Файл: ewar/news.php
Строк: 280
<?php
include("includes/config.php");
include("includes/header.php");
$dm = authUser();
if ($dm) {
mysql_query("UPDATE vartotojai SET news='0' WHERE id='".$dm['id']."'");
$dm['news'] = 0;
}
if ($id == false) {
if ($dm) {
juosta($dm['statusas'],$neskaityti_laiskai);
}
if ($user_id == $ADMIN_ID) {
echo "<div class="center">
<a class="btn_red" href="news.php?id=write"><span>".$language['paskelbti_naujiena']."</span></a>
</div>
<div class="razdel5"></div>";
}
$nuskaitoma = mysql_query("SELECT * FROM news");
$viso = mysql_num_rows($nuskaitoma);
if ($viso == false) {
echo "<div class="center text_p">
".$language['skelbiamu_naujienu_nera']."
</div>";
}
else
{
$nuo = ereg_replace("[^0-9]","",$_GET['nuo']);
if ($nuo == "") {
$nuo = 0;
}
$puslapiu_skaicius = 10;
$nuskaitymas = mysql_query("SELECT * FROM news ORDER BY id DESC LIMIT $nuo,$puslapiu_skaicius");
if ($user_language == "lt") {
$kuri = "naujiena";
}
else
{
$kuri = "naujiena2";
}
while($stulpeliai = mysql_fetch_assoc($nuskaitymas)) {
$stulpeliai[$kuri] = bbcode($stulpeliai[$kuri]);
if ($user_id == $ADMIN_ID) {
$xx = "[<a href="news.php?id=delete&k=".$stulpeliai['id']."">X</a>]";
$xx2 = "[<a href="news.php?id=edit&k=".$stulpeliai['id']."">R</a>]";
}
echo "<div class="juosta2 tr">
$xx $xx2 <span class="small"><span class="bold">".$language['naujiena'].":</span> ".$stulpeliai[$kuri]."</span>
<br/>
<span class="small"><span class="bold">".$language['paskelbimo_data'].":</span> ".$stulpeliai['data']."</span>
<br/>
<span class="small"><span class="bold">".$language['ivertinimai'].":</span> ";
if ($dm && mysql_num_rows(mysql_query("SELECT id FROM news_vertinimai WHERE news_id='".$stulpeliai['id']."' AND nick_id='".$dm['id']."'")) == false) {
$img1 = "<a href="news.php?id=vertinti&k=".$stulpeliai['id']."&v=1"><img src="img/icons/like.gif" alt="*"/></a>";
$img2 = "<a href="news.php?id=vertinti&k=".$stulpeliai['id']."&v=0"><img src="img/icons/dislike.gif" alt="*"/></a>";
}
else
{
$img1 = "<img src="img/icons/like.gif" alt="*"/>";
$img2 = "<img src="img/icons/dislike.gif" alt="*"/>";
}
echo "$img1 ".(int) mysql_num_rows(mysql_query("SELECT id FROM news_vertinimai WHERE news_id='".$stulpeliai['id']."' AND vertinimas=1"))." $img2 ".(int) mysql_num_rows(mysql_query("SELECT id FROM news_vertinimai WHERE news_id='".$stulpeliai['id']."' AND vertinimas=0"))."</span>
</div>
<div class="razdel5"></div>";
}
echo "<div class="center text_p">";
$viso_puslapiai = 0;
$starto_skaicius = 1;
$ceil = ceil($viso / $puslapiu_skaicius);
$rodomas = ceil($nuo / $puslapiu_skaicius) + 1;
while($viso_puslapiai < $viso) {
if ($starto_skaicius == 1 or ($starto_skaicius >= $rodomas - 1 && $starto_skaicius < $rodomas + 3) or $starto_skaicius > $ceil - 1) {
$taskai = 0;
if ($nuo == $viso_puslapiai) {
echo "<a class="page" id="pushed" href="news.php?nuo=$viso_puslapiai">$starto_skaicius</a>";
}
else
{
echo "<a class="page" href="news.php?nuo=$viso_puslapiai">$starto_skaicius</a>";
}
}
else
{
if ($taskai == false) {
echo "...";
$taskai ++;
}
}
$viso_puslapiai = $viso_puslapiai + $puslapiu_skaicius;
$starto_skaicius ++;
}
echo "</div>";
}
if (!$dm) {
echo "<div class="razdel10"></div>
<div class="top_wave"></div>
<div class="light_paper tr">
<a href="index.php"><img src="img/icons/ikona.png" alt="*"/>".$language['pradzia']."</a>
</div>
<div class="bottom_wave"></div>";
}
}
elseif ($id == "write") {
if (!$dm or $user_id != $ADMIN_ID) {
header("Location: index.php");
exit;
}
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="lent w80 mlra">
<div class="bl-ttl"><div class="te"><div class="ttl">
".$language['naujiena']."
