<?
if (!isset($user) && !isset($_GET['id_user'])){header("Location: /modules/photo/?".SID);exit;}
if (isset($user))$ank['id'] = $user['id'];
if (isset($_GET['id_user']))$ank['id'] = intval($_GET['id_user']);
$ank = get_user($ank['id']);
if (!$ank){header("Location: /modules/photo/?".SID);exit;}
/* Бан пользователя */
if (mysql_result(query("SELECT COUNT(*) FROM `ban` WHERE `razdel` = 'foto' AND `id_user` = '$user[id]' AND (`time` > '$time' OR `view` = '0' OR `navsegda` = '1')"), 0) != 0)
{
header('Location: /ban.php?'.SID);
exit;
}
$gallery['id'] = intval($_GET['id_gallery']);
if (mysql_result(query("SELECT COUNT(*) FROM `gallery` WHERE `id` = '$gallery[id]' AND `id_user` = '$ank[id]' LIMIT 1"),0)==0)
{
header("Location: /modules/photo/$ank[id]/?".SID);
exit;
}
$gallery = mysql_fetch_assoc(mysql_query("SELECT * FROM `gallery` WHERE `id` = '$gallery[id]' AND `id_user` = '$ank[id]' LIMIT 1"));
$foto['id'] = intval($_GET['id_foto']);
if (mysql_result(mysql_query("SELECT COUNT(*) FROM `gallery_foto` WHERE `id` = '$foto[id]' LIMIT 1"),0)==0)
{
header("Location: /modules/photo/$ank[id]/$gallery[id]/?".SID);
exit;
}
$foto = mysql_fetch_assoc(mysql_query("SELECT * FROM `gallery_foto` WHERE `id` = '$foto[id]' LIMIT 1"));
/*
================================
Закладки
================================
*/
// Добавляем в закладки
if (isset($_GET['fav']) && $_GET['fav'] == 1)
{
if (mysql_result(mysql_query("SELECT COUNT(`id`) FROM `bookmarks` WHERE `id_user` = '" . $user['id'] . "' AND `id_object` = '" . $foto['id'] . "' AND `type`='foto' LIMIT 1"),0) == 0)
{
mysql_query("INSERT INTO `bookmarks` (`type`,`id_object`, `id_user`, `time`) VALUES ('foto','$foto[id]', '$user[id]', '$time')");
$_SESSION['message'] = 'Фото добавлено в закладки';
header("Location: /modules/photo/$ank[id]/$gallery[id]/$foto[id]/?page=" . intval($_GET['page']));
exit;
}
}
// Удаляем из закладок
if (isset($_GET['fav']) && $_GET['fav'] == 0)
{
if (mysql_result(mysql_query("SELECT COUNT(`id`) FROM `bookmarks` WHERE `id_user` = '" . $user['id'] . "' AND `id_object` = '" . $foto['id'] . "' `type`='foto' LIMIT 1"),0) == 1)
{
mysql_query("DELETE FROM `bookmarks` WHERE `id_user` = '$user[id]' AND `id_object` = '$foto[id]' AND `type`='foto'");
$_SESSION['message'] = 'Фото удалено из закладок';
header("Location: /modules/photo/$ank[id]/$gallery[id]/$foto[id]/?page=" . intval($_GET['page']));
exit;
}
}
$IS = GetImageSize(H.'sys/gallery/foto/'.$foto['id'].'.'.$foto['ras']);
printf("", $IS[0], $IS[1]);
$w = $IS[0];
$h = $IS[1];
if ((user_access('foto_foto_edit')) || (isset($user) && $ank['id'] == $user['id']))
include 'inc/gallery_show_foto_act.php';
/*------------очищаем счетчик этого обсуждения-------------*/
if (isset($user))
{
query("UPDATE `discussions` SET `count` = '0' WHERE `id_user` = '$user[id]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1");
query("UPDATE `notification` SET `read` = '1' WHERE `type` = 'foto_komm' AND `id_user` = '$user[id]' AND `id_object` = '$foto[id]'");
}
/*---------------------------------------------------------*/
/*
==========================
Оценка к фото
==========================
*/
if (isset($user) && $user['id'] != $ank['id'] && mysql_result(query("SELECT COUNT(*) FROM `gallery_rating` WHERE `id_user` = '$user[id]' AND `id_foto` = '$foto[id]'"), 0) == 0)
{
if ( isset($_GET['rating']) && $_GET['rating'] > 0 && $_GET['rating'] < 7 )
{
$c = mysql_result(query("SELECT COUNT(*) FROM `user_set` WHERE `id_user` = '$user[id]' AND `ocenka` > '$time'"), 0);
if ($c == 0 && $_GET['rating'] == 6)
