Файл: users/diary/inc/search.php
Строк: 66
<?
$set['title']='Дневники - Поиск'; // заголовок страницы
require_once ("../../core/cuctema/head.php");
title();
aut();
err();
include_once 'inc/style.php';
$search=NULL;
if (isset($_SESSION['search']))$search=$_SESSION['search'];
if (isset($_GET['q']))$search=esc(urldecode($_GET['q']));
$_SESSION['search']=$search;
if ($search!=NULL)
{
$q_search=$_SESSION['search'];
$q_search=str_replace('%','',$q_search);
$q_search=str_replace(' ','%',$q_search);
$where=NULL;
if(!isset($umodd))
{
$q=mysql_query("SELECT * FROM `diary` WHERE (`name` like '%".mysql_escape_string($q_search)."%' OR `text` like '%".mysql_escape_string($q_search)."%') AND `sk` = '0' ORDER BY `time` DESC");
while ($post = mysql_fetch_assoc($q))
{
if($post['access']=='all' || $post['access']=='friends' && mysql_result(mysql_query("SELECT COUNT(*) FROM `frends` WHERE (`user` = '$user[id]' AND `frend` = '$post[id_user]') OR (`user` = '$post[id_user]' AND `frend` = '$user[id]')"),0)!=0 || $post['access']=='auth' && isset($user))$where=$where." ".($where==NULL?"AND (":"OR ")."`id` = '$post[id]'";
}
if($where!=NULL)$where=$where.")";
}
$k_post=mysql_result(mysql_query("SELECT COUNT(*) FROM `diary` WHERE (`name` like '%".mysql_escape_string($q_search)."%' OR `text` like '%".mysql_escape_string($q_search)."%') AND `sk` = '0'$where"),0);
if($search!=NULL)echo "<div class='hide'>Найдено ".sklon_text($k_post,array('запись','записи','записей'))."</div>n";
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
if ($k_post==0)echo'<div class="p_t">Извините, по Вашему запросу ничего не найдено</div>';
$lq=mysql_fetch_array(mysql_query("SELECT * FROM `diary` WHERE (`name` like '%".mysql_escape_string($q_search)."%' OR `text` like '%".mysql_escape_string($q_search)."%') AND `sk` = '0'$where ORDER BY `time` ASC LIMIT $start, 1"));
$q=mysql_query("SELECT * FROM `diary` WHERE (`name` like '%".mysql_escape_string($q_search)."%' OR `text` like '%".mysql_escape_string($q_search)."%') AND `sk` = '0'$where ORDER BY `id` DESC LIMIT $start, $set[p_str]");
if($k_post>0)
//echo "<div class='p_m'>n";
$num = 0;
while ($post = mysql_fetch_assoc($q))
{
if($num==1){
echo " <div class='d1'>";
$num=0;
}else{
echo "<div class='d2'>";
$num=1;}
$ank=get_user($post['id_user']);
$count_komms=mysql_result(mysql_query("SELECT COUNT(*) FROM `diary_komm` WHERE `id_diary` = '$post[id]'"),0);
echo "<img src='/users/diary/diary/".($post['poll']==1?'poll_1':'z').".png'/> <a href='/users/diary/$post[id]/read'>".($post['name']!=NULL?output_title($post['name']):text_cutter($post['text'],30)."".(text_cutter($post['text'],30)!=$post['text']?'...':null)."")."</a>n";
echo "<span style='float:right;color:grey'>(".vremja($post['time']).")</span><br/>n";
echo "<a href='/info.php?id=$ank[id]'><b><span style='color:#79358c'>$ank[nick]</span></b></a>".online($ank['id'])."n";
echo "<br/>n";
echo "".output_title(text_cutter($post['text'],100))."".(text_cutter($post['text'],100)!=$post['text']?"... <a href='/users/diary/$post[id]/read?p'>подробнее →</a>":null)."<br/>n";
echo "<a href='/users/diary/$post[id]/read#komms'>Обсудить".($count_komms!=0?" ($count_komms)":null)."</a><br/>n";
if($post['id']!=$lq['id'])echo "</div>n";
}
if($k_post>0)echo "</div>n";
if ($k_page>1)str("?",$k_page,$page); // Вывод страниц
}
echo "<div class='d2'>";
echo"<span style='font-size:small;color:darkblue'><b>Текст для поиска:</b></span><br/>";
echo'<form method="post" action="/users/diary" class="search">';
$search=output_title(stripcslashes(htmlspecialchars($_SESSION['search'])));
echo'<input type="text" name="search" value="'.$search.'" /> ';
echo'<input type="submit" value="Поиск" />';
echo'</form>';
echo '</div>';
echo'<div class="d1">';echo'<img src="/users/diary/diary/back.png" /> <a href="/users/diary">Дневники</a>';
echo'</div>';
require_once ("../../core/cuctema/foot.php");
exit;
?>