<?php
require 'connect.php';
require 'header.php';
require 'result.php';
function getmicrotime()
{
list($usec, $sec) = explode(' ', microtime());
return ((float)$usec + (float)$sec);
}
$us = $row['user'];
$rm = intval($_GET['rm']);
if(!$_GET['go'])
{
print $top.'
<head><meta http-equiv="Cache-Control" content="no-cache" forua="true"/></head>
<card id="send" title="Написать">
<p>';
//$message = $topic = $towhom = '';
if(isset($_GET['im']))
{
if(is_numeric($_GET['im']))
{
$a = mysql_fetch_assoc(mysql_query('SELECT towhom,topic,message FROM `zapiski` WHERE klu4 = '.$_GET['im']));
$towhom = $a['towhom'];
$topic = $a['topic'];
$message = $a['message'];
}
else
{
print 'Error';
mysql_close();
exit;
}
}
else
{
if(isset($_GET['who']))
{
if(is_numeric($_GET['who']))
{
$a = mysql_fetch_assoc(mysql_query('SELECT who FROM zapiski WHERE klu4 = '.$_GET['who']));
$towhom = $a['who'];
}
else
{
print 'Error';
mysql_close();
exit;
}
}
}
if(isset($_GET['tofr']))
{$towhom = $_GET['tofr'];}
if($message)
{
if(strstr($message,'<img src="'))
{
$tend = strpos($message,'"/>');
$t = strlen($message);
$msgend = substr($message,$tend+3,$t);
$msgtemp = substr($message,0,$tend);
$t1 = strpos($msgtemp,'<img src="');
$msgfirst = substr($msgtemp,0,$t1);
$t2 = strlen($msgtemp);
$t3 = strpos($msgtemp,'alt="');
$msgaver = substr($msgtemp,$t3+5,$t2);
$message = $msgfirst.$msgaver.$msgend;
}
if(strstr($message,'<a href="'))
{
$tend = strpos($message,'</a>');
$t = strlen($message);
$msgend = substr($message,$tend+4,$t);
$tend2 = strpos($message,'">');
$msgtemp = substr($message,0,$tend2);
$t1 = strpos($msgtemp,'<a href="');
$msgfirst = substr($msgtemp,0,$t1);
$t2 = strlen($msgtemp);
$t3 = strpos($msgtemp,'<a href="');
$msgaver = substr($msgtemp,$t3+9,$t2);
$message = $msgfirst.$msgaver.$msgend;
}
}
print '<small>Кому:<br/></small>';
if(isset($towhom))
{print '<input name="nick'.$ref.'" maxlength="24" value="'.$towhom.'" type="text"/><br/>';}
else
{print '<input name="nick'.$ref.'" maxlength="24" value="'.$_POST['to'].'" type="text"/><br/>';}
print '<small>Тема:<br/></small>
<input name="topic'.$ref.'" maxlength="30" value="'.$topic.'" type="text"/><br/>
<small>Письмо:<br/></small>
<input name="message'.$ref.'" maxlength="512" value="'.$message.'" type="text"/><br/>
<small>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{print '<anchor>Отправить<go href="send.php?go=pn&id='.$id.'&ps='.$ps.'&rm='.$rm.'" method="post">';}
else
{print '<anchor>Отправить<go href="send.php?go=pn&id='.$id.'&ps='.$ps.'" method="post">';}
print '<postfield name="towhom" value="$(nick'.$ref.')"/>
<postfield name="topic" value="$(topic'.$ref.')"/>
<postfield name="message" value="$(message'.$ref.')"/>
</go></anchor><br/>
---<br/>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{print '<anchor>Отправить всем друзьям<go href="send.php?go=all&id='.$id.'&ps='.$ps.'&rm='.$rm.'" method="post">';}
else
{print '<anchor>Отправить всем друзьям<go href="send.php?go=all&id='.$id.'&ps='.$ps.'" method="post">';}
print '<postfield name="topic" value="$(topic'.$ref.')"/>
<postfield name="message" value="$(message'.$ref.')"/>
</go></anchor><br/>
---<br/>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{print '<a href="chat.php?id='.$id.'&ps='.$ps.'&rm='.$rm.'&ref='.$ref.'">В Чат</a><br/>';}
print '<a href="chatmail.php?id='.$id.'&ps='.$ps.'">Ваша Почта</a><br/>
<a href="enter.php?id='.$id.'&ps='.$ps.'">Прихожая</a>
</small>
</p>
</card>
</wml>';
mysql_close();
exit;
}
else
{
if($row['translit'] == 1)
{
$_POST['topic'] = trun_to_rus($_POST['topic']);
$_POST['message'] = trun_to_rus($_POST['message']);
}
$towhom = check($_POST['towhom']);
$message = check($_POST['message']);
$topic = check($_POST['topic']);
if($_GET['go'] != 'all')
{
if(!$towhom)
{$towhom = 0;}
$r = mysql_query("SELECT id,avtootvet FROM `antihack_users` WHERE user = '".$towhom."'");
if(mysql_affected_rows() == 0)
{
print $top.'
<head><meta http-equiv="Cache-Control" content="no-cache" forua="true"/></head>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{
print '<card id="error" title="Error" ontimer="send.php?id='.$id.'&ps='.$ps.'&rm='.$rm.'&ref='.$ref.'">
<timer value="5"/>';
}
else
{
print '<card id="error" title="Error" ontimer="send.php?id='.$id.'&ps='.$ps.'&ref='.$ref.'">
<timer value="5"/>';
}
print '<p>
Пользователя с ником <strong>'.$towhom.'</strong> не существует!
