<?php
if (!isset($user) && !isset($_GET['id_user'])) {
header("Location: " . DIR_FOTO . "?" . SID);
exit;
}
if (isset($user)) {
$ank['id'] = $user['id'];
}
if (isset($_GET['id_user'])) {
$ank['id'] = $_GET['id_user'];
}
$ank = get_user($ank['id']);
if (!$ank) {
header("Location: " . DIR_FOTO . "?" . SID);
exit;
}
$gallery['id'] = intval($_GET['id_gallery']);
if ($pdo->query(("SELECT COUNT(*) FROM `gallery` WHERE `id` = '$gallery[id]' AND `id_user` = '$ank[id]' LIMIT 1"), 0)->fetchColumn() == 0) {
header("Location: " . DIR_FOTO . "$ank[id]/?" . SID);
exit;
}
$gallery = $pdo->query(("SELECT * FROM `gallery` WHERE `id` = '$gallery[id]' AND `id_user` = '$ank[id]' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
$foto['id'] = intval($_GET['id_foto']);
if (isset($user) && isset($_GET['save']) && $user['id'] == $ank['id']) {
crop(H . "sys/gallery/avatar/$foto[id].jpg", H . "sys/gallery/50/$foto[id].tmp.jpg");
resize(H . "sys/gallery/50/$foto[id].tmp.jpg", H . "sys/gallery/50/$foto[id].jpg", 50, 50);
@chmod(H . "sys/gallery/50/$foto[id].jpg", 0777);
@unlink(H . "sys/gallery/50/$foto[id].tmp.jpg");
$_SESSION['message'] = lang('Изменения сохранены');
header("Location: ?" . SID);
exit;
}
if ($pdo->query(("SELECT COUNT(*) FROM `gallery_foto` WHERE `id` = '$foto[id]' LIMIT 1"), 0)->fetchColumn() == 0) {
header("Location: " . DIR_FOTO . "$ank[id]/$gallery[id]/?" . SID);
exit;
}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = '$foto[id]' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
if (isset($_GET['fav']) && $_GET['fav'] == 1) {
if ($pdo->query(("SELECT COUNT(*) FROM `bookmark_foto` WHERE `id_user` = '" . $user['id'] . "' AND `id_foto` = '" . $foto['id'] . "' LIMIT 1"), 0)->fetchColumn() == 0) {
$pdo->query("INSERT INTO `bookmark_foto` (`id_foto`, `id_user`, `time`) VALUES ('$foto[id]', '$user[id]', '$time')");
$_SESSION['message'] = lang('Фото добавлено в закладки');
header("Location: " . DIR_FOTO . "$ank[id]/$gallery[id]/$foto[id]/?page=" . intval($_GET['page']));
exit;
}
}
if (isset($_GET['fav']) && $_GET['fav'] == 0) {
if ($pdo->query(("SELECT COUNT(*) FROM `bookmark_foto` WHERE `id_user` = '" . $user['id'] . "' AND `id_foto` = '" . $foto['id'] . "' LIMIT 1"), 0)->fetchColumn() == 1) {
$pdo->query("DELETE FROM `bookmark_foto` WHERE `id_user` = '$user[id]' AND `id_foto` = '$foto[id]' ");
$_SESSION['message'] = lang('Фото удалено из закладок');
header("Location: " . DIR_FOTO . "$ank[id]/$gallery[id]/$foto[id]/?page=" . intval($_GET['page']));
exit;
}
}
if (isset($_GET['like_post']))
{
if ($pdo->query(("SELECT COUNT(*) FROM `like_post` WHERE `id_user` = '".$user['id']."' AND `id_post` = '".intval($_GET['like_post'])."' AND `type` = 'foto' LIMIT 1"),0)->fetchColumn()==0){
$pdo->query("INSERT INTO `like_post` (`id_post`, `id_user`, `like`, `time`, `type`) VALUES ('".intval($_GET['like_post'])."', '$user[id]', '1', '$time', 'foto')");
$_SESSION['message'] = 'Ваш голос засчитан';
header("Location: /modules/foto/$ank[id]/$gallery[id]/$foto[id]/");
exit;
}
}
if (isset($_GET['del_file'])){
$q1 = $pdo->query("SELECT * FROM `files_post` WHERE `id` = '" . intval($_GET['del_file']) . "' AND `id_user` = '" .$user['id']. "' AND `type` = 'foto'");
while ($d = $q1->fetch(PDO::FETCH_ASSOC)) {
unlink(htmlspecialchars($_SERVER['DOCUMENT_ROOT']).'/sys/files_post/'.$d['id'].'.jpg');
}
$pdo->query("DELETE FROM `files_post` WHERE `id` = '" . intval($_GET['del_file']) . "' AND `id_user` = '" .$user['id']. "' AND `type` = 'foto'");
$_SESSION['message'] = lang('Вложение успешно удалено');
header("Location: /modules/foto/$ank[id]/$gallery[id]/$foto[id]/");
}
if (isset($_GET['like']) && $_GET['like'] == 1) {
if ($pdo->query(("SELECT COUNT(*) FROM `gallery_like` WHERE `id_foto` = '$foto[id]' AND `id_user` = '$user[id]' LIMIT 1"), 0)->fetchColumn() != 0) {
