Файл: golos_str/kodes_ot_psih.txt
Строк: 134
///если работать не будет - удалите код по
//////
if (isset($user))$ank['id']=$user['id'];
if
(isset($_GET['id']))$ank['id']=intval($_GET['id']);
$ank=get_user($ank['id']);
if(!$ank){header("Location:
/index.php?".SID);exit;}
$user_id=$ank['id'];
if
((!isset($_SESSION['refer']) || $_SESSION['refer']==NULL)
&&
isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER']!=NULL
&&
!preg_match('#info\.php#',$_SERVER['HTTP_REFERER']))
$_SESSION['refer']=str_replace('&','&',preg_replace('#^http://[^/]*/#','/',
$_SERVER['HTTP_REFERER']));
///////по сюда
if
(isset($_POST['rating']) && isset($user) &&
isset($_POST['msg']) && $user['id']!=$ank['id'] &&
$user['rating']>=2 && mysql_result(mysql_query("SELECT
SUM(`rating`) FROM `user_voice2` WHERE `id_kont` =
'$user[id]'"),0)>=0)
{
$msg=mysql_real_escape_string($_POST['msg']);
if
(strlen($msg)<0)$err='Короткий Отзыв';
if
(strlen($msg)>0)$err='Длиный Отзыв';
elseif
(mysql_result(mysql_query("SELECT COUNT(*) FROM `user_voice2` WHERE
`id_user` = '$user[id]' AND `msg` = '".my_esc($msg)."' LIMIT
1"),0)!=0){$err='Ваш отзыв повторяется';}
if
(!isset($err))
{
$new_r=min(max(@intval($_POST['rating']),-2),2);
mysql_query("DELETE
FROM `user_voice2` WHERE `id_user` = '$user[id]' AND `id_kont` = '$ank[id]'
LIMIT 1");
echo $new_r;
if ($new_r)
{
if
(mysql_result(mysql_query("SELECT COUNT(*) FROM `user_voice2` WHERE
`id_user` = '$user[id]' AND `id_kont` = '$ank[id]' LIMIT 1"),0) ==
0)
{
mysql_query("INSERT INTO `user_voice2` (`rating`,
`id_user`, `id_kont`, `msg`, `time`) VALUES
('$new_r','$user[id]','$ank[id]', '$msg',
'$time')");
mysql_query("UPDATE `user` SET `rating` =
'".($ank['rating'] + $new_r)."' WHERE `id` = '$ank[id]' LIMIT
1");
}
else
{
mysql_query("UPDATE `user_voice2`
SET `rating` = '".$new_r."', msg = $msg, time = $time WHERE
`id_user` = '$user[id]' AND `id_kont` = '$ank[id]' LIMIT
1");
}
}
if ($new_r>0)
mysql_query("INSERT INTO
`mail` (`id_user`, `id_kont`, `msg`, `time`) values('0', '$ank[id]',
'$user[nick] поднял вам
[url=/user/info/who_rating.php]рейтинг[/url]',
'$time')");
if ($new_r<0)
mysql_query("INSERT INTO `mail`
(`id_user`, `id_kont`, `msg`, `time`) values('0', '$ank[id]', '$user[nick]
опустил вам [url=/user/info/who_rating.php]рейтинг[/url]',
'$time')");
if ($new_r==0)
mysql_query("INSERT INTO `mail`
(`id_user`, `id_kont`, `msg`, `time`) values('0', '$ank[id]', '$user[nick]
добавил +0 к вашему
[url=/user/info/who_rating.php]рейтингу[/url]',
'$time')");
mysql_query("UPDATE `user` SET `rating_tmp` =
'".($user['rating_tmp']+1)."' WHERE `id` = '$user[id]' LIMIT
1");
$_SESSION['message'] = 'Ваш голос
принят';
}
}
if
(isset($user))$ank['id']=$user['id'];
if
(isset($_GET['id']))$ank['id']=intval($_GET['id']);
if (isset($user)
&& $user['id']!=$ank['id'] && $user['rating']>=2
&& mysql_result(mysql_query("SELECT SUM(`rating`) FROM
`user_voice2` WHERE `id_kont` = '$user[id]'"),0)>=0)
{
echo
"<b><div
class='cont'>Голосовать:</b><br />\n";
//
мое отношение к
пользователю
$my_r=intval(@mysql_result(mysql_query("SELECT
`rating` FROM `user_voice2` WHERE `id_user` = '$user[id]' AND `id_kont` =
'$ank[id]'"),0));
echo "<form method='post'
action='?id=$ank[id]&$passgen'>\n";
echo "<select
name='rating'>\n";
echo "<option value='2'
".($my_r==2?'selected="selected"':null).">+2</option>\n";
echo
"<option value='1'
".($my_r==1?'selected="selected"':null).">+1</option>\n";
echo
"<option value='0'
".($my_r==0?'selected="selected"':null).">+0</option>\n";
echo
"<option value='-1'
".($my_r==-1?'selected="selected"':null).">-1</option>\n";
echo
"<option value='-2'
".($my_r==-2?'selected="selected"':null).">-2</option>\n";
echo
"</select>\n";
echo "<input type='submit'
name='send' value='ОК' />\n";
echo "
<a
href='/user/info/who_rating.php?id=$ank[id]'> <font
color='green'>История</font>
<span
class='count'>[" . mysql_result(mysql_query("SELECT COUNT(*)
FROM `user_voice2` WHERE `id_kont` = '" . $ank['id'] . "'"),
0) . "]</span></a>";
echo
"</form>\n";
//echo "\n";
}
elseif
(isset($user) && $user['id'] != $ank['id'])
{
echo "<div
class='mess'>";
echo 'Ваш рейтинг менее 2%';
echo
"</div>";
}
$k_post=mysql_result(mysql_query("SELECT
COUNT(*) FROM `user_voice2` WHERE `id_kont` =
'".$ank['id']."'"),0);
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
echo
"<table class='post'>\n";
$q=mysql_query("SELECT
* FROM `user_voice2` WHERE `id_kont` = '$ank[id]' ORDER BY `time` DESC
LIMIT $start, $set[p_str]");
while ($post =
mysql_fetch_assoc($q))
{
$ank=get_user($post['id_user']);
//
Лесенка дивов
if ($num == 0)
{
echo '<div
class="nav1">';
$num = 1;
}
elseif ($num ==
1)
{
echo '<div class="nav2">';
$num =
0;
}
$msg=stripcslashes(htmlspecialchars($post['msg']));
echo
'</div>';
}
echo "</table></div>\n";