<?
/*
* Autor: Tw1nGo
*/
include_once '../sys/inc/start.php';
include_once '../sys/inc/compress.php';
include_once '../sys/inc/sess.php';
include_once '../sys/inc/home.php';
include_once '../sys/inc/settings.php';
include_once '../sys/inc/db_connect.php';
include_once '../sys/inc/ipua.php';
include_once '../sys/inc/fnc.php';
include_once '../sys/inc/user.php';
if (isset($user)){
$ank['id'] = $user['id'];
}
if (isset($_GET['id'])){
$ank['id'] = intval($_GET['id']);
}
$ank = get_user($ank['id']);
if($ank['id'] <= 0 || !isset($user)){
header("Location: /".SID);
exit;
}
$ank['nick'] = u_nick($ank['id']);
$cases = array('голос', 'голоса', 'голосов');
if (isset($_GET['gift']) && isset($_GET['section']))
{
// Запрешаем гостям сайта смотреть!
if(!isset($user)){
$_SESSION['err'] = 'Раздел подарков доступен только пользователям Xmyx.Ru';
header("Location: /".SID);
exit;
}
$set['title'] = "Подарки";
include_once '../sys/inc/thead.php';
// Категория
$cat = mysql_fetch_assoc(mysql_query("SELECT * FROM `user_gifts_cat` WHERE `id` = '" . intval($_GET['section']) . "' LIMIT 1"));
// Подарок
$gift = mysql_fetch_assoc(mysql_query("SELECT * FROM `user_gifts_gift` WHERE `id` = '" . intval($_GET['gift']) . "' LIMIT 1"));
shapka_VK(true, '?act=send§ion='.$cat['id'].'', 'Отправка подарка');
if(!$gift || !$cat){
header("Location: ?act=send§ion=1");
exit;
}
?>
<div class="pcont fit_box _copts">
<?
uvedom();
?>
<h4 class="sub_header">Подарок для <a class="user al_u<?= $ank['id']?> _u<?= $ank['id']?>" href="/id<?= $ank['id']?>" data-name="<?= $ank['nick']?>"><?= $ank['nick']?></a></h4>
<div class="form_item">
<div class="fi_row"><div class="gift_thumb"><img class="th_img" src="/files/gifts/<?= $gift['id']?>.png"></div></div>
</div>
<div class="gift_balance">Стоимость:
<?
if($gift['money'] > 0){
?>
<b><?= des2num($gift['money'], $cases)?></b>
<?
}
else{
?>
<span>Бесплатно</span>
<?
}
?>
<div class="user_balance">У Вас <b><?= des2num($user['money'], $cases)?></b></div>
</div>
<?
if (isset($_POST['do_send'])){
if ($user['money'] >= $gift['money']){
$msg = $_POST['text'];
if (strlen2($msg) > 250)
$err = 'Сообщение к подарку большое, max: 250 симв.';
$msg = my_esc($msg);
if (isset($_POST['type']) && ($_POST['type'] == 0 || $_POST['type'] == 1)){
$anon = $_POST['type'];
}
else{
$anon = 0;
}
if($gift['money'] > 0){
mysql_query("UPDATE `user` SET `money` = '" . ($user['money'] - $gift['money']) . "' WHERE `id` = '$user[id]'");
// Отправляем в журнал операций
$msg_journal = "Подарок";
mysql_query("INSERT INTO `money` (`id_user`, `money`, `minus_plus`, `msg`, `time`) values('$user[id]', '$gift[money]', '0', '$msg_journal', '$time')");
}
mysql_query("update `user` set `hide_notify` = '1' where `id` = '$ank[id]' limit 1");
mysql_query("INSERT INTO `user_gifts` (`id_user`, `id_ank`, `id_gift`, `koment`, `anon`, `time`) values('$ank[id]', '$user[id]', '$gift[id]', '$msg', '$anon', '$time')");
$id_gift = mysql_insert_id();
// Уведомление
if($user['id'] != $ank['id']){
