Файл: support.php
Строк: 322
<?php
require 'lang_inc.php';
require 'sid.php';
require 'config.php';
$link = connect_db();
list($user, $id, $ps) = check_login($link);
include 'head.php';
include 'navigator.php';
whorm(0, 'support');
$do = isset($_GET['do']) ? $_GET['do'] : NULL;
switch($do) {
default:
$news = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'news'"), 0);
$no = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'no'"), 0);
$yes = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'yes'"), 0);
$answer = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'answer'"), 0);
$now = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'now'"), 0);
if (isset($_GET['x'])) {
$x = my_int($_GET['x']);
if ($user['level'] < 4) {
header('Location: support.php?lg='.$lg.'&' . $ref);
die();
} else {
$em = mysql_query("SELECT `id` FROM `support` WHERE `id` = '$x' LIMIT 1");
if (mysql_num_rows($em) != FALSE) {
mysql_query("DELETE FROM `support` WHERE `id` = '$x' LIMIT 1");
mysql_query("DELETE FROM `support_coms` WHERE `uid` = '$x'");
header('Location: support.php?lg='.$lg.'&' . $ref);
} else {
header('Location: support.php?lg='.$lg.'&' . $ref);
die();
}
}
}
echo $div_title . ''.$lang['Онлайн поддержка'].'' . $div_end . $div_left;
echo '<img src="ico/str.gif" alt=""/> <a href="support.php?do=news&lg='.$lg.'">'.$lang['Новые'].'</a> (' . $news . ')
<br/>
'.$lang['Сюда пишем свои вопросы или пожелания'].'.
<br/>
<img src="ico/str.gif" alt=""/> <a href="support.php?do=no&lg='.$lg.'">'.$lang['Отклоненные пожелания'].'</a> (' . $no . ')
<br/>
'.$lang['Здесь находятся все отклоненные пожелания'].'
<br/>
<img src="ico/str.gif" alt=""/> <a href="support.php?do=yes&lg='.$lg.'">'.$lang['Выполненные пожелания'].'</a> (' . $yes . ')
<br/>
'.$lang['Все что мы сделали по Вашим просьбам'].'.
<br/>
<img src="ico/str.gif" alt=""/> <a href="support.php?do=answer&lg='.$lg.'">'.$lang['Ответы на вопросы'].'</a> (' . $answer . ')
<br/>
'.$lang['Полученные ответы на вопросы'].'.
<br/>
<img src="ico/str.gif" alt=""/> <a href="support.php?do=now&lg='.$lg.'">'.$lang['Выполняются'].'</a> (' . $now . ')
<br/>
'.$lang['Пожелания, которые уже выполяются и скоро будут сделаны'].'';
echo $div_end;
break;
// Новые
case news:
echo $div_title . ''.$lang['Новые'].'' . $div_end . $div_left;
echo $div_menu . '<a href="support.php?do=add_p&lg='.$lg.'">'.$lang['Оставить предложение'].'</a>' . $div_end;
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'news'"), 0);
if ($count != FALSE) {
$n = new navigator($count, 10, '?do=news&lg='.$lg.'&');
$look = mysql_query("SELECT * FROM `support` WHERE `type` = 'news' ORDER BY `id` DESC {$n->limit}");
$i = 0;
while($a = mysql_fetch_assoc($look)) {
if ($user['level'] == 4 || $user['level'] == 5) {
$d = '<a href="support.php?x='.$a['id'].'&lg='.$lg.'"><img src="ico/delete.gif" alt=""/></a>
<a href="support.php?do=edit&e='.$a['id'].'&lg='.$lg.'"><img src="ico/edit.gif" alt=""/></a> ';
}
if (mb_strlen($a['name'], 'UTF8') > 200) {
$a['name'] = mb_substr($a['name'], 0, 200, 'UTF8');
$a['name'] = $a['name'] . '...<br/>
<a href="support.php?do=view&l='.$a['id'].'&lg='.$lg.'">'.$lang['Читать все'].' ></a>';
} else {
$a['name'] = $a['name'];
}
$num_com = mysql_result(mysql_query("SELECT COUNT(*) FROM `support_coms` WHERE `uid` = '$a[id]'"), 0);
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo $d . '<img src="ico/t.gif" alt=""/> ' . $a['name'] . '
<br/>
' . us($a['user']) . '
<br/>
<a href="support_coms.php?uid='.$a['id'].'&lg='.$lg.'">'.$lang['Комментарии'].'(' . $num_com . ')</a>' . $div_end;
}
echo $n->navi();
