<?
header("Cache-Control: no-store, no-cache, must-revalidate");
if ($ver=="wml") header ("Content-type:text/vnd.wap.wml; charset=utf-8");
else if ($ver=="xhtml") header("Content-Type:text/html; charset=UTF-8");
else header ("Content-type:text/vnd.wap.wml; charset=utf-8");
require("inc.php");
$link = connect_db();
list($row, $id, $ps, $fsize1, $fsize2) = check_login($link);
require("version.php");
$times = getmicrotime();
mysql_query ("Update users set onl='".$times."', room='opros' where id ='".$id."'");
if ($ver=="wml"){
echo $xml;
echo $dtd;
echo "<wml>";
echo "<card id=\"cabinet\" title=\"Голосования\">";
echo "<p>";
}else{
echo "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">";
echo "<html xmlns=\"http://www.w3.org/1999/xhtml\">";
if($row["skin"]=="0"){
echo "<head><link rel=\"stylesheet\" type=\"text/css\" href=\"css/css.css\"/>";}
if($row["skin"]=="1"){
echo "<head><link rel=\"stylesheet\" type=\"text/css\" href=\"css/css1.css\"/>";}
if($row["skin"]=="2"){
echo "<head><link rel=\"stylesheet\" type=\"text/css\" href=\"css/css2.css\"/>";}
if($row["skin"]=="3"){
echo "<head><link rel=\"stylesheet\" type=\"text/css\" href=\"css/css3.css\"/>";}
echo "<title>Голосования</title>";
echo "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"/></head><body>";
echo "<div align=\"left\">\n";
echo "<form method=\"POST\" action=\"votes.php?mode=add&$ses&ref=$ref\" name=\"auth\">\n";
echo "<form method=\"POST\" action=\"votes.php?mode=edit&$ses&mid=$mid\" name=\"auth\">\n";
}
$level=$row["level"];
$avtor=$row["user"];
$date=date("j.m.Y");
echo '<div class="d3">';
echo '<b>Голосования</b><br/>';
echo '</div>';
if ($ver=="wml"){echo $divide;}
switch($mode) {
default:
$a = @mysql_query("select id,name,date from votes");
while($arr=mysql_fetch_array($a)){
$name=$arr['name'];
$date=$arr['date'];
$bid=$arr['id'];
$votes = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$bid."'"));
echo '<div class="d1">';
echo "<a href=\"votes.php?mode=view&$ses&mid=$bid\">$name</a> (<b>$votes[0]</b> | $date)";
if ($level>6) echo " [<a href=\"votes.php?mode=del&$ses&mid=$bid\">Уд.</a> | <a href=\"votes.php?mode=edit&$ses&mid=$bid\">Ред.</a>]";
echo '<br/>';
echo '</div>';
}
if (mysql_affected_rows() == 0){
echo '<div class="d2">';
echo '<b>Голосований пока нет :)</b><br/>';
echo '</div>';
}
if ($level>6) {
if ($ver=="wml"){echo $divide;}
echo '<div class="d2">';
echo "• <a href=\"votes.php?mode=add&$ses&ref=$ref\">Добавить опрос</a><br/>\n";
echo '</div>';
}
break;
case 'view':
$bid=intval($bid);
$q = mysql_query("select * from votes where id='".$mid."'");
if (mysql_affected_rows() == 0){
echo '<div class="d2">';
echo 'Нет такой записи :(<br/>';
echo '</div>';
} else {
$arr=mysql_fetch_array($q);
$mid=$arr['id'];
$name=$arr['name'];
$avtor=$arr['avtor'];
$vopros=$arr['vopros'];
$v1=$arr['v1'];
$v2=$arr['v2'];
$v3=$arr['v3'];
$v4=$arr['v4'];
$v5=$arr['v5'];
echo '<div class="d1">';
echo '<b>'.$name.'</b><br/>';
echo $vopros.' // Автор: <b><a href="search.php?'.$ses.'&go=view&nick='.$avtor.'">'.$avtor.'</a></b><br/>';
echo '</div>';
if ($ver=="wml"){echo $divide;}
echo '<div class="d1">';
$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."' and var='1'"));
echo "• <a href=\"votes.php?mode=vote&$ses&mid=$mid&v=1\">$v1</a> (<a href=\"votes.php?mode=who&$ses&mid=$mid&v=1\">$a[0]</a>)<br/>";