mysql_query("INSERT INTO `notifi` (`avtor`, `id_user`, `id_object`, `type`, `time`) VALUES ('$user[id]', '$ank[id]', '$id_gift', 'gifts', '$time')");
$msgsa = '[url=/gifts'.$ank['id'].'][img]/files/gifts/'.$gift['id'].'.png[/img][/url]';
mysql_query("INSERT INTO `mail` (`id_user`, `id_kont`, `time`, `msg`, `read`, `gift`) VALUES ('$user[id]', '".$ank['id']."', '".$time."', '".my_esc($msgsa)."', '0', '1')");
}
$_SESSION['message'] = 'Подарок успешно отправлен.';
header("Location: /id".$ank['id']."");
exit;
}
else{
$_SESSION['err'] = 'У Вас не хватает монет!';
header("Location: ?act=send§ion=1");
exit;
}
}
err();
?>
<div class="create_post gift_create_post">
<form action="?act=send§ion=<?= $cat['id']?>&gift=<?= $gift['id']?>&hash=<?= $passgen?>" method="post">
<div class="iwrap">
<textarea name="text" class="textfield" rows="3" autofocus="autofocus" maxlength="250" oninput="GiftsSendFormCounter.counter(this);"></textarea>
</div>
<div class="gift_create_post_counter"></div>
<div class="cp_option">
<label class="option_row" onclick="">
<input class="checkbox" name="type" value="1" type="checkbox">
<div class="option_label">Показывать моё имя только получателю</div>
</label>
</div>
<div class="cp_buttons_block"><input class="button" name="do_send" value="Отправить подарок" type="submit"></div>
</form>
</div>
</div>
<?
include_once '../sys/inc/tfoot.php';
exit;
}
elseif (isset($user) && ($user['id'] == $ank['id']) && isset($_GET['act']) && $_GET['act'] == 'friends')
{
$set['title'] = "Подарки";
include_once '../sys/inc/thead.php';
shapka_VK(true, '/gifts'.$ank['id'].'', 'Выберите друга');
$config = array(
'q' => array(
'type' => array(
'У Вас нет друзей',
'Ни одного диалога не найдено',
'Ни одного друга не найдено'
),
'text' => (isset($_GET['q']) ? implode(' ', explode('+', text($_GET['q']))) : false)
),
);
if($_SERVER['REQUEST_METHOD'] == 'POST')
{
if(!empty($_POST['q']) && !preg_match("#(^\ )#ui", $_POST['q']) && !preg_match("#(^\')#ui", $_POST['q']))
{
$_POST['q'] = implode('+', explode(' ', my_esc($_POST['q'])));
exit(header('Location: ?act=friends&q='.$_POST['q'].'&type=2'));
}
else
exit(header('Location: ?act=friends'));
}
$t = (isset($_GET['type']) && is_numeric($_GET['type']) && (int)$_GET['type'] <= 2? (int)$_GET['type'] : 0);
$sql = '';
if($config['q']['text'])
$sql = "`user`.`ank_name` like '%".$config['q']['text']."%' AND ";
?>
<div class="pcont bl_cont">
<?
uvedom();
?>
<div class="head_panel">
<div class="hp_block"><form action="?act=friends" class="qsearch" method="POST">
<table class="row_table"><tbody><tr>
<td class="row_table_main_column">
<div class="qs_field_wrap">
<div class="iwrap"><input class="textfield qs_textfield" name="q" value="<?= $config['q']['text'] ?>" autocomplete="off" id="ma_search_field" placeholder="Введите имя друга.." type="text"></div>
</div>
</td>
<td class="row_table_last_column"><input class="button qs_button al_tab" value="Искать" type="submit"></td>
</tr></tbody></table>
</form></div>
</div>
<?
