaces.ru/comm_num.gif'/> $count_komm";
//echo "<br/>Kомментариев: $count_komm";
echo "</div>";
}
if ($k_page>1)str("?dir=$dir[id]&user=$ank[id]&",$k_page,$page); // Вывод страниц
if($ank['id']==$user['id'])include_once 'checkeraksmultiselectfdh.php';
if(($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && ($dir['sk']==0 || $dir['sk']==1 && ($user['group_access']==4 || $user['group_access']>=7)))
{
echo "<div class='menu123 line_175'>".($ank['id']==$user['id']?" <a href='?user=$ank[id]&dir=$dir[id]&add=file&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/icon_add_file.gif'/> Добавть файл</a><br />":null)." <a href='?user=$ank[id]&dir=$dir[id]&add=dir&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/icon_new_dir.gif'/> Добавить папку</a>";
echo "<br/><a href='?user=$ank[id]&dir=$dir[id]&edit_dir=1&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/edit.gif'/> Редактировать папку</a>";
if($ank['id']==$user['id'])echo "<br/><a href='?user=$ank[id]&dir=$dir[id]&activate_multichecker=1&CK=".rand(1000000,9999999)."&page=$page'><img src='http://i.spaces.ru/move.png'/> Выбрать файлы</a>";
echo "</div>";
}
require_once ("../../core/cuctema/foot.php");
}
/////DIR=0
/////kornevaya direktoriya
if(isset($_GET['user']) && $_GET['user']!=NULL)$ank=get_user(intval($_GET['user']));
else $ank=get_user($user['id']);
if(!$ank || $ank['id']==0)
{
$set['title']="Файлы | Ошибка";
require_once ("../../core/cuctema/head.php");
aut();
echo "<div class='err'>Пользователь ненайден!</div>";
require_once ("../../core/cuctema/foot.php");
}
$set['title']="Файлы | $ank[nick]";
require_once ("../../core/cuctema/head.php");
aut();
$aback="/mysite/?name=$ank[nick]";
$nback="$ank[nick]";
//echo "<div class='busi'><a href='$_SERVER[HTTP_HOST]'>$_SERVER[HTTP_HOST]</a>/<a href='/user/?id=$ank[id]'>$ank[nick]</a>/<a href='?user=$ank[id]'>Файлы</a></div>";
if($ank['id']==$user['id'] && isset($user) && isset($_GET['add']) && $_GET['add']=='file' && isset($_FILES['file']))
{
$name=esc(stripcslashes(htmlspecialchars($_FILES['file']['name'])));
$vneti = '-7emka_ru';
$name=ereg_replace('(#|?)', NULL, $name);
$ras=strtolower(eregi_replace('^.*.', NULL, $name));
$name=eregi_replace('.[^.]*$', NULL, $name); // имя файла без расширения
$size=filesize($_FILES['file']['tmp_name']);
if (isset($_POST['desc']))$desc=$_POST['desc'];
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `id_dir` = '0' AND `name` = '$name' AND `ras` = '$ras' AND `id_user` = '$ank[id]'"),0)!=0)
$err='Файл с таким названием уже есть в этой папке';
if (!isset($err))
{
if(isset($_POST['p18']) && $_POST['p18']==1)$p18=1;else $p18=0;
mysql_query("INSERT INTO `files` SET `name` = '$name$vneti', `desc` = '$desc', `time` = '$time', `time2` = '$time', `id_dir` = '0', `counter` = '/0/', `type2` = 'file', `cat` = 'files', `id_user` = '$user[id]', `ras` = '$ras', `+18` = '$p18'");
$id_file=mysql_insert_id();if (!@copy($_FILES['file']['tmp_name'], H."mysite/files/fd/$id_file.dat"))
{
mysql_query("DELETE FROM `files` WHERE `id` = '$id_file' LIMIT 1");
$err[]='Ошибка при выгрузке';
}
else {
$filee=H."mysite/files/fd/$id_file.dat";
if($ras=='jar')include_once H."mysite/files/screen_creators/java.php";
elseif($ras=='jpg' || $ras=='jpeg' || $ras=='gif' || $ras=='png' || $ras=='bmp')include_once H."mysite/files/screen_creators/images.php";
elseif($ras=='3gp' || $ras=='avi' || $ras=='asf' || $ras=='mp4' || $ras=='mpe' || $ras=='mpeg' || $ras=='mpg' || $ras=='wmv')include_once H."mysite/files/screen_creators/videos.php";
$q = mysql_query("SELECT * FROM `readers` WHERE `user` = '$user[id]' AND `file` = '1' AND `i` = '1'");
while ($f = mysql_fetch_array($q))
{
$a = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '$f[reader]' LIMIT 1"));
mysql_query("INSERT INTO `lenta` (`id_user`, `id_kont`, `msg`, `time`, `type`, `id_object`, `id_object2`) values('$user[id]', '$a[id]', '$name.$ras', '$time', 'file', '$id_file', '$dir[id]')");