} else {
echo ''.$lang['Новых пожеланий нет'].'!<br/>';
}
echo $div_end;
break;
// Отклоненные
case no:
echo $div_title . ''.$lang['Отклоненные пожелания'].'' . $div_end . $div_left;
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'no'"), 0);
if ($count != FALSE) {
$n = new navigator($count, 10, '?do=no&lg='.$lg.'&');
$look = mysql_query("SELECT * FROM `support` WHERE `type` = 'no' ORDER BY `id` DESC {$n->limit}");
$i = 0;
while($a = mysql_fetch_assoc($look)) {
if ($user['level'] == 4 || $user['level'] == 5) {
$d = '<a href="support.php?x='.$a['id'].'&lg='.$lg.'"><img src="ico/delete.gif" alt=""/></a>
<a href="support.php?do=edit&e='.$a['id'].'&lg='.$lg.'"><img src="ico/edit.gif" alt=""/></a> ';
}
if (mb_strlen($a['name'], 'UTF8') > 200) {
$a['name'] = mb_substr($a['name'], 0, 200, 'UTF8');
$a['name'] = $a['name'] . '...<br/>
<a href="support.php?do=view&l='.$a['id'].'&lg='.$lg.'">'.$lang['Читать все'].' ></a>';
} else {
$a['name'] = $a['name'];
}
$num_com = mysql_result(mysql_query("SELECT COUNT(*) FROM `support_coms` WHERE `uid` = '$a[id]'"), 0);
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo $d . '<img src="ico/t.gif" alt=""/> ' . $a['name'] . '
<br/>
' . us($a['user']) . '
<br/>
<a href="support_coms.php?uid='.$a['id'].'&lg='.$lg.'">'.$lang['Комментарии'].'(' . $num_com . ')</a>' . $div_end;
}
echo $n->navi();
} else {
echo ''.$lang['Отклоненных пожеланий нет'].'!<br/>';
}
echo $div_end;
break;
// Выполненые
case yes:
echo $div_title . ''.$lang['Выполненные пожелания'].'' . $div_end . $div_left;
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'yes'"), 0);
if ($count != FALSE) {
$n = new navigator($count, 10, '?do=yes&lg='.$lg.'&');
$look = mysql_query("SELECT * FROM `support` WHERE `type` = 'yes' ORDER BY `id` DESC {$n->limit}");
$i = 0;
while($a = mysql_fetch_assoc($look)) {
if ($user['level'] == 4 || $user['level'] == 5) {
$d = '<a href="support.php?x='.$a['id'].'&lg='.$lg.'"><img src="ico/delete.gif" alt=""/></a>
<a href="support.php?do=edit&e='.$a['id'].'&lg='.$lg.'"><img src="ico/edit.gif" alt=""/></a>';
}
if (mb_strlen($a['name'], 'UTF8') > 200) {
$a['name'] = mb_substr($a['name'], 0, 200, 'UTF8');
$a['name'] = $a['name'] . '...<br/>
<a href="support.php?do=view&l='.$a['id'].'&lg='.$lg.'">'.$lang['Читать все'].' ></a>';
} else {
$a['name'] = $a['name'];
}
$num_com = mysql_result(mysql_query("SELECT COUNT(*) FROM `support_coms` WHERE `uid` = '$a[id]'"), 0);
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo $d . '<img src="ico/t.gif" alt=""/> ' . $a['name'] . '
<br/>
' . us($a['user']) . '
<br/>
<a href="support_coms.php?uid='.$a['id'].'&lg='.$lg.'">'.$lang['Комментарии'].'(' . $num_com . ')</a>' . $div_end;
}
echo $n->navi();
} else {
echo ''.$lang['Выполненных пожеланий нет'].'!<br/>';
}
echo $div_end;
break;
// Ответы на вопросы
case answer:
echo $div_title . ''.$lang['Ответы на вопросы'].'' . $div_end . $div_left;
echo $div_menu . '<a href="support.php?do=add_q&lg='.$lg.'">'.$lang['Оставить вопрос'].'</a>' . $div_end;
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'answer'"), 0);
if ($count != FALSE) {
$n = new navigator($count, 10, '?do=answer&lg='.$lg.'&');
$look = mysql_query("SELECT * FROM `support` WHERE `type` = 'answer' ORDER BY `id` DESC {$n->limit}");
$i = 0;
while($a = mysql_fetch_assoc($look)) {
if ($user['level'] == 4 || $user['level'] == 5) {
$d = '<a href="support.php?x='.$a['id'].'&lg='.$lg.'"><img src="ico/delete.gif" alt=""/></a>
<a href="support.php?do=edit&e='.$a['id'].'&lg='.$lg.'"><img src="ico/edit.gif" alt=""/></a>';
}