$k_post = mysql_result(mysql_query("SELECT COUNT(frend) FROM `frends` INNER JOIN `user` ON `frends`.`frend`=`user`.`id` WHERE $sql`frends`.`user` = '$user[id]' AND `frends`.`i` = '1'"), 0);
if ($k_post)
{
$set['p_str'] = '20';
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT frend FROM `frends` INNER JOIN `user` ON `frends`.`frend`=`user`.`id` WHERE $sql`frends`.`user` = '$user[id]' AND `frends`.`i` = '1' ORDER BY `user`.`date_last` DESC LIMIT $start, $set[p_str]");
while($post = mysql_fetch_assoc($q))
{
$d = d_user($post['frend'], true, 'ii_img');
$d['nick'] = u_nick($d['id']);
if($config['q']['text'] !== false) {
$d['nick'] = preg_replace('/' . $config['q']['text'] . '/i', '<em class="found">$0</em>', $d['nick']);
}
?>
<a href="/gifts<?= $d['id'] ?>?act=send&section=1" class="inline_item">
<div class="ii_body"><?= $d['avatar'] ?>
<span class="ii_owner"><?= $d['nick'] . $d['online'] ?>
</span>
</div>
</a>
<?
}
if ($k_page > 1)
str_vk('?act=friends&' . ($config['q']['text'] ? 'q='.$config['q']['text'].'&type=2&' : ''), $k_page, $page);
}
else{
?>
<div id="fr_search_items" class="items bl_cont"><div class="service_msg_box">
<div class="service_msg service_msg_null"><?= $config['q']['type'][$t]?></div>
</div></div>
<?
}
?>
</div>
<?
include_once '../sys/inc/tfoot.php';
exit;
}
elseif (isset($user) && (isset($_GET['act']) && $_GET['act'] == 'send') && isset($_GET['section']))
{
$set['title'] = "Подарки";
include_once '../sys/inc/thead.php';
shapka_VK(true, '/gifts'.$user['id'].'?act=friends', 'Выбор подарка');
if($user['level'] == 0){
$cat = mysql_fetch_assoc(mysql_query("SELECT * FROM `user_gifts_cat` WHERE `id` = '" . intval($_GET['section']) . "' AND `show_cat` = '1' LIMIT 1"));
}
else{
$cat = mysql_fetch_assoc(mysql_query("SELECT * FROM `user_gifts_cat` WHERE `id` = '" . intval($_GET['section']) . "' AND `show_cat` != '0' LIMIT 1"));
}
?>
<div class="pcont bl_cont">
<?
uvedom();
?>
<h4 class="sub_header">Подарок для
<a class="user al_u<?= $ank['id']?> _u<?= $ank['id']?>" href="/id<?= $ank['id']?>" data-name="<?= $ank['nick']?>"><?= $ank['nick']?></a>
</h4>
<?
if (!$cat){
?>
<div class="upanel bl_cont">
<a name="gifts"></a>
<div class="service_msg_box">
<div class="service_msg service_msg_null">Категория с подарками не найдена!</div>
</div>
</div>
<?
}
$set['p_str'] = '24';
$k_post = mysql_result(mysql_query("SELECT COUNT(id) FROM `user_gifts_gift` WHERE `id_cat` = '$cat[id]' AND `pokaz` = '1'"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
if ($k_post == 0)
{
?>
<div class="upanel bl_cont">
<a name="gifts"></a>
<div class="service_msg_box">
<div class="service_msg service_msg_null">Подарки в категории не найдены!</div>
</div>
</div>
<?
}
else{
$q = mysql_query("SELECT name,id,money FROM `user_gifts_gift` WHERE `id_cat` = '$cat[id]' AND `pokaz` = '1' ORDER BY `id` DESC LIMIT $start, $set[p_str]");
?>
<div class="form_item gifts_form_item">
<?
while ($post = mysql_fetch_assoc($q))
{
?>
<div class="gift_item">
<a href="/gifts<?= $ank['id']?>?act=send&section=<?= $cat['id']?>&gift=<?= $post['id']?>" class="gift_thumb">
<img src="/files/gifts/<?= $post['id']?>.png" class="th_img" width="96" height="96">
</a>
</div>
<?
}
?>
</div>
<?
}
if ($k_post && $k_page > 1){
?>
<div style="text-align: center;">
<?
str_vk('?act=send§ion=' . $cat['id'] . '&', $k_page, $page);
?>
</div>
<?