}
header("Location:?file=$id_file&user=$ank[id]");
}
}
}
if(isset($_GET['add']) && $_GET['add']=='file' && $ank['id']==$user['id'] && !isset($clad))
{
err();
echo "<div class='main123 line_175'><form method="post" enctype="multipart/form-data" action='?user=$ank[id]&add=file&CK=0'>";
echo "Выберите файл *<br />n";
echo "<input name='file' type='file'/><br />n";
echo "<input type='checkbox' name='p18' value='1'> Только для взрослых <font color='red'>(+18)</font><br/>";
echo "Описание:<br />n";
echo "<textarea name='desc'></textarea><br />n";
echo "<input class="submit" type="submit" value="Выгрузить" /><br />n";
echo "</form></div>";
echo "<div class='back123 line_175'><b>*Размер файла должен быть меньше 10 MB</b>";
echo'<br/><span style="font-size:small;color:blue">Загрузка может длиться несколько минут. Это зависит от размера файла и скорости передачи данных на вашем устройстве.</span><br/></div><div class="msg"><span style="color: #218094">Если у вас не видно выше кнопки выбора файла, значит ваш браузер не поддерживает загрузку файлов!</span></div>';
require_once ("../../core/cuctema/foot.php");
}
if(($ank['id']==$user['id'] && isset($user) || $user['group_access']==4 || $user['group_access']>=7) && isset($_GET['add']) && $_GET['add']=='dir' && isset($_POST['name']) && isset($_POST['pass']) && isset($_POST['type']))
{
$type=$_POST['type'];
$name=esc(stripcslashes(htmlspecialchars($_POST['name'])),1);
if (strlen2($name)<1)$err='Короткое название';
if (strlen2($name)>32)$err='Название не должно быть длиннее 32-х символов';
$name=my_esc($name);
$pass=$_POST['pass'];
if($type=='pass')
{
if (strlen2($pass)<1)
{
$err='Слишком короткий пароль!';
}
if (strlen2($pass)>32)
{
$err='Длина пароля вревышает 32 символа';
}
}
else
{
$pass=NULL;
}
if (!isset($err))
{
mysql_query("INSERT INTO `files` SET `name` = '$name', `pass` = '$pass', `type` = '$type', `time` = '$time', `time2` = '$time', `id_dir` = '0', `counter` = '/0/', `type2` = 'dir', `cat` = 'files', `id_user` = '$user[id]'");
$_SESSION['dir_act_add']="$post[name]";
header("Location:?user=$ank[id]&dir=$dir2[id]");
//msg("Папка <b>".htmlspecialchars($_POST['name'])."</b> успешно создана");
$clad=1;
}
}
if(isset($_GET['add']) && $_GET['add']=='dir' && ($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7) && !isset($clad))
{
err();
echo "<form method='post' action='?user=$ank[id]&add=dir&CK=0' style='menu'><div class='main123 line_175'>Название:<br/><input type='text' name='name'><br/>";
echo "Давать доступ:<br/>";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='all' || !isset($_POST['type'])?" checked='checked'":NULL)." name="type" value="all" /> Всем</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='only_me'?" checked='checked'":NULL)." name="type" value="only_me" /> Только мне</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='friends'?" checked='checked'":NULL)." name="type" value="friends" /> Только друзям</label><br />n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='pass'?" checked='checked'":NULL)." name="type" value="pass" /> Только по паролю n";
echo "<input name='pass' size='16' maxlength='16' type='text' value='".(isset($_POST['pass'])?$_POST['pass']:null)."'/></label><br/>n";
echo "<label><input type="radio"".(isset($_POST['type']) && $_POST['type']=='list'?" checked='checked'":NULL)." name="type" value="list" /> Обитателям из <a href='/settings/?dl'>списка доступа</a></label><br />n";
echo "<input type='submit' name='ok' value='Добавить'></div></form>";
require_once ("../../core/cuctema/foot.php");
}
if(isset($_SESSION['dir_act_add']))
{
msg("Папка <b>".htmlspecialchars($_SESSION['dir_act_add'])."</b> успешно создана");
unset($_SESSION['dir_act_add']);
}
if(isset($_SESSION['uf_dir_deleted']))