} else {if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_like']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] понравилось ваше фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '".intval($ank['id'])."', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_like_', '$time')");
/////////////////////////////////////////////////
}}
$pdo->query("INSERT INTO `gallery_like` (`id_user`, `id_foto`, `like`) values('$user[id]', '$foto[id]', '1')");
}
header("Location: " . DIR_FOTO . "$ank[id]/$gallery[id]/$foto[id]/?page=" . intval($_GET['page']));
exit;
}
// Запись просмотра
if (isset($user) && $pdo->query(("SELECT COUNT(*) FROM `foto_count` WHERE `id_user` = '".$user['id']."' AND `id_foto` = '".$foto['id']."' LIMIT 1"),0)->fetchColumn()==0){
$pdo->query("INSERT INTO `foto_count` (`id_foto`, `id_user`) VALUES ('$foto[id]', '$user[id]')")->fetchColumn();
}
@$pdo->query("UPDATE `gallery_foto` SET `k_loads` = '".htmlspecialchars(($foto['k_loads']+1))."' WHERE `id` = '$foto[id]' LIMIT 1");
$set['title'] = $ank['nick'] . ' - ' . $gallery['name'] . ' - ' . $foto['name'];
require_once H . 'sys/inc/thead.php';
aut();
err();
if (access('foto_foto_edit') && $ank['level'] > $user['level'] || isset($user) && $ank['id'] == $user['id']) {
include 'inc/gallery_show_foto_act.php';
}
if (isset($user) && $user['id'] != $ank['id'] && $pdo->query(("SELECT COUNT(*) FROM `gallery_rating` WHERE `id_user` = '$user[id]' AND `id_foto` = '$foto[id]'"), 0)->fetchColumn() == 0) {
if (isset($_GET['rating']) && $_GET['rating'] == '1') {
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '1', '$time', $foto[id_user])");
/////////////////////////журнал///////////////
if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 1 к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
} elseif (isset($_GET['rating']) && $_GET['rating'] == '2') {
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '2', '$time', $foto[id_user])");
/////////////////////////журнал///////////////
if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 2 к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
} elseif (isset($_GET['rating']) && $_GET['rating'] == '3') {
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '3', '$time', $foto[id_user])");
/////////////////////////журнал///////////////
if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 3 к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
} elseif (isset($_GET['rating']) && $_GET['rating'] == '4') {
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '4', '$time', $foto[id_user])");
/////////////////////////журнал///////////////
if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 4 к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
} elseif (isset($_GET['rating']) && $_GET['rating'] == '5') {
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '5', '$time', $foto[id_user])");
/////////////////////////журнал///////////////
if($foto['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 5 к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
} elseif (isset($_GET['rating']) && $_GET['rating'] == '5i') {
$c = $pdo->query(("SELECT COUNT(*) FROM `ocenky` WHERE `id_user` = '$user[id]' AND `time` > '$time'"), 0)->fetchColumn();
if ($c == 1) {
/////////////////////////журнал///////////////
if (isset($user) && $ank['id']!=$user['id']){
if ($ank['jurnal_foto_oc']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] поставил(а) оценку 5+ к вашему фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'foto_oc', '$time')");
/////////////////////////////////////////////////
}}
$pdo->query("INSERT INTO `gallery_rating` (`id_user`, `id_foto`, `like`, `time`, `avtor`) values('$user[id]', '$foto[id]', '6', '$time', $foto[id_user])");
$pdo->query("UPDATE `gallery_foto` SET `rating` = '" . ($foto['rating'] + 10) . "' WHERE `id` = '$foto[id]' LIMIT 1");
} else {
$_SESSION['url'] = "/modules/foto/$ank[id]/$gallery[id]/$foto[id]/";
header("Location: /modules/shop/plus5.php");