{
$_SESSION['message'] = 'Необходимо активировать услугу';
header("Location: /user/money/plus5.php");
exit;
}
query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '" . intval($_GET['rating']) . "', '$time', $foto[id_user])",$db);
query("UPDATE `gallery_foto` SET `rating` = '" . ($foto['rating'] + intval($_GET['rating'])) . "' WHERE `id` = '$foto[id]' LIMIT 1",$db);
$_SESSION['message'] = 'Ваша оценка принята';
header("Location: ?");
exit;
}
}
/*
==========================
Комментарий
==========================
*/
if (isset($_POST['msg']) && isset($user))
{
$msg = $_POST['msg'];
if ($mat)$err[] = 'В тексте сообщения обнаружен мат: '.$mat;
if (strlen2($msg) > 1024 ){$err = 'Сообщение слишком длинное';}
elseif (strlen2($msg) < 2 ){$err = 'Короткое сообщение';}
elseif (mysql_result(query("SELECT COUNT(*) FROM `gallery_komm` WHERE `id_foto` = '$foto[id]' AND `id_user` = '$user[id]' AND `msg` = '".mysql_real_escape_string($msg)."' LIMIT 1"),0)!=0)
{
$err = 'Ваше сообщение повторяет предыдущее';
}
elseif(!isset($err))
{
//Начисление рейтинга и монет за активность
mysql_query("UPDATE `user` SET `money` = '" . ($user['money'] + 1) . "', `rating_tmp` = '" . ($user['rating_tmp'] + 0) . "' WHERE `id` = '$user[id]' LIMIT 1");
/*
==========================
Уведомления об ответах
==========================
*/
if (isset($ank_reply['id']))
{
$notifiacation = mysql_fetch_assoc(query("SELECT * FROM `notification_set` WHERE `id_user` = '" . $ank_reply['id'] . "' LIMIT 1"));
if ($notifiacation['komm'] == 1 && $ank_reply['id'] != $user['id'])
query("INSERT INTO `notification` (`avtor`, `id_user`, `id_object`, `type`, `time`) VALUES ('$user[id]', '$ank_reply[id]', '$foto[id]', 'foto_komm', '$time')");
}
/*
====================================
Обсуждения
====================================
*/
// Отправляем друзьям
$q = query("SELECT * FROM `frends` WHERE `user` = '".$gallery['id_user']."' AND `i` = '1'");
while ($f = mysql_fetch_array($q))
{
$a = get_user($f['frend']);
$discSet = mysql_fetch_array(query("SELECT * FROM `discussions_set` WHERE `id_user` = '".$a['id']."' LIMIT 1")); // Общая настройка обсуждений
if ($f['disc_foto'] == 1 && $discSet['disc_foto'] == 1)
{
if (mysql_result(query("SELECT COUNT(*) FROM `discussions` WHERE `id_user` = '$a[id]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1"),0)==0)
{
if ($a['id'] != $user['id'] || $a['id'] != $foto['id_user'])
query("INSERT INTO `discussions` (`id_user`, `avtor`, `type`, `time`, `id_sim`, `count`) values('$a[id]', '$gallery[id_user]', 'foto', '$time', '$foto[id]', '1')");
}
else
{
$disc = mysql_fetch_array(query("SELECT * FROM `discussions` WHERE `id_user` = '$a[id]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1"));
if ($gallery['id_user'] != $user['id'] || $a['id'] != $foto['id_user'])
query("UPDATE `discussions` SET `count` = '" . ($disc['count'] + 1) . "', `time` = '$time' WHERE `id_user` = '$a[id]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1");
}
}
}
// Отправляем автору
if (mysql_result(query("SELECT COUNT(*) FROM `discussions` WHERE `id_user` = '$gallery[id_user]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1"),0)==0)
{
if ($gallery['id_user'] != $user['id'])
query("INSERT INTO `discussions` (`id_user`, `avtor`, `type`, `time`, `id_sim`, `count`) values('$gallery[id_user]', '$gallery[id_user]', 'foto', '$time', '$foto[id]', '1')");
}
else
{
$disc2 = mysql_fetch_array(query("SELECT * FROM `discussions` WHERE `id_user` = '$gallery[id_user]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1"));
