Файл: modules/public/otvet.php
Строк: 238
<?php
/* DCMS Special
* Дата последнего редактирования 25.01.2016
* Модифицировал densnet
*/
foreach (array('start', 'compress', 'sess', 'settings', 'db_connect', 'ipua', 'fnc', 'user') as $inc) {
require_once "../../sys/inc/$inc.php";
}
if (isset($_GET['id'])) {
$wall['id'] = intval($_GET['id']);
}
$wall = mysql_fetch_array(mysql_query("SELECT * FROM `public_wall` WHERE `id` = '" . $wall['id'] . ")'"));
if ($wall['id'] == intval($_GET['id'])) {
$public = mysql_fetch_array(mysql_query("SELECT * FROM `public` WHERE `id` = '" . $wall['id_public'] . "' LIMIT 1"));
if (isset($_GET['otvet']) && $_GET['otvet'] == 'add' && intval($_GET['pos'])) {
$set['title'] = lang('Комментарии') . ' ' . $public['name'];
require_once H . 'sys/inc/thead.php';
$wall_komm = mysql_fetch_array(mysql_query("SELECT * FROM `public_wall_komm` WHERE `id` = '" . intval($_GET['pos']) . "'"));
$ank = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $wall_komm['id_user'] . "'"));
$file_id = mysql_fetch_assoc(mysql_query("SELECT * FROM `obmennik_files` WHERE `id` = '" . $wall['id_file'] . "'"));
$dir_id = mysql_fetch_assoc(mysql_query("SELECT * FROM `obmennik_dir` WHERE `id` = '" . $file_id['id_dir'] . "'"));
if (isset($_POST['komm'])) {
$komm = $_POST['komm'];
$ank = $_POST['ank'];
if (!isset($err)) {
mysql_query("INSERT INTO `public_wall_komm` (`id_row`, `id_user`, `msg`, `time`, `id_kont`) values ('" . $wall['id'] . "', '" . $user['id'] . "', '" . $komm . "', '" . $time . "', '" . $user['id'] . "')");
$id_komm = mysql_insert_id();
mysql_query("INSERT INTO `notification` (`id_user`, `avtor`, `type`, `id_object`, `time`) values ('" . $ank . "', '" . $user['id'] . "', 'wall_otvet', '" . $wall['id'] . "', '$time')");
if (!isset($_GET['ajax'])) {
$_SESSION['message'] = 'Сообщение успешно добавлено';
header('Location: /modules/public/otvet.php?id=' . $wall['id'] . '&komm=all');
}
exit;
}
}
aut();
err();
$q = mysql_query("SELECT * FROM `public_wall_komm` WHERE `id` = '" . $wall_komm['id'] . "' AND `id_row` = '" . $wall['id'] . "' ORDER BY id DESC LIMIT 1");
while ($pos = mysql_fetch_array($q)) {
echo "<table class='list-group-item-komm'><tr><td class='icon14' valign='top'>";
if ($wall['id_pub'] > 0) {
$fot = mysql_fetch_array(mysql_query("SELECT * FROM `public_foto` WHERE `id_public` = '" . $wall['id_pub'] . "' AND `foto` = '1' LIMIT 1"));
if (is_file(H . "sys/public/ava/" . $wall['id_pub'] . "." . $fot['ras'] . "")) {
echo "<img src='/sys/public/ava/" . $wall['id_pub'] . "." . $fot['ras'] . "' width='50'>";
} else {
echo "<img src='/modules/public/images/no_foto.jpg' width='50'>";
}
} else {
echo avatar($wall['id_ank'], '48', 'border-radius: 2px;');
}
echo "</td><td class='null'>";
echo toOutput($wall['name']) . "<br />";
if ($wall['ras'] == 'jpg')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'jpeg')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'gif')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'png')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'mp3') {
if (isset($webbrowser)) {
echo '<center>
<audio controls="controls" style="width:100%">
<source src="' . $wall['link'] . '" type="audio/ogg; codecs=vorbis">
Тег audio не поддерживается вашим браузером.