}
}
}
if (IS_WEB) {
$di = '640';
$width = '350';
} else {
$width = '';
$di = '128';
}
#Навигация
echo "<div class='card-header'>";
echo "<a href='/' data-toggle='tooltip' data-placement='right' title='" . lang('На главную') . "'><i class='fa fa-home fa-lg'></i></a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='/info.php?id=$ank[id]'>$ank[nick]</a> <i class='fa fa-angle-right fa-fw'></i> ";
echo "<a href='" . DIR_FOTO . "$ank[id]/'>" . lang('фотоальбомы') . "</a> <i class='fa fa-angle-right fa-fw'></i> фото";
echo "</div>";
if (isset($_POST['password'])) {
setcookie("passfoto[$gallery[id]]", $_POST['password']);
if (isset($_POST['password']) && $_POST['password'] == $gallery['password']) {
header("Location:?enter=ok");
}
}
if ($gallery['access'] == 'only_me') {
if ($ank['id'] == $user['id'] && isset($user) || $user['level'] >= 3 && isset($user) || isset($umodd)) {
} else {
echo '<div class="list-group-item">';
echo '<center><img src="/style/info/12.png" style="width: 120px; height: 120px;"><br><br><b>Пользователь запретил всем просмотр этого альбома</b></center>';
echo '</div>';
require_once H . 'sys/inc/tfoot.php';
exit;
}
} elseif ($gallery['access'] == 'friends') {
if ($ank['id'] == $user['id'] && isset($user) || isset($umodd) || $pdo->query(("SELECT COUNT(*) FROM `friendsi` WHERE (`user` = '$user[id]' AND `friendsi` = '$ank[id]') OR (`user` = '$ank[id]' AND `friendsi` = '$user[id]')"), 0)->fetchColumn() != 0) {
} else {
echo '<div class="list-group-item">';
echo '<center><img src="/style/info/7.png" style="width: 120px; height: 120px;"><br><br><b>Альбом доступен только для друзей пользователя</b></center>';
echo '</div>';
require_once H . 'sys/inc/tfoot.php';
exit;
}
} elseif ($gallery['access'] == 'pass') {
if (isset($_COOKIE['passfoto'][$gallery['id']]) && $_COOKIE['passfoto'][$gallery['id']] == $gallery['password'] || $ank['id'] == $user['id'] && isset($user) || isset($umodd)) {
} else {
if (isset($_POST['password']) && $_POST['password'] != $gallery['password']) {
$_SESSION['err'] = lang('Пароль неправильный');
}
err();
echo '<div class="list-group-item">';
echo '<center><img src="/style/info/22.png" style="width: 120px; height: 120px;"><br><br><b>Доступ к альбому доступен только по паролю</b></center>';
echo '<form method="POST"><br /><br /><b>Пароль:</b> <br /><input class="form-control" type="text" name="password" value="" />
<input class="btn btn-primary btn-sm" type="submit" value="Готово"/></form>';
echo '</div>';
require_once H . 'sys/inc/tfoot.php';
exit;
}
} elseif ($gallery['access'] == 'auth') {
if (isset($user)) {
} else {
echo "<div class='alert alert-danger'><i class='fa fa-user fa-fw'></i> " . lang('Фотоальбом доступен только авторизованным пользователям') . "!</div>";
require_once H . 'sys/inc/tfoot.php';
exit;
}
}
if (isset($user)) {
$user['ank_age'] = 0;
if ($user['ank_d_r'] != NULL && $user['ank_m_r'] != NULL && $user['ank_g_r'] != NULL) {
$user['ank_age'] = date("Y") - $user['ank_g_r'];
if (date("n") < $user['ank_m_r']) {
$user['ank_age'] = $user['ank_age'] - 1;
} elseif (date("n") == $user['ank_m_r'] && date("j") < $user['ank_d_r']) {
$user['ank_age'] = $user['ank_age'] - 1;
}
}
}
if (!isset($_SESSION['foto_adult']) && !isset($_GET['passed']) && $user['ank_age'] < 18 && $foto['adult'] == 1) {
if (!isset($user)) {
echo "<div class='list-group-item'>";
echo lang('Фото с меткой') . " <font color='red'>(+18)</font> " . lang('доступны только для авторизованных пользователей. Пожалуйста, пройдите процесс') . " <a href='/aut.php'>" . lang('авторизации') . "</a> или <a href='/reg.php'>" . lang('регистрации') . "</a>";
echo "</div>";
require_once H . 'sys/inc/tfoot.php';
exit;
}
echo "<div class='list-group-item'>";
echo '<center><img src="/style/info/12.png" style="width: 120px; height: 120px;"><br><br><b>
Данный файл могут просматривать только пользователи, которым уже есть 18<br><br>