if ($gallery['id_user'] != $user['id'])
query("UPDATE `discussions` SET `count` = '".($disc2['count']+1)."', `time` = '$time' WHERE `id_user` = '$gallery[id_user]' AND `type` = 'foto' AND `id_sim` = '$foto[id]' LIMIT 1");
}
query("INSERT INTO `gallery_komm` (`id_foto`, `id_user`, `time`, `msg`) values('$foto[id]', '$user[id]', '$time', '".my_esc($msg)."')");
$_SESSION['message'] = 'Сообщение успешно добавлено';
header("Location: ?page=".intval($_GET['page']));
exit;
}
}
if ((user_access('foto_komm_del') || $ank['id'] == $user['id']) && isset($_GET['delete']) && mysql_result(query("SELECT COUNT(*) FROM `gallery_komm` WHERE `id`='".intval($_GET['delete'])."' AND `id_foto`='$foto[id]' LIMIT 1"),0)!=0)
{
query("DELETE FROM `gallery_komm` WHERE `id`='".intval($_GET['delete'])."' LIMIT 1");
admin_log('Фотогалерея','Фотографии', "Удаление комментария к фото [url=/id$ank[id]]" . user::nick($ank['id'], 0) . "[/url]");
$_SESSION['message'] = 'Комментарий успешно удален';
header("Location: ?page=".intval($_GET['page']));
exit;
}
$set['title'] = text($gallery['name']) . ' - ' . text($foto['name']); // заголовок страницы
include_once '../../sys/inc/thead.php';
title();
err();
aut();
// Подключаем приватность стр.
include H.'sys/add/user.privace.php';
/*
* Если установлена приватность альбома
*/
if ($gallery['privat'] == 1 && ($frend != 2 || !isset($user)) && $user['level'] <= $ank['level'] && $user['id'] != $ank['id'])
{
echo '<div class="mess">';
echo 'Просматривать альбом пользователя могут только его друзья!';
echo '</div>';
$block_foto = true;
}
elseif ($gallery['privat'] == 2 && $user['id'] != $ank['id'] && $user['level'] <= $ank['level'])
{
echo '<div class="mess">';
echo 'Пользователь запретил просмотр этого альбома!';
echo '</div>';
$block_foto = true;
}
/*--------------------Альбом под паролем-------------------*/
if ($user['id'] != $ank['id'] && $gallery['pass'] != NULL)
{
if (isset($_POST['password']))
{
$_SESSION['pass'] = my_esc($_POST['password']);
if ($_SESSION['pass'] != $gallery['pass'])
{
$_SESSION['message'] = 'Неверный пароль';
$_SESSION['pass'] = NULL;
}
header("Location: ?");
}
if (!isset($_SESSION['pass']) || $_SESSION['pass'] != $gallery['pass'])
{
echo '<form action="?" method="POST">Пароль:<br /><input type="pass" name="password" value="" /><br />
<input type="submit" value="Войти"/></form>';
echo '<div class="foot">';
echo '<img src="/style/icons/str2.gif" alt="*"> ' . user::nick($ank['id']) . ' | <a href="/modules/photo/' . $ank['id'] . '/">Альбомы</a> | <b>' . text($gallery['name']) . '</b>';
echo '</div>';
include_once '../../sys/inc/tfoot.php';
exit;
}
}
/*---------------------------------------------------------*/
if (!isset($block_foto)){
if (($user['abuld'] == 1 || $foto['metka'] == 0 || $foto['id_user'] == $user['id'])){
echo '<div class="menu"><center>';
echo "<a href='/modules/photo/foto0/$foto[id].$foto[ras]'><img style='max-width: 250px; border-radius: 4px;' src='/modules/photo/foto640/$foto[id].$foto[ras]'/></a>";
echo '</center></div>';
}else
if (!isset($user)){
echo '<div class="mess">';
echo '<img src="/style/icons/small_adult.gif" alt="*"><br /> Данный файл содержит изображения эротического характера. Только зарегистрированные пользователи старше 18 лет могут просматривать такие файлы. <br />';
echo '<a href="/aut.php">Вход</a> | <a href="/reg.php">Регистрация</a>';
echo '</div>';
}
else
{
echo '<div class="mess">';
echo '<img src="/style/icons/small_adult.gif" alt="*"><br />
Данный файл содержит изображения эротического характера.