if (mb_strlen($a['name'], 'UTF8') > 200) {
$a['name'] = mb_substr($a['name'], 0, 200, 'UTF8');
$a['name'] = $a['name'] . '...<br/>
<a href="support.php?do=view&l='.$a['id'].'&lg='.$lg.'">'.$lang['Читать все'].' ></a>';
} else {
$a['name'] = $a['name'];
}
$num_com = mysql_result(mysql_query("SELECT COUNT(*) FROM `support_coms` WHERE `uid` = '$a[id]'"), 0);
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo $d . '<img src="ico/t.gif" alt=""/> ' . $a['name'] . '
<br/>
' . us($a['user']) . '
<br/>
<a href="support_coms.php?uid='.$a['id'].'&lg='.$lg.'">'.$lang['Комментарии'].'(' . $num_com . ')</a>' . $div_end;
}
echo $n->navi();
} else {
echo ''.$lang['Ответов на вопросы нет'].'!<br/>';
}
echo $div_end;
break;
// Выполняются
case now:
echo $div_title . ''.$lang['Ответы на вопросы'].'' . $div_end . $div_left;
$count = mysql_result(mysql_query("SELECT COUNT(*) FROM `support` WHERE `type` = 'now'"), 0);
if ($count != FALSE) {
$n = new navigator($count, 10, '?do=now&lg='.$lg.'&');
$look = mysql_query("SELECT * FROM `support` WHERE `type` = 'now' ORDER BY `id` DESC {$n->limit}");
$i = 0;
while($a = mysql_fetch_assoc($look)) {
if ($user['level'] == 4 || $user['level'] == 5) {
$d = '<a href="support.php?x='.$a['id'].'&lg='.$lg.'"><img src="ico/delete.gif" alt=""/></a>
<a href="support.php?do=edit&e='.$a['id'].'&lg='.$lg.'"><img src="ico/edit.gif" alt=""/></a> ';
}
if (mb_strlen($a['name'], 'UTF8') > 200) {
$a['name'] = mb_substr($a['name'], 0, 200, 'UTF8');
$a['name'] = $a['name'] . '...<br/>
<a href="support.php?do=view&l='.$a['id'].'&lg='.$lg.'">'.$lang['Читать все'].' ></a>';
} else {
$a['name'] = $a['name'];
}
$num_com = mysql_result(mysql_query("SELECT COUNT(*) FROM `support_coms` WHERE `uid` = '$a[id]'"), 0);
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo $d . '<img src="ico/t.gif" alt=""/> ' . $a['name'] . '
<br/>
' . us($a['user']) . '
<br/>
<a href="support_coms.php?uid='.$a['id'].'&lg='.$lg.'">'.$lang['Комментарии'].'(' . $num_com . ')</a>' . $div_end;
}
echo $n->navi();
} else {
echo ''.$lang['Выполняемых пожеланий нет'].'!<br/>';
}
echo $div_end;
break;
// Оставить предложение
case add_p:
echo $div_title . ''.$lang['Оставить предложение'].'' . $div_end . $div_left;
if (isset($_POST['ok'])) {
$quest = trim(mysql_real_escape_string(check($_POST['quest'])));
if (empty($quest)) {
err(''.$lang['Вы не заполнили предложение'].'!');
} else {
// транслит
if ($user['translit'] == 1) {
$quest = trun_to_rus($quest);
}
// антимат
$ant = mysql_fetch_array(mysql_query("SELECT `antimat` FROM `setting` WHERE `ids` = '1'"));
$quest = ($ant[0] == 1) ? mat($quest) : $quest;
// Антиреклама
$_ant = mysql_fetch_assoc(mysql_query("SELECT `on_rekl`, `text_rekl` FROM `setting` WHERE `ids` = '1'"));
if ($_ant['on_rekl'] == 1) {
$ex = explode(',', file_get_contents('domains.dat'));
foreach($ex as $value) {
if ($user['level'] != 4 && $user['level'] != 5 && !preg_match('/[url=http://(.*)[/url]/si', $quest)) {
$quest = preg_replace("/(.*)(s|,|.|*|_|-|+)+$value/si", $_ant['text_rekl'], $quest);
}
}
}
mysql_query("INSERT INTO `support` SET `name` = '$quest', `user` = '$user[id]', `type` = 'news'");
header('Location: support.php?do=news&lg='.$lg.'');
}
}
echo '<fieldset>
<FORM method="POST" action="support.php?do=add_p&lg='.$lg.'">
'.$lang['Ваше предложение'].':<br/>
<textarea name="quest" cols="50" rows="5" style="width: 99%;"></textarea>
<br/>
<input type="submit" name="ok" value="'.$lang['Отправить'].'"/>
</FORM>
</fieldset>
« <a href="support.php?do=news&lg='.$lg.'">'.$lang['Назад'].'</a>';
echo $div_end;
break;
// Оставить вопрос
case add_q:
echo $div_title . ''.$lang['Оставить вопрос'].'' . $div_end . $div_left;
if (isset($_POST['ok'])) {
$quest = trim(mysql_real_escape_string(check($_POST['quest'])));
if (empty($quest)) {
err(''.$lang['Вы не заполнили предложение'].'!');
} else {
// транслит
if ($user['translit'] == 1) {
$quest = trun_to_rus($quest);
}
// антимат
$ant = mysql_fetch_array(mysql_query("SELECT `antimat` FROM `setting` WHERE `ids` = '1'"));
$quest = ($ant[0] == 1) ? mat($quest) : $quest;
// Антиреклама
$_ant = mysql_fetch_assoc(mysql_query("SELECT `on_rekl`, `text_rekl` FROM `setting` WHERE `ids` = '1'"));
if ($_ant['on_rekl'] == 1) {
$ex = explode(',', file_get_contents('domains.dat'));
foreach($ex as $value) {
if ($user['level'] != 4 && $user['level'] != 5 && !preg_match('/[url=http://(.*)[/url]/si', $quest)) {
$quest = preg_replace("/(.*?)(s|,|.|*|_|+)$value/si", $_ant['text_rekl'], $quest);
}
}
}
mysql_query("INSERT INTO `support` SET `name` = '$quest', `user` = '$user[id]', `type` = 'news'");
header('Location: support.php?do=add_q&lg='.$lg.'');
}
}
echo '<fieldset>
<FORM method="POST" action="support.php?do=add_q&lg='.$lg.'">
'.$lang['Ваше предложение'].':<br/>
<textarea name="quest" cols="50" rows="5" style="width: 99%;"></textarea>
<br/>
<input type="submit" name="ok" value="'.$lang['Отправить'].'"/>
</FORM>
</fieldset>
« <a href="support.php?do=add_q&lg='.$lg.'">'.$lang['Назад'].'</a>';
echo $div_end;
break;
// Просмотр
case view:
echo $div_title . ''.$lang['Читать все'].'' . $div_end . $div_left;
$l = my_int($_GET['l']);
$empty = mysql_query("SELECT * FROM `support` WHERE `id` = '$l' LIMIT 1");
if (mysql_num_rows($empty) == FALSE) {
err(''.$lang['Ошибка'].'!');
} else {
$inf = mysql_fetch_assoc($empty);
echo $inf['name'] . '<br/>
<a href="support.php?lg='.$lg.'&'.$ref.'">'.$lang['Назад'].'</a>';
}
echo $div_end;
break;
// Действие
case edit:
echo $div_title . ''.$lang['Действие'].'' . $div_end . $div_left;
$e = my_int($_GET['e']);
if (isset($_POST['ok'])) {
$action = my_int($_POST['action']);
if ($action == 1) $act = 'no';
if ($action == 2) $act = 'yes';
if ($action == 3) $act = 'now';
if ($action == 4) $act = 'answer';
////////////////////////////////////////
if ($action == 1) $kuda = ''.$lang['Отклоненные'].'';
if ($action == 2) $kuda = ''.$lang['Выполненые'].'';
if ($action == 3) $kuda = ''.$lang['Выполняемые'].'';
if ($action == 4) $kuda = ''.$lang['Ответы на вопросы'].'';
$sql = mysql_fetch_array(mysql_query("SELECT `user` FROM `support` WHERE `id` = '$e' LIMIT 1"));
$msgg = ''.$lang['Ваш вопрос или предложение было перенесено в раздел'].' <a href="support.php?do='.$act.'&lg='.$lg.'">'.$kuda.'</a>';
mysql_query("INSERT INTO `letters` (`id`,`who`,`idwho`,`message`,`data`,`read`,`mod`)
VALUES (0,'0','$sql[0]','$msgg','" . time() . "','0','i')");
mysql_query("UPDATE `support` SET `type` = '$act' WHERE `id` = '$e' LIMIT 1");
header('Location: support.php?do=' . $act .'&'. $lg );
}
$empty = mysql_query("SELECT * FROM `support` WHERE `id` = '$e' LIMIT 1");
if (mysql_num_rows($empty) == FALSE) {
err(''.$lang['Ошибка'].'!');
} else {
$inf = mysql_fetch_assoc($empty);
echo $inf['name'] . '<br/>
<fieldset>
<FORM method="POST" action="support.php?do=edit&e='.$e.'&lg='.$lg.'">
<select name="action">
<option value="1">'.$lang['Отклонить'].'</option>
<option value="2">'.$lang['Выполнить'].'</option>
<option value="3">'.$lang['В процесс'].'</option>
<option value="4">'.$lang['В ответы'].'</option>
</select>
<br/>
<input type="submit" name="ok" value="OK"/>
</FORM>
</fieldset>';
}
echo $div_end;
break;
}
include 'foot.php';
?>