Вы подтверждаете, что Вам уже есть 18 лет?<br>
<a class="btn btn-primary btn-sm" href="?passed">Да</a> <a class="btn btn-secondary btn-sm" href="' . DIR_FOTO . '$ank[id]/">Нет</a>
</b></center></div>';
require_once H . 'sys/inc/tfoot.php';
exit;
}
if (!isset($_SESSION['foto_adult']) && isset($_GET['passed']) && $foto['adult'] == 1) {
$_SESSION['foto_adult'] = 1;
}
$foto = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id` = $foto[id] LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
$rat = $pdo->query(("SELECT COUNT(*) FROM `gallery_rating` WHERE `id_foto` = $foto[id] AND `like` = '6'"), 0)->fetchColumn();
$r = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id_gallery` = '$gallery[id]' AND `id` < '$foto[id]' ORDER BY `id` DESC LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
$l = $pdo->query(("SELECT * FROM `gallery_foto` WHERE `id_gallery` = '$gallery[id]' AND `id` > '$foto[id]' ORDER BY `id` ASC LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
if (isset($_GET['act']) && $_GET['act'] == 'avatar' && $ank['id'] == $user['id']) {
echo "<form class='list-group-item' action='?act=avatar&ok' method=\"post\">";
echo lang('Вы уверены что хотите установить это фото в профиль?') . "<br />";
$doc->Button('btn btn-primary btn-sm', null, 'check', 'Установить');
$doc->Link('btn btn-secondary btn-sm', '?', null, 'Отмена');
echo "</form>";
}
if ($pdo->query(("SELECT COUNT(*) FROM `gallery` WHERE `name` = 'Личные фото' AND `id` = '$gallery[id]' AND `id_user` = '$gallery[id_user]' LIMIT 1"), 0)->fetchColumn()) {
if ($foto['private_foto']==0){
$pdo->query("UPDATE `gallery_foto` SET `private_foto` = '1' WHERE `id`='".$foto['id']."'");
}
}
echo "<div class = 'list-group-item'><font color=#15A2AF><i class='fa fa-image'></i></font> <b>" . toOutput($foto['name']) . ".$foto[ras]</b> ";
if ($foto['adult']==1){
echo '<span style="border: 1px #AEB6BD solid; border-radius: 3px; color: red;"><small><b>18+</b></small></span>';
}
echo "</div>";
if ($foto['block_yes']==1)
{
echo "<div class='list-group-item'>\n";
echo "<br><div class='mess'>";
echo "<b>Фото заблокировано модератором ";
echo user($foto['id_block']);
echo " </b><br><br>";
echo "Причина: ";
if ($foto['block']==1){
echo "Грубость и оскорбления";
}
if ($foto['block']==2){
echo "Разжигание ненависти";
}
if ($foto['block']==3){
echo "Мошенничество";
}
if ($foto['block']==4){
echo "Нецензурная лексика";
}
if ($foto['block']==5){
echo "Педофилия";
}
if ($foto['block']==6){
echo "Спам, реклама или мошенничество ";
}
if ($foto['block']==7){
echo "Иная ";
}
echo "<br><br>";
echo "Комментарий: $foto[block_comm]";
echo "</div><br>";
}else{
echo "<div class='list-group-item' style='text-align: center;'>\n";
if (IS_WEB) {
echo "<div style='display:inline;'><img class='show_foto' src='" . DIR_FOTO . "foto0/$foto[id].$foto[ras]' style = '-moz-box-shadow: 0 0 10px rgba(0,0,0,0.5);-webkit-box-shadow: 0 0 10px rgba(0,0,0,0.5);box-shadow: 0 0 10px rgba(0,0,0,0.5);border: 1px solid #CCDDED; padding: 2px; border-radius: 5px; max-width: 450px; max-height: 450px; ' alt='$foto[name]' /></div>\n";
} else {
echo "<div style='display:inline;'><img class='show_foto' src='" . DIR_FOTO . "foto0/$foto[id].$foto[ras]' style = '-moz-box-shadow: 0 0 10px rgba(0,0,0,0.5);-webkit-box-shadow: 0 0 10px rgba(0,0,0,0.5);box-shadow: 0 0 10px rgba(0,0,0,0.5);border: 1px solid #CCDDED; padding: 2px; border-radius: 5px; max-width: 200px; max-height: 200px;' alt='$foto[name]' /></div>\n";
}
//echo "".htmlspecialchars($_SERVER['DOCUMENT_ROOT'])."" . DIR_FOTO . "foto0/$foto[id].$foto[ras]";
if ($rat > 0) {
echo "<div style='display:inline;margin-left:-25px;vertical-align:top;'><img style='padding-top:10px;' src='/style/icons/6.png'/></div>";
}
if ($foto['opis'] != null) {
echo "</br></br>";
echo toOutput($foto['opis']) . "<br />\n";
}
echo "</br></br>";