{
msg("Папка <b>".htmlspecialchars($_SESSION['uf_dir_deleted'])."</b> успешно удалена");
unset($_SESSION['uf_dir_deleted']);
}
$dir['id']=0;
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `cat` = 'files' AND `id_user` = '$ank[id]' AND `id_dir` = '0'".($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7?null:" AND `sk` = '0'").""),0);
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
if($ank['id']==$user['id'])include_once 'checkeraksmultiselectfdi.php';
if(isset($mrf) && $ank['id']==$user['id'])
{
echo "<div class='back123'>Выберите файлы и нажмите ".($count!=0?"<a href='?dir=$dir[id]&user=$ank[id]&page=$page&mok'>":null)."Переместить сюда".($count!=0?"</a>":null)."</div>";
}
else
{
}
if ($k_post==0)
{
echo "<div class='main123 line_175'>n";
echo "Файлов еще не загруженоn";
echo " </div>n";
}
$q=mysql_query("SELECT * FROM `files` WHERE `cat` = 'files' AND `id_user` = '$ank[id]' AND `id_dir` = '0'".($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7?null:" AND `sk` = '0'")." ORDER BY `type2` DESC, `time` ASC LIMIT $start, $set[p_str]");
while($post=mysql_fetch_array($q))
{
echo "<div class='main123 line_175' style='color: grey'>n";
if (isset($mrf) && $post['type2']=='file')
{
if(isset($_SESSION['rpfs']))
{
$array=explode(";", $_SESSION['rpfs']);
foreach ($array as $key => $value)
{
if($post['id']==$value && $value!=NULL)$ych=1;
}
}
echo "<input type='checkbox' name='mrf_$post[id]' value='1' ".(isset($ych)?" checked='checked'":null)."/> ";
if(isset($ych))unset($ych);
}
if($post['sk']==1)$dir_img='dir_locked.png';
elseif($post['type']=='only_me')$dir_img='dir_locked.png';
elseif($post['type']=='friends')$dir_img='dir_user.png';
elseif($post['type']=='pass')$dir_img='dir_pass.png';
elseif($post['type']=='list')$dir_img='dir_locked.png';
else $dir_img='dir.png';
if(is_file(H."mysite/files/screens/$post[id].png"))echo "<a href='?file=$post[id]&user=$ank[id]'><img src='screens/$post[id].png'/></a><br/>";
echo "<a href='?".($post['type2']=='dir'?"dir":"file")."=$post[id]&user=$ank[id]'>".($post['type2']=='dir'?"<img src='/t/default/all/shared_zone/$dir_img'>":"".($post['ras']=='jar' && is_file(H."mysite/files/java_icons/$post[id].png")?"<img src='java_icons/$post[id].png' height='16'/>":"".(is_file(H."mysite/files/file_icons/$post[ras].png")?"<img src='file_icons/$post[ras].png'/>":"<img src='file_icons/unknown_file.png'/>")."")."")." ".htmlspecialchars($post['name'])."".($post['type2']=='file'?".".$post['ras']."".($post['sk']==1?" <font color='red'>(заблокирован)</font>":null)."":null)."</a>".($post['type2']=='dir'?" (".mysql_result(mysql_query("SELECT COUNT(*) FROM `files` WHERE `type2` = 'file' AND `cat` = 'files' AND `counter` like '%/$post[id]/%'"),0).")":null)."";
$count_komm=mysql_result(mysql_query("SELECT COUNT(*) FROM `files_komm` WHERE `id_file` = '$post[id]'$skp"),0);
if($post['type2']=='file')echo "<br/> <img src='http://i.spaces.ru/dload.gif'/> $post[dl] <img src='http://i.spaces.ru/comm_num.gif'/> $count_komm";
echo "</div>n";
}
if ($k_page>1)str("?user=$ank[id]&",$k_page,$page); // Вывод страниц
if($ank['id']==$user['id'])include_once 'checkeraksmultiselectfdh.php';
if($ank['id']==$user['id'] || $user['group_access']==4 || $user['group_access']>=7)
{
echo "<div class='menu123 line_175'>".($ank['id']==$user['id']?" <a href='?user=$ank[id]&add=file&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/icon_add_file.gif'/> Добавить файл</a> <br />":null)." <a href='?user=$ank[id]&add=dir&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/icon_new_dir.gif'/> Добавить папку</a>";
if($ank['id']==$user['id'])echo "<br/><a href='?user=$ank[id]&activate_multichecker=1&CK=".rand(1000000,9999999)."'><img src='http://i.spaces.ru/move.png'/> Выбрать файлы</a>";
echo "</div>";
}
require_once ("../../core/cuctema/foot.php");
?>