</audio>
</center>';
}
echo "<a href='" . $wall['link'] . "'>Скачать mp3</a><br />";
}
if ($wall['ras'] == 'mp4') {
if (isset($webbrowser)) {
echo "<center><object type=application/x-shockwave-flash data=/sys/uppod.swf width=60% height=210>
<param name=bgcolor value=#ffffff />
<param name=allowFullScreen value=true />
<param name=allowScriptAccess value=always />
<param name=wmode value=transparent />
<param name=movie value=/sys/uppod.swf/>
<param name=flashvars value=file=" . $wall['link'] . "&st=/sys/public.txt />
</object></center>";
} else {
echo "<center><img src='/sys/obmen/screens/128/" . $file_id['id'] . ".gif' width='60%' alt='scr...' /></center><br />n";
}
echo "<a href='" . $wall['link'] . "'>Скачать mp4</a><br />";
}
if ($wall['ras'] == 'flv') {
if (isset($webbrowser)) {
echo "<center><object type=application/x-shockwave-flash data=/sys/uppod.swf width=60% height=210>
<param name=bgcolor value=#ffffff />
<param name=allowFullScreen value=true />
<param name=allowScriptAccess value=always />
<param name=wmode value=transparent />
<param name=movie value=/sys/uppod.swf/>
<param name=flashvars value=file=" . $wall['link'] . "&st=/sys/public.txt />
</object></center>";
} else {
echo "<center><img src='/sys/obmen/screens/128/" . $file_id['id'] . ".gif' width='60%' alt='scr...' /></center><br />n";
}
echo "<a href='" . $wall['link'] . "'>Скачать flv</a><br />";
}
echo toOutput($wall['opis']);
echo "</td></tr></table>";
echo "<table class='list-group-item-komm'><tr><td valign='top' class='icon14'>";
echo avatar($ank['id'], '48');
echo "</td><td class='null'>";
echo "<small style='color: grey;float: right;'>" . date::timek($pos['time']) . "</small>";
echo user($ank['id']);
echo "<br />";
echo toOutput($pos['msg']);
echo "</td></tr></table>";
}
if (isset($user)) {
echo "<form method='post' class='list-group-item' name='message' action='?id=" . $wall['id'] . "&otvet=add&pos=" . $wall_komm['id'] . "'>n";
echo "<textarea name='komm' class='form-control'></textarea><br />n";
echo "<input type='hidden' name='ank' value='" . $ank['id'] . "' />";
$doc->Button('btn btn-primary btn-sm', null, 'pencil', 'Опубликовать');
echo "</form>";
}
}
##########################################################################
if (isset($_GET['komm']) && $_GET['komm'] == 'all') {
$set['title'] = lang('Коментарии') . ' ' . $public['name'];
require_once H . 'sys/inc/thead.php';
$ank = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $wall['id_wall'] . "'"));
$file_id = mysql_fetch_assoc(mysql_query("SELECT * FROM `obmennik_files` WHERE `id` = '" . $wall['id_file'] . "'"));
$dir_id = mysql_fetch_assoc(mysql_query("SELECT * FROM `obmennik_dir` WHERE `id` = '" . $file_id['id_dir'] . "'"));
if (isset($_POST['komm'])) {
$komm = $_POST['komm'];
$ank = $_POST['ank'];
if (!isset($err)) {
$us = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $ank . "'"));
mysql_query("INSERT INTO `public_wall_komm` (`id_row`, `id_user`, `msg`, `time`, `id_kont`) values('" . $wall['id'] . "', '" . $user['id'] . "', '" . $komm . "', '" . $time . "', '" . $us['id'] . "')");
if (isset($user) && $user['id'] != $us['id']) {
$id_komm = mysql_insert_id();
mysql_query("INSERT INTO `notification` (`id_user`, `avtor`, `type`, `id_object`, `time`) values('" . $us['id'] . "', '" . $user['id'] . "', 'wall_komm', '" . $id_komm . "', '$time')");
}
if (!isset($_GET['ajax'])) {
$_SESSION['message'] = 'Сообщение успешно добавлено';
header('Location: /modules/public/otvet.php?id=' . $wall['id'] . '&komm=all');
}
exit;
}
}
aut();
err();
$doc->Link('list-group-item', "index.php?id=" . $public['id'] . "", 'arrow-left', 'Вернуться в сообщество');
$q = mysql_query("SELECT * FROM `public_wall` WHERE `id` = '" . $wall['id'] . "' ORDER BY id DESC LIMIT 1");
while ($pos = mysql_fetch_array($q)) {
echo "<table class='list-group-item-komm'><tr><td class='icon14' valign='top'>";
if ($wall['id_pub'] > 0) {
$fot = mysql_fetch_array(mysql_query("SELECT * FROM `public_foto` WHERE `id_public` = '" . $wall['id_pub'] . "' AND `foto` = '1' LIMIT 1"));
if (is_file(H . "sys/public/ava/" . $wall['id_pub'] . "." . $fot['ras'] . "")) {
echo "<img src='/sys/public/ava/" . $wall['id_pub'] . "." . $fot['ras'] . "' width='48'>";
} else {
echo "<img src='/modules/public/images/no_foto.jpg' width='48'>";
}
} else {
echo avatar($wall['id_ank'], '48', 'border-radius: 2px;');
}
echo "</td><td class='null' valign='top'>";
echo toOutput($wall['name']) . "<br />";
if ($wall['ras'] == 'jpg')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'jpeg')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'gif')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'png')
echo "<center><img src='" . $wall['link'] . "' width='30%' alt='Скрин...' /></center><br />n";
if ($wall['ras'] == 'mp3') {
if (IS_WEB) {
echo '<center>
<audio controls="controls" style="width:100%">
<source src="' . $wall['link'] . '" type="audio/mpeg">
Тег audio не поддерживается вашим браузером.