}
#Вывод категорий
if($user['level'] == 0){
$k_post_cat = mysql_result(mysql_query("SELECT COUNT(id) FROM `user_gifts_cat` WHERE `show_cat` = '1'"),0);
$q_cat = mysql_query("SELECT name,id,show_cat FROM `user_gifts_cat` WHERE `show_cat` = '1' ORDER BY `id`");
}
else{
$k_post_cat = mysql_result(mysql_query("SELECT COUNT(id) FROM `user_gifts_cat` WHERE `show_cat` != '0'"),0);
$q_cat = mysql_query("SELECT * FROM `user_gifts_cat` WHERE `show_cat` != '0' ORDER BY `id`");
}
if ($k_post_cat == 0){
?>
<div class="upanel bl_cont">
<a name="gifts"></a>
<div class="service_msg_box">
<div class="service_msg service_msg_null">Категории не найдены!</div>
</div>
</div>
<?
}
else{
?>
<div class="bottom_panel">
<div class="hp_block tabs_block">
<ul class="tabs_list">
<?
while ($p_cat = mysql_fetch_assoc($q_cat))
{
if($p_cat['id'] == $cat['id']){
?>
<li>
<a class="tab_item tab_item_cur al_tab" href="/gifts<?= $ank['id']?>?act=send&section=<?= $p_cat['id']?>"><?= text($p_cat['name'])?></a>
</li>
<?
}
else{
?>
<li>
<a class="tab_item al_tab" href="/gifts<?= $ank['id']?>?act=send&section=<?= $p_cat['id']?>"><?= text($p_cat['name'])?></a>
</li>
<?
}
}
?>
</ul>
</div>
</div>
<?
}
?>
</div>
<?
include_once '../sys/inc/tfoot.php';
exit;
}
elseif (isset($_GET['dell_my_gift'])){
$dell_gifts_us = mysql_fetch_assoc(mysql_query("SELECT * FROM `user_gifts` WHERE `id` = '" . intval($_GET['dell_my_gift']) . "' LIMIT 1"));
$dell_gift_us = mysql_fetch_assoc(mysql_query("SELECT id,name FROM `user_gifts_gift` WHERE `id` = '" . $dell_gifts_us['id_gift'] . "' LIMIT 1"));
$ankq = get_user($dell_gifts_us['id_user']);
if(isset($user) && $user['id'] == $ank['id'] || $user['level'] >= 4){
mysql_query("DELETE FROM `user_gifts` WHERE `id` = '$dell_gifts_us[id]' LIMIT 1");
$_SESSION['message'] = 'Подарок успешно удален.';
}
header("Location: /gifts".$ankq['id']."");
exit;
}
else{
$set['title'] = "Подарки";
include_once '../sys/inc/thead.php';
if(isset($user) && $user['id'] != $ank['id']){
shapka_VK(true, '/id'.$ank['id'].'', 'Подарки '.$ank['nick'].'');
}
elseif(isset($user) && $user['id'] == $ank['id']){
shapka_VK(true, '/id'.$ank['id'].'', 'Мои подарки ');
}
?>
<div class="pcont">
<?
uvedom();
if(isset($user) && $user['id'] != $ank['id']){
?>
<div class="head_panel">
<div class="hp_block tabs_block">
<ul class="tabs_list">
<li><a class="tab_item al_tab" href="/gifts<?= $user['id']?>" data-header="Мои подарки">Мои подарки</a></li>
<li><a class="tab_item tab_item_cur al_tab" href="/gifts<?= $ank['id']?>" data-header="Подарки Насти">Подарки <?= $ank['nick']?></a></li>
</ul>
</div>
</div>
<a class="new_item_link" href="/gifts<?= $ank['id']?>?act=send&section=1">Отправить подарок</a>
<?
}
elseif(isset($user) && $user['id'] == $ank['id']){
?>
<a class="new_item_link" href="/gifts<?= $ank['id']?>?act=friends">Отправить подарок</a>
<?