$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."' and var='2'"));
echo "• <a href=\"votes.php?mode=vote&$ses&mid=$mid&v=2\">$v2</a> (<a href=\"votes.php?mode=who&$ses&mid=$mid&v=2\">$a[0]</a>)<br/>";
if ($v3) {$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."' and var='3'"));
echo "• <a href=\"votes.php?mode=vote&$ses&mid=$mid&v=3\">$v3</a> (<a href=\"votes.php?mode=who&$ses&mid=$mid&v=3\">$a[0]</a>)<br/>";}
if ($v4) {$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."' and var='4'"));
echo "• <a href=\"votes.php?mode=vote&$ses&mid=$mid&v=4\">$v4</a> (<a href=\"votes.php?mode=who&$ses&mid=$mid&v=4\">$a[0]</a>)<br/>";}
if ($v5) {$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."' and var='5'"));
echo "• <a href=\"votes.php?mode=vote&$ses&mid=$mid&v=5\">$v5</a> (<a href=\"votes.php?mode=who&$ses&mid=$mid&v=5\">$a[0]</a>)<br/>";}
echo '</div>';
if ($ver=="wml"){echo $divide;}
echo '<div class="d2">';
$a = mysql_fetch_array(@mysql_query("select count(klu4) as num from voting where vote='".$mid."'"));
echo 'Голосов: '.$a[0].'<br/>';
echo '</div>';
}
break;
case 'add':
if ($level<7) die('<b>У вас нет прав доступа =)</b>'.$fsize2.'</p></card></wml>');
if (!$name){
echo '<div class="d3">';
echo '<b>Добавление Опроса:</b><br/>';
echo '</div>';
if ($ver=="wml"){echo $divide;}
echo '<div class="d1">';
echo 'Тема:<br/>';
echo "<input name=\"name\" maxlength=\"50\" value=\"$row[name]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вопрос:<br/>';
echo "<input name=\"vopros\" maxlength=\"100\" value=\"$row[vopros]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 1:<br/>';
echo "<input name=\"v1\" maxlength=\"50\" value=\"$row[v1]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 2:<br/>';
echo "<input name=\"v2\" maxlength=\"50\" value=\"$row[v2]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 3:<br/>';
echo "<input name=\"v3\" maxlength=\"50\" value=\"$row[v3]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 4:<br/>';
echo "<input name=\"v4\" maxlength=\"50\" value=\"$row[v4]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 5:<br/>';
echo "<input name=\"v5\" maxlength=\"50\" value=\"$row[v5]\" title=\"infa\" emptyok=\"false\"/><br/>\n";
if ($ver=="wml") {
echo "<anchor title=\"go\">Добавить<go href=\"votes.php?mode=add&$ses&ref=$ref\" method=\"post\">\n";
echo "<postfield name=\"name\" value=\"$(name)\"/>\n";
echo "<postfield name=\"vopros\" value=\"$(vopros)\"/>\n";
echo "<postfield name=\"v1\" value=\"$(v1)\"/>\n";
echo "<postfield name=\"v2\" value=\"$(v2)\"/>\n";
echo "<postfield name=\"v3\" value=\"$(v3)\"/>\n";
echo "<postfield name=\"v4\" value=\"$(v4)\"/>\n";
echo "<postfield name=\"v5\" value=\"$(v5)\"/>\n";
echo '</go></anchor><br/>';
} else {
echo "<form method=\"POST\" action=\"votes.php?mode=add&$ses&ref=$ref\" name=\"auth\">\n";
echo "<input type=\"submit\" value=\"Добавить\" name=\"enter\"><br/>\n";
}
echo '</div>';
} else {
$name = substr(check($name),0,100);
$vopros = substr(check($vopros),0,200);
$v1 = substr(check($v1),0,100);
$v2 = substr(check($v2),0,100);
$v3 = substr(check($v3),0,100);
$v4 = substr(check($v4),0,100);
$v5 = substr(check($v5),0,100);
if ($row["translit"]==1){
$name = trun_to_rus($name);
$vopros = trun_to_rus($vopros);