$k_p = $pdo->query(("SELECT COUNT(*) FROM `gallery_frend` where `id_foto` = '$foto[id]'"), 0)->fetchColumn();
if ($k_p > 0) {
if ($k_p == 1) {
$ot = lang('отмечен');
} else {
$ot = lang('отмечены');
}
echo "<small style='color: grey;'>" . lang('На этом фото') . " $ot </small><br />";
$q = $pdo->query("SELECT * FROM `gallery_frend` where `id_foto` = '$foto[id]'");
$n = 0;
while ($post = $q->fetch(PDO::FETCH_ASSOC)) {
$n++;
$f = get_user($post['id_user']);
if ($f['id'] != $user['id']) {
echo " <a href='/info.php?id=$f[id]'>$f[nick]</a>, ";
} else {
echo "<b>Только Вы</b>";
}
}
echo "</br></br>";
}
if (isset($user) && $user['id'] != $ank['id'] && $pdo->query(("SELECT COUNT(*) FROM `gallery_rating` WHERE `id_user` = '$user[id]' AND `id_foto` = '$foto[id]'"), 0)->fetchColumn() == 0) {
echo "<center>";
echo "<a load='none' href=\"?id=$foto[id]&rating=1\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 1?') . "'><img src='/style/icons/1.png' alt=''/></a> ";
echo "<a load='none' href=\"?id=$foto[id]&rating=2\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 2?') . "'><img src='/style/icons/2.png' alt=''/></a> ";
echo "<a load='none' href=\"?id=$foto[id]&rating=3\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 3?') . "'><img src='/style/icons/3.png' alt=''/></a> ";
echo "<a load='none' href=\"?id=$foto[id]&rating=4\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 4?') . "'><img src='/style/icons/4.png' alt=''/></a> ";
echo "<a load='none' href=\"?id=$foto[id]&rating=5\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 5?') . "'><img src='/style/icons/5.png' alt=''/></a> ";
echo "<a load='none' href=\"?id=$foto[id]&rating=5i\" data-toggle='tooltip' data-placement='top' title='" . lang('Ваша оценка 5') . "+?'><img src='/style/icons/6.png' alt=''/></a> ";
echo "</center>";
} else {
$rate = $pdo->query(("SELECT * FROM `gallery_rating` WHERE `id_foto` = $foto[id] AND `id_user` = '$user[id]' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
if (isset($user) && $user['id'] != $ank['id']) {
echo "<center>Ваша оценка <img style='vertical-align:middle;' src='/style/icons/$rate[like].png' alt=''/></a></center>";
}
}
}
if (access('loads_file_edit')){
?>
<style>
.adm {
background-color: #F8EDEA;
padding: 5px;
color: #B99488;
border: 1px #E0BCB1 solid;
border-radius: 3px;
}
</style>
<?
echo '<br>';
if (access('adm_mysql')){
if($foto['top']==1){
echo "<a style='float: left;margin-right: 2px;' href='/modules/foto/admin/top_delete.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]&delete'><button class='adm'>Удл. из ТОПа</button></a> ";
}else{
echo "<a style='float: left;margin-right: 2px;' href='/modules/foto/admin/top_delete.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]&v'><button class='adm'>В ТОП</button></a> ";
}
}
if ($foto['block_yes']==1)
{
echo " <a style='float: left;' href='/modules/foto/admin/block.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]&r'><button class='adm'>Разблокировать</button></a> ";
}else{
echo " <a style='float: left;' href='/modules/foto/admin/block.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]'><button class='adm'>Заблокировать</button></a> ";
}
$ban = $pdo->query(("SELECT * FROM `ban_files` WHERE `id_files` = '$foto[id]' AND `id_user` = '$user[id]' AND `type` = 'photo' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
if ($ban['status']==1)
{
echo " <a style='float: left; position: relative; left: 2px;' href='/modules/foto/admin/ban.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]'><button class='adm'>Снять бан</button></a> ";
}else{
echo " <a style='float: left; position: relative; left: 2px;' href='/modules/foto/admin/ban.php?id=$foto[id]&id_gallery=$gallery[id]&ank=$ank[id]'><button class='adm'>Выдать бан</button></a> ";
}
}
echo "</div>";
if ($r['id'] || $l['id']) {
echo "<div class=\"list-group-item\"><center>\n";
if ($l['id']) {
echo "<a href='/modules/foto/$ank[id]/$gallery[id]/$l[id]/'>«Пред.</a>";