Если Вас это не смущает и Вам 18 или более лет, то можете <a href="?sess_abuld=1">продолжить просмотр</a>.
Или Вы можете отключить предупреждения в <a href="/user/info/settings.php">настройках</a>.';
echo '</div>';
}
if (($user['abuld'] == 1 || $foto['metka'] == 0 || $foto['id_user'] == $user['id']))
{
if (user_access('foto_foto_edit') && $ank['level'] < $user['level'] || isset($user) && $ank['id'] == $user['id'])
include 'inc/gallery_show_foto_form.php';
}
$k_post = mysql_result(query("SELECT COUNT(*) FROM `gallery_komm` WHERE `id_foto` = '$foto[id]'"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
if ($k_post == 0){
echo '<div class="menu">Нет комментариев</div>';
}
$q = query("SELECT * FROM `gallery_komm` WHERE `id_foto` = '$foto[id]' ORDER BY `id` $sort LIMIT $start, $set[p_str]");
while ($post = mysql_fetch_assoc($q)){
$ank2 = mysql_fetch_assoc(query("SELECT * FROM `user` WHERE `id` = '$post[id_user]' LIMIT 1"));
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1"));
if ($ank['official'] == 1) $official = ' <img src="/img/official.png"> '; else $official = '';
echo '<table class="menu">';
echo '<td class="block_avatar">';;
if (isset($user) && $user['id'] != $ank2['id'])
echo '<a href="?response=' . $ank2['id'] . '&page=' . $page . '">';
echo ''.avatar($ank2['id']).'</a>'.online($ank2['id']).'';
echo '</td>';
echo '<td class="block_content">';
echo ''.group($ank2['id']).' '.user::nick($ank2['id']).' '.medal($ank2['id']).' '.$official.'';
echo '<span class="time">' . vremja($post['time']) . '</span></br>';
$postBan = mysql_result(query("SELECT COUNT(*) FROM `ban` WHERE (`razdel` = 'all' OR `razdel` = 'foto') AND `post` = '1' AND `id_user` = '$ank2[id]' AND (`time` > '$time' OR `navsegda` = '1')"), 0);
//------------Блок сообщения
if ($postBan == 0) {
echo '<div class="msg_text">'.output_text($post['msg']).'';
}else{
echo output_text($banMess) . '<br />';
}
if (isset($user)){
if (user_access('foto_komm_del') || $ank['id'] == $user['id'])
echo '<td><span style="float:right;"><a rel="delete" href="?delete=' . $post['id'] . '&page=' . $page . '"><i class="fas fa-times"></i></a></span></td>';
}
echo '</td></table>';
}
if ($k_page > 1)str('?',$k_page,$page); // Вывод страниц
if (isset($user)){
echo '<div class="menu">';
echo '<form method="post" name="message" action="?page=' . $pageEnd . '&' . REPLY . '">';
if (is_file(H.'style/themes/'.$set['set_them'].'/altername_post_form.php'))
include_once H.'style/themes/'.$set['set_them'].'/altername_post_form.php';
else
echo '<textarea name="msg">' . $insert . '</textarea><br />';
echo '<table>';
echo '<td><input value="Отправить" type="submit" /></td>';
?><td width="1"><a href="#" onclick="$('.smile').toggle();return false;"><img src="/style/smiles/38.gif"></a></td><?
echo '</table>';
echo '</form>';
echo '</div>';
include '../../modules/smiles/smile.php';
}
}
include_once '../../sys/inc/tfoot.php';
exit;
?>