Файл: mysite/my_games/index.php
Строк: 45
<?require_once ("../../core/cuctema/core.php");
only_reg('/reg.php');
if(isset($_GET['admin']) && isset($user) && $user['group_access']>=15)include_once 'inc/admin.php';
if(isset($_GET['play_game']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `user_games` WHERE `id` = '".intval($_GET['play_game'])."' AND `id_user` = '$user[id]'"),0)!=0)
{
$pg=mysql_fetch_array(mysql_query("SELECT * FROM `user_games` WHERE `id` = '".intval($_GET['play_game'])."'"));
mysql_query("UPDATE `user_games` SET `last_time` = '$time' WHERE `id` = '$pg[id]'");
$game=mysql_fetch_array(mysql_query("SELECT * FROM `games` WHERE `id` = '$pg[id_game]'"));
$link=$game['link'];
header("Location:$link");
exit;
}
if(isset($_GET['add_game']))
{
$set['title']="Мои игры - Добавить игру";
require_once ("../../core/cuctema/head.php");
aut();
if(isset($_GET['select_game']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `games` WHERE `id` = '".intval($_GET['select_game'])."'"),0)!=0)
{
$ng=mysql_fetch_array(mysql_query("SELECT * FROM `games` WHERE `id` = '".intval($_GET['select_game'])."'"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `user_games` WHERE `id_game` = '".intval($_GET['select_game'])."' AND `id_user` = '$user[id]'"),0)!=0)echo "<div class='err'>Игра <b>".htmlspecialchars($ng['name'])."</b> уже находится в вашем списке игор.</div>";
else
{
mysql_query("INSERT INTO `user_games` SET `id_game` = '$ng[id]', `id_user` = '$user[id]', `last_time` = '$time'");
msg("Игра <b>".htmlspecialchars($ng['name'])."</b> успешно добавлена в ваш список игор.");
}
}
$q=mysql_query("SELECT * FROM `games` ORDER BY `id` DESC");
if(mysql_num_rows($q)==0)echo "<div class='main123'>Список пуст</div>";
while($post=mysql_fetch_array($q))
{
echo "<div class='main123'>";
echo "<img src='".htmlspecialchars($post['img'])."' height='16'> ".(mysql_result(mysql_query("SELECT COUNT(*) FROM `user_games` WHERE `id_game` = '$post[id]' AND `id_user` = '$user[id]'"),0)==0?"<a href='?add_game=1&select_game=$post[id]'>":null)."".htmlspecialchars($post['name'])."".(mysql_result(mysql_query("SELECT COUNT(*) FROM `user_games` WHERE `id_game` = '$post[id]' AND `id_user` = '$user[id]'"),0)==0?"</a>":null)."";
echo "</div>";
}
echo "<div class='menu123'>» <a href='?'>назад</a></div>";
require_once ("../../core/cuctema/foot.php");
}
$set['title']="Мои игры";
require_once ("../../core/cuctema/head.php");
aut();
if(isset($_GET['delete_game']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `user_games` WHERE `id` = '".intval($_GET['delete_game'])."' AND `id_user` = '$user[id]'"),0)!=0)
{
mysql_query("DELETE FROM `user_games` WHERE `id` = '".intval($_GET['delete_game'])."' AND `id_user` = '$user[id]'");
msg("Игра успешно удалена");
}
$q=mysql_query("SELECT * FROM `user_games` WHERE `id_user` = '$user[id]' ORDER BY `last_time` DESC");
if(mysql_num_rows($q)==0)echo "<div class='main123'>Список пуст</div>";
while($post=mysql_fetch_array($q))
{
$game=mysql_fetch_array(mysql_query("SELECT * FROM `games` WHERE `id` = '$post[id_game]'"));
echo "<div class='main123'>";
echo "<img src='".htmlspecialchars($game['img'])."' height='16'> <span style='float:right'><a href='?delete_game=$post[id]'><span style='color:red'>x</span></a></span><a href='?play_game=$post[id]'>".htmlspecialchars($game['name'])."</a>";
echo "</div>";
}
echo "<div class='menu123'>+ <a href='?add_game=1'>Добавить игру</a></div>";
require_once ("../../core/cuctema/foot.php");
?>