$v1 = trun_to_rus($v1);
$v2 = trun_to_rus($v2);
$v3 = trun_to_rus($v3);
$v4 = trun_to_rus($v4);
$v5 = trun_to_rus($v5);
}
if (!$vopros or !$v1 or !$v2) {
echo '<div class="d2">';
echo 'Не введён вопрос, или опрос содержит менее двух вариантов ответов :)<br/>';
echo '</div>';
} else {
mysql_query("Insert into votes set name ='".$name."', avtor ='".$avtor."', date ='".$date."', vopros = '".$vopros."', v1 = '".$v1."', v2 = '".$v2."', v3 = '".$v3."', v4 = '".$v4."', v5 = '".$v5."'");
echo '<div class="d2">';
echo '<b>Опрос успешно добавлен :)</b><br/>';
echo '</div>';
// сообщение о добавлении Опроса, во все комнаты =)
$adm = @mysql_query ("Select user from users where id='1' LIMIT 1;");
$z = @mysql_fetch_array ($adm);
$administration = $z["user"];
$administration = check($administration);
$time = time();
$rnd = rand(0,99999999);
$today=date ("H:i");
$time = time();
$txt = "<b>ВНИМАНИЕ!!!</b> <u>Добавлен новый опрос</u> :) <u>Отдай свой голос, ведь он может быть очень важен для чата</u> ;)";
for ($num = 0; $num <= 22; $num++){
$room = "room".$num;
mysql_query ("Insert into $room set klu4= '".$rnd."', time='".$today."', who='".$administration."', message='".$txt."', id='".$time."', towhom='', hid='0', usid='1', komu=''");
}
//
}
}
break;
case 'edit':
if ($level<7) die('<b>*Nemate prawo pristupa*</b>'.$fsize2.'</p></card></wml>');
if (!$name){
$q = mysql_query("select * from votes where id='".$mid."'");
if (mysql_affected_rows() == 0) die('<b>Нет такой категории :(</b>'.$fsize2.'</p></card></wml>');
$arr=mysql_fetch_array($q);
$vopros=$arr['vopros'];
$name=$arr['name'];
$v1=$arr['v1'];
$v2=$arr['v2'];
$v3=$arr['v3'];
$v4=$arr['v4'];
$v5=$arr['v5'];
echo '<div class="d3">';
echo '<b>Редактирование категории:</b><br/>';
echo '</div>';
if ($ver=="wml"){echo $divide;}
echo '<div class="d1">';
echo 'Вопрос:<br/>';
echo "<input name=\"name\" maxlength=\"50\" value=\"$name\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Описание:<br/>';
echo "<input name=\"vopros\" maxlength=\"100\" value=\"$vopros\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 1:<br/>';
echo "<input name=\"v1\" maxlength=\"50\" value=\"$v1\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 2:<br/>';
echo "<input name=\"v2\" maxlength=\"50\" value=\"$v2\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 3:<br/>';
echo "<input name=\"v3\" maxlength=\"50\" value=\"$v3\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 4:<br/>';
echo "<input name=\"v4\" maxlength=\"50\" value=\"$v4\" title=\"infa\" emptyok=\"false\"/><br/>\n";
echo 'Вариант 5:<br/>';
echo "<input name=\"v5\" maxlength=\"50\" value=\"$v5\" title=\"infa\" emptyok=\"false\"/><br/>\n";
if ($ver=="wml") {
echo "<anchor title=\"go\">Изменить<go href=\"votes.php?mode=edit&$ses&mid=$mid\" method=\"post\">\n";
echo "<postfield name=\"name\" value=\"$(name)\"/>\n";
echo "<postfield name=\"vopros\" value=\"$(vopros)\"/>\n";
echo "<postfield name=\"v1\" value=\"$(v1)\"/>\n";
echo "<postfield name=\"v2\" value=\"$(v2)\"/>\n";
echo "<postfield name=\"v3\" value=\"$(v3)\"/>\n";
echo "<postfield name=\"v4\" value=\"$(v4)\"/>\n";
echo "<postfield name=\"v5\" value=\"$(v5)\"/>\n";
echo '</go></anchor><br/>';
} else {
echo "<form method=\"POST\" action=\"votes.php?mode=edit&$ses&mid=$mid\" name=\"auth\">\n";