}
if ($r['id'] && $l['id']) {
echo " • ";
}
if ($r['id']) {
echo "<a href='/modules/foto/$ank[id]/$gallery[id]/$r[id]/'>След.»</a>";
}
echo "</center></div>\n";
}
echo "<div class='list-group-item'>";
echo "<b>Добавил:</b> ";
user($ank['id']);
echo " <span style='float: right;'>" . date::timek($foto['time']) . "</span>";
echo "<br><br><b>Папка:</b> <font color='#D59435'><i class='fa fa-folder'></i></font> <a href='/modules/foto/".$gallery['id_user']."/".$gallery['id']."/'><font color='black'><b>".text($gallery['name'])."</b></font></a> ";
echo "</div>";
$share = $pdo->query(("SELECT COUNT(*)FROM `notes` WHERE `share_id`='".$foto['id']."' AND `share_type`='foto'"),0)->fetchColumn();
if (isset($user)) {
echo "<div class='list-group-item'>";
if (isset($user) && $user['id']==$foto['id_user'] || access('adm_mysql')){
echo "<a href='/modules/foto/laiki.php?id=".$foto['id']."'><span style='padding: 4px;margin-right: 5px; border: 1px #FC9373 solid; border-radius: 16%; color: #FC9373'><i class='fa fa-heart fa-fw'></i> <b><font color=#E9432C>" . $pdo->query(("SELECT COUNT(*) FROM `gallery_like` WHERE `id_foto` = '$foto[id]' LIMIT 1"), 0)->fetchColumn() . "</font></b></span></a>";
echo "<a href='/modules/foto/prosmotry.php?id=".$foto['id']."'><span style='padding: 4px;margin-right: 5px; border: 1px #6CCA70 solid; border-radius: 16%; color: #6CCA70'><i class='fa fa-eye fa-fw'></i> <b><font color=#49994C>" . $pdo->query(("SELECT COUNT(*) FROM `foto_count` WHERE `id_foto` = '$foto[id]'"), 0)->fetchColumn() . "</font></b></span></a>";
echo "<a href='/modules/foto/zakladki.php?id=".$foto['id']."'><span style='padding: 4px;margin-right: 5px; border: 1px #CFBD19 solid; border-radius: 16%; color: #CFBD19'><i class='fa fa-star fa-fw'></i> <b><font color=#978C2B>" . $pdo->query(("SELECT COUNT(*) FROM `bookmark_foto` WHERE `id_foto` = '$foto[id]' LIMIT 1"), 0)->fetchColumn() . "</font></b></span></a>";
echo "<a href='/modules/foto/reposty.php?id=".$foto['id']."'><span style='padding: 4px;margin-right: 5px; border: 1px #63BAFF solid; border-radius: 16%; color: #63BAFF'><i class='fa fa-mail-forward fa-fw'></i> <font color=#659CC7><b>$share</b></font></span></a>";
}else{
echo "<span style='padding: 4px;margin-right: 5px; border: 1px #FC9373 solid; border-radius: 16%; color: #FC9373'><i class='fa fa-heart fa-fw'></i> <b>" . $pdo->query(("SELECT COUNT(*) FROM `gallery_like` WHERE `id_foto` = '$foto[id]' LIMIT 1"), 0)->fetchColumn() . "</b></span>";
echo "<span style='padding: 4px;margin-right: 5px; border: 1px #6CCA70 solid; border-radius: 16%; color: #6CCA70'><i class='fa fa-eye fa-fw'></i> <b>" . $pdo->query(("SELECT COUNT(*) FROM `foto_count` WHERE `id_foto` = '$foto[id]'"), 0)->fetchColumn() . "</b></span>";
echo "<span style='padding: 4px;margin-right: 5px; border: 1px #CFBD19 solid; border-radius: 16%; color: #CFBD19'><i class='fa fa-star fa-fw'></i> <b>" . $pdo->query(("SELECT COUNT(*) FROM `bookmark_foto` WHERE `id_foto` = '$foto[id]' LIMIT 1"), 0)->fetchColumn() . "</b></span>";
echo "<span style='padding: 4px;margin-right: 5px; border: 1px #63BAFF solid; border-radius: 16%; color: #63BAFF'><i class='fa fa-mail-forward fa-fw'></i> <b>$share</b></span>";
}
echo "<br /><br />";
if ($pdo->query(("SELECT COUNT(*) FROM `bookmark_foto` WHERE `id_user` = '" . $user['id'] . "' AND `id_foto` = '" . $foto['id'] . "' LIMIT 1"), 0)->fetchColumn() == 0) {
echo "<a style='margin-top: 3px;' href='?fav=1' class='btn btn-info-outline btn-sm hint--top'><i class='fa fa-star-o fa-fw'></i> Добавить в закладки</a> ";
} else {
echo "<a style='margin-top: 3px;' href='?fav=0' class='btn btn-info-outline btn-sm hint--top'><i class='fa fa-star fa-fw'></i> Убрать из закладок</a> ";
}
if ($pdo->query(("SELECT COUNT(*) FROM `gallery_like` WHERE `id_foto` = '$foto[id]' AND `id_user` = '$user[id]' LIMIT 1"), 0)->fetchColumn() == 0) {
