File size: 1.87Kb
<?php defined('ACCESS') OR die('No direct script access...');
/*
* Author - Tw1nGo
* VK - https://vk.com/tw1ngo93
*/
if (isset($_GET['id']))
{
$album = mysql_fetch_assoc(mysql_query("SELECT * FROM `photos` WHERE `id` = '".abs(intval($_GET['id']))."' LIMIT 1"));
$ank = mysql_fetch_assoc(mysql_query("SELECT `id`,`nick`,`level` FROM `user` WHERE `id` = '".$album['id_user']."' LIMIT 1"));
}
if (!isset($_GET['id']) || !isset($album) || $album['id'] <= 0){
header("Location: /");
exit;
}
if (!isset($user) && $user['id'] != $ank['id']){
header("Location: /?".SID);
exit;
}
if (isset($user) && $user['id'] == $ank['id'] || $user['level'] >= 4){
//if (isset($_GET['yes'])){
$q = mysql_query("SELECT * FROM `photos_user` WHERE `id_album` = '$album[id]'");
while ($post = mysql_fetch_assoc($q))
{
@unlink(H."files/photos/size50/".$post['id']."".$post['hash'].".jpg");
@unlink(H."files/photos/size100/".$post['id']."".$post['hash'].".jpg");
@unlink(H."files/photos/size200/".$post['id']."".$post['hash'].".jpg");
@unlink(H."files/photos/original/".$post['id']."".$post['hash'].".jpg");
mysql_query("DELETE FROM `photos_user` WHERE `id` = '$post[id]' LIMIT 1");
}
mysql_query("DELETE FROM `photos` WHERE `id` = '$album[id]' LIMIT 1");
$_SESSION['message'] = 'Фотоальбом успешно удален.';
header("Location: ?");
exit;
//}
/*
thead('Удаление альбома');
?>
<div class="page_block k_post-null photos">
<div style="color: grey; padding-bottom: 8px;">
<span>Вы действительно хотите удалить альбом <b><?= $album['name']?></b> и все фотографии в нем?! <span>
</div>
<a href="?act=dell_album&id=<?= $album['id']?>&yes" class="flat_button button_small">Удалить</a>
<a href="?id=<?= $ank['id']?>" class="flat_button button_small">Отмена</a>
</div>
<?
*/
}
else{
header("Location: /?");
exit;
}