</audio>
</center>';
}
echo "<a href='" . $wall['link'] . "'><i class='fa fa-save fa-fw'></i> Скачать mp3</a><br />";
}
if ($wall['ras'] == 'mp4') {
if (IS_WEB) {
echo "<center><object type=application/x-shockwave-flash data=/sys/uppod.swf width=75% height=210>
<param name=bgcolor value=#ffffff />
<param name=allowFullScreen value=true />
<param name=allowScriptAccess value=always />
<param name=wmode value=transparent />
<param name=movie value=/sys/uppod.swf/>
<param name=flashvars value=file=" . $wall['link'] . "&st=/sys/public.txt />
</object></center>";
} else {
echo "<center><img src='/sys/obmen/screens/128/" . $file_id['id'] . ".gif' width='75%' alt='scr...' /></center><br />n";
}
echo "<a href='" . $wall['link'] . "'><i class='fa fa-save fa-fw'></i> Скачать mp4</a><br />";
}
if ($wall['ras'] == 'flv') {
if (IS_WEB) {
echo "<center><object type=application/x-shockwave-flash data=/sys/uppod.swf width=75% height=210>
<param name=bgcolor value=#ffffff />
<param name=allowFullScreen value=true />
<param name=allowScriptAccess value=always />
<param name=wmode value=transparent />
<param name=movie value=/sys/uppod.swf/>
<param name=flashvars value=file=" . $wall['link'] . "&st=/sys/public.txt />
</object></center>";
} else {
echo "<center><img src='/sys/obmen/screens/128/" . $file_id['id'] . ".gif' width='75%' alt='scr...' /></center><br />n";
}
echo "<a href='" . $wall['link'] . "'><i class='fa fa-save fa-fw'></i> Скачать flv</a><br />";
}
echo toOutput($wall['opis']);
echo "</td></tr></table>";
}
if (isset($user)) {
echo "<form method='post' name='message' class='list-group-item' action='?id=" . $wall['id'] . "&komm=all'>n";
echo "<textarea name='komm' class='form-control'></textarea><br />n";
echo "<input type='hidden' name='ank' value='" . $ank['id'] . "' />";
$doc->Button('btn btn-primary btn-sm', null, 'pencil', 'Опубликовать');
echo "</form>";
}
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `public_wall_komm` WHERE `id_row` = '" . $wall['id'] . "'"), 0);
$k_page = k_page($k_post, $set['p_str']);
$page = page($k_page);
$start = $set['p_str'] * $page - $set['p_str'];
$qq = mysql_query("SELECT * FROM `public_wall_komm` WHERE `id_row` = '" . $wall['id'] . "' ORDER BY id DESC LIMIT $start, " . $set['p_str']);
while ($post = mysql_fetch_array($qq)) {
$us = mysql_fetch_array(mysql_query("SELECT * FROM `user` WHERE `id` = '" . $post['id_user'] . "'"));
echo "<table class='list-group-item-komm'><tr><td class='icon14'>";
echo avatar($us['id'], '48', 'border-radius: 3px;');
echo "</td><td class='null'>";
echo "<small style='float: right;color: grey;'>" . date::timek($post['time']) . "</small>";
echo user($us['id']);
echo "<br />";
echo toOutput($post['msg']);
echo "<span style='float: right;' id='hides'>";
if (isset($user) && $user['id'] != $us['id']) {
echo "<a href='?id=" . $wall['id'] . "&otvet=add&pos=" . $post['id'] . "' title='" . lang('Ответить') . "'><i class='fa fa-pencil fa-fw'></i></a>";
}
if (isset($user) && $user['id'] == $ank['id']) {
echo "<a href='?id=" . $wall['id'] . "&del=del&pos=" . $post['id'] . "' title='" . lang('Удалить') . "'><i class='fa fa-trash-o fa-fw'></i></a>";
}
echo "</span>";
echo "</td></tr></table>";
}
if ($k_page > 1) {
echo "<div class='list-group-item'>";
str("?id=" . $wall['id'] . "&komm=all&", $k_page, $page);
echo "</div>";
}
}
} else {
echo "<div class='err'>Пост Вам не принадлежит!</div>";
}
if (isset($_GET['del']) && $_GET['del'] == 'del' && intval($_GET['pos'])) {
mysql_query("DELETE FROM `public_wall_komm` WHERE `id` = '" . intval($_GET['pos']) . "'");
header("Location: /modules/public/otvet.php?id=" . $wall['id'] . "&komm=all");
}
require_once H . 'sys/inc/tfoot.php';