</p>
</card>
</wml>';
mysql_close();
exit;
}
if($row['translit'] == 0)
{$message = eregi_replace("((http://))((([a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z;]{2,3}))|(([0-9]{1,3}\.){3}([0-9]{1,3})))((/|\?)[a-z0-9~#%&'_\+=:;\?\.-]*)*)", '<a href="$0">$3</a>', $message);}
//////////////////////////////////////
$a = mysql_fetch_assoc($r);
$idtowhom = $a['id'];
$avtootvet = $a['avtootvet'];
$kol = rand(0,99999999);
$time = time();
$data = gmdate('d M Y [H:i]', time() + $correct_time);
$times = getmicrotime();
mysql_query("SELECT `readd` FROM `zapiski` WHERE (who='".$us."') AND (idwho = ".$id.") AND (message = '".$message."') AND (towhom = '".$towhom."') AND (idtowhom = ".$idtowhom.") AND (topic = '".$topic."')");
if(mysql_affected_rows() == 0)
{
mysql_query("INSERT INTO `zapiski` SET klu4='".$kol."', who='".$us."', idwho=".$id.", message = '".$message."', towhom = '".$towhom."', idtowhom = ".$idtowhom.", time = '".$times."', readd = 0, topic = '".$topic."', date='".$data."'");
}
else
{
print $top;
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{
print '<card id="error" title="Error" ontimer="send.php?id='.$id.'&ps='.$ps.'&rm='.$rm.'&ref='.$ref.'">
<timer value="5"/>';
}
else
{
print '<card id="error" title="Error" ontimer="send.php?id='.$id.'&ps='.$ps.'">
<timer value="5"/>';
}
print '<p>
Такое письмо уже отправлено!<br/>
</p>
</card>
</wml>';
mysql_close();
exit();
}
print $top.'
<head><meta http-equiv="Cache-Control" content="no-cache" forua="true"/></head>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{
print '<card id="done" title="Ok" ontimer="chat.php?id='.$id.'&ps='.$ps.'&rm='.$rm.'&ref='.$ref.'">
<timer value="15"/>';
}
else
{
print '<card id="done" title="Ok" ontimer="chatmail.php?id='.$id.'&ps='.$ps.'">
<timer value="15"/>';
}
print '<p>
<small>
Ваше сообщение для <strong>'.$towhom.'</strong> успешно отправлено!<br/>';
if($avtootvet != '')
{
print '---<br/>
Автоответчик: '.$avtootvet.'<br/>';
}
print '---<br/>
<a href="chatmail.php?id='.$id.'&ps='.$ps.'">Ваша почта</a><br/>
<a href="enter.php?id='.$id.'&ps='.$ps.'">Прихожая</a>
</small>
</p>
</card>
</wml>';
mysql_close();
}
else
{
if($row['translit'] == 1)
{
$topic = trun_to_rus($topic);
$message = trun_to_rus($message);
}
$fr = $row['friends'];
$time = time();
$data = gmdate('H:i(d-M)', time() + $correct_time);
if($row['level']>6)
{$message = eregi_replace("((http://))((([a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z;]{2,3}))|(([0-9]{1,3}\.){3}([0-9]{1,3})))((/|\?)[a-z0-9~#%&'_\+=:;\?\.-]*)*)", '<a href="$0">$3</a>', $message);}
$alls = '';
if(strpos($fr,'|') !== false)
{
$s1 = substr($fr,0,strpos($fr,'|'));
while(strpos ($fr,'|') !== false)
{
$name = $s1;
$fr = substr($fr, strpos($fr,'|')+1, strlen($fr)-strlen($s1)+1);
$s1 = substr($fr,0,strpos($fr,'|'));
$w = mysql_query("SELECT id,user FROM `antihack_users` WHERE user = '".$name."'");
if(mysql_affected_rows() == 0){continue;}
$b = mysql_fetch_assoc($w);
$idtowhom = $b['id'];
$towhom = $b['user'];
$kol = rand(0,99999999);
mysql_query("INSERT INTO `zapiski` SET klu4='".$kol."', who='".$us."', idwho=".$id.", message = '".$message."', towhom = '".$towhom."', idtowhom = ".$idtowhom.", time = '".$time."', readd=0, topic = '".$topic."', date='".$data."'");
$alls = $alls.$towhom.', ';
if(mysql_error()){continue;}
}
}
//$alls = $alls.$towhom;
print $top.'
<head><meta http-equiv="Cache-Control" content="no-cache" forua="true"/></head>';
if((isset($_GET['rm']))&&($_GET['rm'] != ''))
{
print '<card id="ok" title="Ok" ontimer="chat.php?id='.$id.'&ps='.$ps.'&rm='.$rm.'&ref='.$ref.'">
<timer value="15"/>';
}
else
{
print '<card id="ok" title="Ok" ontimer="chatmail.php?id='.$id.'&ps='.$ps.'">
<timer value="15"/>';
}
print '<p><small>
Ваше письмо успешно отправлено следующим пользователям:
'.$alls.'
</small>
</p>
</card>
</wml>';
mysql_close();
}
}
?>