echo "<input type=\"submit\" value=\"Изменить\" name=\"enter\"><br/>\n";
}
echo '</div>';
} else {
$name = substr(check($name),0,100);
$vopros = substr(check($vopros),0,200);
$v1 = substr(check($v1),0,100);
$v2 = substr(check($v2),0,100);
$v3 = substr(check($v3),0,100);
$v4 = substr(check($v4),0,100);
$v5 = substr(check($v5),0,100);
if ($row["translit"]==1){
$name = trun_to_rus($name);
$vopros = trun_to_rus($vopros);
$v1 = trun_to_rus($v1);
$v2 = trun_to_rus($v2);
$v3 = trun_to_rus($v3);
$v4 = trun_to_rus($v4);
$v5 = trun_to_rus($v5);
}
if (!$vopros or !$v1 or !$v2) {
echo '<div class="d2">';
echo 'Не введён вопрос, или опрос содержит менее двух вариантов ответов :)<br/>';
echo '</div>';
} else {
mysql_query("update votes set name ='".$name."', avtor ='".$avtor."', vopros = '".$vopros."', v1 = '".$v1."', v2 = '".$v2."', v3 = '".$v3."', v4 = '".$v4."', v5 = '".$v5."' where id = '".$mid."'");
echo '<div class="d2">';
echo '<b>Вопрос изменен :)</b><br/>';
echo '</div>';
}
}
break;
case 'del':
if ($level<7) die('<b>*Nemate prawo pristupa*</b>'.$fsize2.'</p></card></wml>');
if (!$act){
echo '<div class="d2">';
echo "<b>Удалить вопрос?</b><br/>
<a href=\"votes.php?mode=del&$ses&act=go&mid=$mid\">Да</a> | <a href=\"votes.php?$ses&ref=$ref\">Нет</a><br/>";
echo '</div>';
} else {
$zapros="delete from votes where id= '".$mid."'";
$zapros2="delete from voting where vote= '".$mid."'";
if (mysql_query($zapros) and mysql_query($zapros2)){
echo '<div class="d2">';
echo '<b>Вопрос успешно удален :)</b><br/>';
echo '</div>';
} else {
echo '<div class="d2">';
echo '<b>Ошибка при удалении :(</b><br/>';
echo '</div>';
}
}
break;
case 'vote':
$v=intval($v);
$date=date("j.m.Y");
if ($v<1 or $v>5) die();
mysql_query ("Select * from voting where vote='".$mid."' and who='".$id."'");
if (mysql_affected_rows() == 0) {
mysql_query("INSERT INTO voting SET vote = '".$mid."', date = '$date', who = '".$id."', var = '".$v."'");
//mysql_query("update blog set votes=votes+'1' where id = '".$mid."'");
//mysql_query("update users set blog=blog+'1' where id='".$usid."'");
echo '<div class="d2">';
echo '<b>Ваш голос принят :)</b><br/>';
echo '</div>';
} else {
echo '<div class="d2">';
echo '<b>Вы уже голосовали :)</b><br/>';
echo '</div>';
}
break;
case 'who':
$query = mysql_query("select who,date from voting where vote = '".$mid."' and var = '".$v."'");
if (mysql_affected_rows() == 0) {
echo '<div class="d2">';
echo '<b>Ещё не голосовали :)</b><br/>';
echo '</div>';
echo '</p></card></wml>';
mysql_close ($link);
include_once"foot.php";
exit;
} else {
echo '<div class="d2">';
echo '<b>Кто отдал голос:</b><br/>';
echo '</div>';
if ($ver=="wml"){
echo $divide;}
$i = 1;
echo '<div class="d1">';
while($arr=mysql_fetch_array($query)){
$r = mysql_fetch_array(@mysql_query ("SELECT user from users where id='".$arr[0]."' LIMIT 1;"));
echo ($i++).') '.$r[0].' (ID: '.$arr[0].') - '.$arr[1].' <br/>';
}
echo '</div>';
}
break;
}
if ($ver=="wml"){
echo $divide;}
if($mode) {
echo '<div class="d3">';
echo "<a href=\"votes.php?$ses&ref=$ref\">Голосование</a><br/>\n";
echo '</div>';
}
echo '<div class="d3">';
echo "<a href=\"enter.php?$ses&ref=$ref\">Прихожая</a><br/>\n";
echo '</div>';
if ($ver=="wml"){echo $divide;}
if ($ver=="wml")echo "</p></card></wml>";
else echo "</div></body></html>";
mysql_close($link);
?>