echo "<a style='margin-top: 3px;' href='?like=1' class='btn btn-info-outline btn-sm hint--top'><i class='fa fa-heart-o fa-fw'></i> Мне нравится</a> ";
} else {
echo "<a style='margin-top: 3px;' href='?like=0' class='btn btn-info-outline btn-sm hint--top'><i class='fa fa-heart fa-fw'></i></a> ";
}
if ($foto['id_user']==$user['id']){
echo " <a style='margin-top: 3px;' class='btn btn-info-outline btn-sm' href='/modules/foto/per.php?id=".$foto['id']."'><i class='fa fa-share-square-o fa-fw'></i> Переместить</a>\n";
if ($foto['obmen']==0){
echo " <a style='margin-top: 3px;' class='btn btn-info-outline btn-sm' href='/modules/foto/obmen.php?id=".$foto['id']."'><i class='fa fa-upload fa-fw'></i> Добавить в загрузки</a>\n";
}else{
echo " <a style='margin-top: 3px;' class='btn btn-info-outline btn-sm' href='/modules/foto/obmen.php?id=".$foto['id']."&obmen_del'><i class='fa fa-upload fa-fw'></i> Удалить из загрузок</a>\n";
}
}
if($pdo->query(("SELECT COUNT(*)FROM `notes` WHERE `id_user`='".$user['id']."' AND `share_type`='foto' AND `share_id`='".$foto['id']."' LIMIT 1"),0)->fetchColumn()==0 && isset($user) && $user['id']!=$foto['id_user']) {
echo " <a style='margin-top: 3px;' class='btn btn-info-outline btn-sm' href='/modules/foto/share.php?id=".$foto['id']."'><i class='fa fa-mail-forward fa-fw'></i> Поделиться</a>";
}
echo "</div>";
}
if (access('foto_foto_edit') && $ank['level'] > $user['level'] || isset($user) && $ank['id'] == $user['id']) {
include 'inc/gallery_show_foto_form.php';
}
echo '<div class="list-group-item-komm list-group-item-info" style="padding: 10px;">';
echo "<i class='fa fa-comments fa-fw'></i> Комментарии
<span class='badgei'>" . $pdo->query(("SELECT COUNT(*) FROM `gallery_komm` WHERE `id_foto` = '$foto[id]'"), 0)->fetchColumn() . "</span>
</div>";
if (isset($_POST['msg']) && isset($user)) {
$msg = htmlspecialchars($_POST['msg']);
$mat = antimat($msg);
if ($mat) {
$_SESSION['err'] = lang("В тексте сообщения обнаружен мат: $mat");
}
if (utf8_strlen($msg) > 10024) {
$_SESSION['err'] = lang("Сообщение слишком длинное");
} elseif (utf8_strlen($msg) < 2) {
$_SESSION['err'] = lang("Короткое сообщение");
} elseif ($pdo->query(("SELECT COUNT(*) FROM `gallery_komm` WHERE `id_foto` = '$foto[id]' AND `id_user` = '$user[id]' AND `msg` = '" . htmlspecialchars($msg) . "' LIMIT 1"), 0)->fetchColumn() != 0) {
$_SESSION['err'] = lang("Ваше сообщение повторяет предыдущее");
} elseif (!isset($err)) {
$file_p = $pdo->query(("SELECT COUNT(*) FROM `files_post` WHERE `type` = 'foto' AND `id_user` = '$user[id]' AND `active` = '1' LIMIT 1"),0)->fetchColumn();
if ($file_p){
$id_file = 1;
}else{
$id_file = 0;
}
$pdo->query("INSERT INTO `gallery_komm` (`id_foto`, `id_user`, `time`, `msg`, `id_file`) values('$foto[id]', '$user[id]', '$time', '" . htmlspecialchars($msg) . "', '$id_file')");
$post_id = $pdo->lastInsertId();
$pdo->query("UPDATE `files_post` SET `id_post` = '$post_id' WHERE `id_user` = '$user[id]' AND `type` = 'foto' AND `active` = '1'");
$pdo->query("UPDATE `files_post` SET `active` = '0' WHERE `id_user` = '$user[id]' AND `type` = 'foto' AND `active` = '1'");
/////////////////////////журнал///////////////
if (isset($user) && $ank['id']!=$user['id']){
if ($ank['jurnal_foto_comm']==1){
$pdo->query("UPDATE `audio_count` SET `count` = '1' WHERE `id_user`='".intval($ank['id'])."'");
$name2="$user[nick] прокомментировал(а) ваше фото";
$msg2="[url=/modules/foto/$ank[id]/$gallery[id]/$foto[id]/] ".mb_substr($foto['name'],0,20,'UTF-8')."... [/url]";
$pdo->query("INSERT INTO `jurnal` (`avtor`, `id_user`, `id_kont`, `msg`, `name`, `type`, `time`) values('$user[id]', '0', '$ank[id]', '".htmlspecialchars($msg2)."', '".htmlspecialchars($name2)."', 'user_foto_', '$time')");
/////////////////////////////////////////////////
}}
$_SESSION['message'] = lang('Сообщение успешно добавлено');
header("Location: ?");
}
}
