Файл: admin_chat.php
Строк: 67
<?php
require_once ('system/func.php');
$title = 'Админ чат';
require_once ('system/header.php');
auth(); // Закроем от гостей
access(1); // Права доступа 0-игрок,1-модератор,2-администратор
if(isset($_GET['text'])){
if(isset($_POST['text'])){
$text = $_POST['text'];
$ban = mysql_query('SELECT * FROM `ban` WHERE `id_user` = "'.$myID.'" AND `last` > "'.time().'" ORDER BY `id` DESC LIMIT 1');
$ban = mysql_fetch_array($ban);
if(strlen($text) < 3 or strlen($text) > 300)$err = 'Длина сообщения должна быть в пределах 3 - 300 символов';
if($ban)$err = "На вас наложен бан осталось ".tl($ban['last']-time());
$ban_ip = mysql_query('SELECT * FROM `ban` WHERE `ip` = "'.$user['ip'].'" AND `last` > "'.time().'" ORDER BY `id` DESC LIMIT 1');
$ban_ip = mysql_fetch_array($ban_ip);
if($ban_ip)$err = "Ваш IP совпадает с нарушителем!<br>Осталось: ".tl($ban_ip['last']-time());
$chat_limit = mysql_query('SELECT * FROM `chat` WHERE `id_user` = "'.$myID.'" AND `time` > "'.(time()-10).'" ORDER BY `id` DESC LIMIT 1');
$chat_limit = mysql_fetch_array($chat_limit);
if($chat_limit)$err = 'Писать можно только раз в 10 сек';
if(!$err){
mysql_query("INSERT INTO `adm_chat` SET `id_user` = '$user[id]', `time` = '".time()."', `text` = '".text($text)."'");
$_SESSION['msg'] = 'Сообщение отправлено';
header('Location: /admin_chat');
exit();
}else{
$_SESSION['msg'] = $err;
header('Location: /admin_chat');
exit();
}
}else{
$_SESSION['msg'] = 'Введите сообщение';
header('Location: /admin_chat');
exit();
}
}
if(isset($_GET['delete_post']) and $user['access'] > 0){
mysql_query("DELETE FROM `adm_chat` WHERE `id` = '".num($_GET['delete_post'])."'");
$_SESSION['msg'] = 'Пост удален';
header('Location: ?');
exit();
}
echo "<div class='block center'>";
if($user['level'] < 1){
echo "В чате можно писать только с ".ico('icons','level.png')." 2 уровня";
}else{
if(isset($_GET['to'])){
echo "<form method='post' action='?text=$_GET[to]'>";
$opponent = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".num($_GET['to'])."' LIMIT 1"));
echo "<input type='text' name='text' value = '".text($opponent['login']).", '>";
echo "<input type='submit' class='btn' value='Отправить'>
<a href='/admin_chat' class='btn'>Обновить</a>
</form>";
}else{
echo "<form method='post' action='?text'>";
echo "<input type='text' name='text'>";
echo "<input type='submit' class='btn' value='Отправить'>
<a href='/admin_chat' class='btn'>Обновить</a>
</form>";
}
}
$online = mysql_result(mysql_query("SELECT COUNT(*) FROM `users` WHERE `online` > '".(time()-300)."' AND `fix_mesto` = '$title'"),0);
echo "</div>";
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `adm_chat`"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `adm_chat` ORDER BY `id` DESC LIMIT $start, $set[p_str]");
if($k_post == 0) echo "Сообщений не найдено...";
while($post = mysql_fetch_assoc($q)) {
echo "<div class='block'>";
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = $post[id_user] LIMIT 1"));
echo icons_user($ank[id])." <a href='/profile/$ank[id]'>$ank[login]</a>, ".vremja($post['time'])." ";
if($myID != $ank['id'])echo "<a href='?to=$ank[id]'>[Отв]</a>";
$msg = str_replace(array($user[login].','), "<b>$user[login],</b> ", $post['text']);
echo "<br>".text_msg($msg);
if($user['access'] > 0)echo " <a href='?delete_post=$post[id]'><font color='red'>[×]</font></a>";
echo "</div>";
}
echo "<div class='block'>";
str('?',$k_page,$page); // Вывод страниц
echo "</div>";
require_once ('system/footer.php');
?>