}
$k_post = mysql_result(mysql_query("SELECT COUNT(id) FROM `user_gifts` WHERE `id_user` = '$ank[id]'"),0);
if ($k_post == 0){
?>
<div class="upanel bl_cont">
<a name="gifts"></a>
<div class="service_msg_box">
<div class="service_msg service_msg_null"><?= ($user['id'] == $ank['id'] ? 'Вы ещё не получили ни одного подарка.' : ''.$ank['nick'].' ещё не получил'.($ank['pol'] == 1 ? '' : 'а').' ни одного подарка.')?></div>
</div>
</div>
<?
}
else{
$set['p_str'] = '15';
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT id,anon,koment,id_gift,id_ank,id_user,time FROM `user_gifts` WHERE `id_user` = '$ank[id]' ORDER BY `time` DESC LIMIT $start, $set[p_str]");
?>
<div class="upanel bl_cont">
<a name="gifts"></a>
<?
while ($post = mysql_fetch_assoc($q))
{
$gift = mysql_fetch_assoc(mysql_query("SELECT id,name FROM `user_gifts_gift` WHERE `id` = '$post[id_gift]' LIMIT 1"));
$anks = get_user($post['id_ank']);
$anks['nick'] = u_nick($anks['id']);
?>
<div class="post_item ">
<?
if($post['id_user'] == $user['id'] || $post['anon'] == 0){
?>
<a class="al_u<?= $anks['id']?>" href="/id<?= $anks['id']?>"><?= avka50($anks['id'], 'pi_img')?></a>
<?
}
else{
?>
<img src="/files/images/dquestion_c.gif" class="pi_img">
<?
}
?>
<div class="pi_cont">
<div class="pi_head">
<?
if($post['id_user'] == $user['id'] && $post['anon'] == 1){
?>
<div><a class="pi_author al_u<?= $anks['id']?> _u<?= $anks['id']?>" href="/id<?= $anks['id']?>"><?= $anks['nick']?></a> <?= on_($anks['id'])?> </div>
</div>
<div class="pi_body">
<div class="item_date">Имя отправителя видно только Вам</div>
<?
if($post['koment'] != NULL){
?>
<div class="pi_text"><?= output_text($post['koment'])?></div>
<?
}
}elseif($post['id_user'] != $user['id'] && $post['anon'] == 1){
?>
<?
if($user['level'] > 3){
?>
<div><a class="pi_author al_u<?= $anks['id']?> _u<?= $anks['id']?>" href="/id<?= $anks['id']?>"><?= $anks['nick']?></a> <?= on_($anks['id'])?> </div>
<?
}
else{
?>
<div><span class="pi_author">Неизвестный отправитель</span> </div>
<?
}
?>
<?
}elseif($post['anon'] == 0){
?>
<div><a class="pi_author al_u<?= $anks['id']?> _u<?= $anks['id']?>" href="/id<?= $anks['id']?>"><?= $anks['nick']?></a> <?= on_($anks['id'])?> </div>
</div>
<div class="pi_body">
<?
if($post['koment'] != NULL){
?>
<div class="pi_text"><?= output_text($post['koment'])?></div>
<?
}
}
?>
<div class="pi_medias audios_list medias_audios_list"><div class="gift_thumb">
<img class="th_img" src="/files/gifts/<?= $gift['id']?>.png" width="96">
</div></div>
<div class="pi_info"><span class="item_date"><?= vremja($post['time'])?></span></div>
<?
if(isset($user) && $user['id'] == $ank['id'] || $user['level'] >= 4){
?>
<div class="pi_links">
<a href="/gifts<?= $anks['id']?>?act=send§ion=1">Отправить подарок в ответ</a> | <a href="/gifts<?= $anks['id']?>?dell_my_gift=<?= $post['id']?>">Удалить</a>
</div>
<?
}
?>
</div>
</div>
</div>
<?
}
if ($k_post && $k_page > 1)
str_vk('/gifts' . $ank['id'] . '?',$k_page,$page); // Вывод страниц
?>
</div>
<?
}
?>
</div>
<?
}
include_once '../sys/inc/tfoot.php';
?>