</div></div></div>
<form action="news.php?id=write2" method="post">
<div class="center">
<span class="bold">".$language['naujienos_tekstas']." [LT]</span>(<a href="manual.php?id=bbcodes">BB CODE</a>):
<div class="razdel5"></div>
<textarea rows="10" cols="17" name="new"></textarea>
<div class="razdel10"></div>
<span class="bold">".$language['naujienos_tekstas']." [RU]</span>(<a href="manual.php?id=bbcodes">BB CODE</a>):
<div class="razdel5"></div>
<textarea rows="10" cols="17" name="new2"></textarea>
<div class="razdel5"></div>
<button type="submit"><span>".$language['ok']."</span></button>
</div>
</form>
</div>";
}
elseif ($id == "write2") {
if (!$dm or $user_id != $ADMIN_ID) {
header("Location: index.php");
exit;
}
$naujiena = filter($_POST['new']);
$naujiena = str_replace("n","<br/>",$naujiena);
$naujiena2 = filter($_POST['new2']);
$naujiena2 = str_replace("n","<br/>",$naujiena2);
mysql_query("INSERT INTO news(id,naujiena,naujiena2,data) VALUES('','$naujiena','$naujiena2','".date("Y-m-d H:i:s")."')");
mysql_query("UPDATE vartotojai SET news=1");
header("Location: news.php");
}
elseif ($id == "delete") {
if (!$dm or $user_id != $ADMIN_ID) {
header("Location: index.php");
exit;
}
$k = ereg_replace("[^0-9]","",$_GET['k']);
mysql_query("DELETE FROM news WHERE id='$k'");
mysql_query("DELETE FROM news_vertinimai WHERE news_id='$k'");
header("Location: news.php");
}
elseif ($id == "edit") {
if (!$dm or $user_id != $ADMIN_ID) {
header("Location: index.php");
exit;
}
$k = ereg_replace("[^0-9]","",$_GET['k']);
$fetch = mysql_fetch_assoc(mysql_query("SELECT naujiena FROM news WHERE id='$k'"));
$naujiena = str_replace("<br/>","n",$fetch['naujiena']);
$fetch2 = mysql_fetch_array(mysql_query("SELECT naujiena2 FROM news WHERE id='$k'"));
$naujiena2 = str_replace("<br/>","n",$fetch2['naujiena2']);
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="lent w80 mlra">
<div class="bl-ttl"><div class="te"><div class="ttl">
".$language['redagavimas']."
</div></div></div>
<form action="news.php?id=edit2&k=$k" method="post">
<div class="center">
<span class="bold">".$language['naujas_tekstas']." [LT]</span>(<a href="manual.php?id=bbcodes">BB CODE</a>):
<div class="razdel5"></div>
<textarea rows="10" cols="17" name="new">$naujiena</textarea>
<div class="razdel10"></div>
<span class="bold">".$language['naujas_tekstas']." [RU]</span>(<a href="manual.php?id=bbcodes">BB CODE</a>):
<div class="razdel5"></div>
<textarea rows="10" cols="17" name="new2">$naujiena2</textarea>
<div class="razdel5"></div>
<button type="submit"><span>".$language['ok']."</span></button>
</div>
</form>
</div>";
}
elseif ($id == "edit2") {
if (!$dm or $user_id != $ADMIN_ID) {
header("Location: index.php");
exit;
}
$k = ereg_replace("[^0-9]","",$_GET['k']);
$naujiena = filter($_POST['new']);
$naujiena = str_replace("n","<br/>",$naujiena);
$naujiena2 = filter($_POST['new2']);
$naujiena2 = str_replace("n","<br/>",$naujiena2);
mysql_query("UPDATE news SET naujiena='$naujiena',naujiena2='$naujiena2' WHERE id='$k'");
header("Location: news.php");
}
elseif ($id == "vertinti") {
if (!$dm) {
header("Location: index.php");
exit;
}
$k = ereg_replace("[^0-9]","",$_GET['k']);
$vertinimas = (int) ereg_replace("[^0-9]","",$_GET['v']);
if ($vertinimas > 1 or $vertinimas < 0) {
$vertinimas = 1;
}
if (mysql_num_rows(mysql_query("SELECT id FROM news WHERE id='$k'"))) {
if ($dm['level'] < $settings['write_from'] && $user_id != $ADMIN_ID) {
$klaida = "".$language['vertinti_galesi_kai']." ".$settings['write_from']." ".$language['lygi']."";
}
if ($klaida != false) {
juosta($dm['statusas'],$neskaityti_laiskai);
echo "<div class="center text_p">
<img src="img/warning.png" alt="*"/>
<br/>
$klaida
</div>";
}
else
{
if (mysql_num_rows(mysql_query("SELECT id FROM news_vertinimai WHERE news_id='$k' AND nick_id='".$dm['id']."'")) == false) {
mysql_query("INSERT INTO news_vertinimai SET news_id='$k',nick_id='".$dm['id']."',vertinimas='$vertinimas'");
}
header("Location: news.php");
}
}
else
{
header("Location: news.php");
}
}
else
{
header("Location: index.php");
}
include("includes/foot.php");
?>