if ((access('foto_foto_komm_del') || $ank['id'] == $user['id']) && isset($_GET['delete']) && $pdo->query(("SELECT COUNT(*) FROM `gallery_komm` WHERE `id`='" . intval($_GET['delete']) . "' AND `id_foto`='$foto[id]' LIMIT 1"), 0)->fetchColumn() != 0) {
mysql_query("DELETE FROM `gallery_komm` WHERE `id`='" . intval($_GET['delete']) . "' LIMIT 1");
admin_log('Фотоальбомы', 'Удаление сообщения', "Удаление сообщения от $anks[nick]");
$q1 = $pdo->query("SELECT * FROM `files_post` WHERE `id_post` = '" . intval($_GET['delete']) . "' AND `id_user` = '" .$user['id']. "' AND `type` = 'foto'");
while ($d = $q1->fetch(PDO::FETCH_ASSOC)) {
unlink(htmlspecialchars($_SERVER['DOCUMENT_ROOT']).'/sys/files_post/'.$d['id'].'.jpg');
}
$_SESSION['message'] = lang('Сообщение удалено');
header("Location: ?");
exit;
}
err();
$k_post = $pdo->query(("SELECT COUNT(*) FROM `gallery_komm` WHERE `id_foto` = '$foto[id]'"), 0)->fetchColumn();
$k_page = k_page($k_post, $set['p_str']);
$page = page($k_page);
$start = $set['p_str'] * $page - $set['p_str'];
if ($k_post == 0) {
$doc->NoResult();
}
$q = $pdo->query("SELECT * FROM `gallery_komm` WHERE `id_foto` = '$foto[id]' ORDER BY `id` ASC LIMIT $start, $set[p_str]");
while ($post = $q->fetch(PDO::FETCH_ASSOC)) {
$ank2 = $pdo->query(("SELECT * FROM `user` WHERE `id` = '$post[id_user]' LIMIT 1"))->fetch(PDO::FETCH_ASSOC);
if ($post['otvet'] != 0 && $pdo->query(("SELECT COUNT(*) FROM `user` WHERE `id`='$post[otvet]'"), 0)->fetchColumn() != 0) {
$otvet = $pdo->query(("SELECT * FROM `user` WHERE `id` = '$post[otvet]'"))->fetch(PDO::FETCH_ASSOC);
}
echo "<div class='list-group-item'>";
if ($user['mobile_themes']==1){
avatarz($ank2['id']);
echo "<span style='position: relative; bottom: 25px; left: 5px;'>";}
echo user($ank2['id']) . " ";
if ($user['mobile_themes']==1){echo "</span>";}
echo "<span style = 'float:right;color: grey;'><small title='" . date::timek($post['time']) . "'>" . date::timek($post['time']) . "</small></span>";
echo "<br />\n";
if (isset($otvet)) {
echo '<a load="none" class="collapsed" data-toggle="collapse" data-parent="#accordion" href="#otv'.$post['id'].'" aria-expanded="false" aria-controls="otv'.$post['id'].'">';
echo "<small><font color=gray>ответил ";
echo "<u><b>$otvet[nick]</b></u></font></small></a>";
echo '<div id="otv'.$post['id'].'" class="panel-collapse collapse" role="tabpanel" aria-labelledby="otv'.$post['id'].'">';
echo "<div style = 'border: 1px #AFC3D3 solid; padding: 3px; border-radius: 3px; background-color: #D2DEE7;'>";
$otv = $pdo->query(("SELECT * FROM `gallery_komm` WHERE `id` = '$post[id_otvet]'"))->fetch(PDO::FETCH_ASSOC);
echo "".output_text($otv['msg'])."</div>";
echo "</div><br /><br />";
}
if (isset($otvet)) {
unset($otvet);
}
echo output_text($post['msg'])."<br />\n";
$file_ok = $pdo->query(("SELECT COUNT(*) FROM `gallery_komm` WHERE `id` = '$post[id]' AND `id_user` = '$post[id_user]' AND `id_file` = '1' LIMIT 1"),0)->fetchColumn();
if ($file_ok){
$files = $pdo->query("SELECT * FROM `files_post` WHERE `id_post` = '$post[id]' AND `type` = 'foto' LIMIT 3");
while ($post1 = $files->fetch(PDO::FETCH_ASSOC))
{
if($post1['type_files']=='foto'){
$file_id = $pdo->query("SELECT * FROM `gallery_foto` WHERE `id_user` = '$post1[id_user]' AND `id` = '$post1[id_file]'")->fetch(PDO::FETCH_ASSOC);
if(isset($file_id['id'])){
$ras = htmlspecialchars(text($file_id['ras']));
echo "<a href='/modules/foto/foto0/$file_id[id].$file_id[ras]'>";
echo'<img src="/modules/foto/foto128/'.$file_id['id'].'.'.$file_id['ras'].'" style="border: 1px solid #CCDDED; padding: 2px; border-radius: 5px; width: 70px; height: 70px;"/>';
echo"</a>";
}
}
if($post1['type_files']=='foto_download'){
if(is_file(H.'sys/files_post/'.$post1['id'].'.jpg')){
echo '<a href="/sys/files_post/'.$post1['id'].'.jpg">';
echo'<img src="/sys/files_post/'.$post1['id'].'.jpg" style="border: 1px solid #CCDDED; padding: 2px; border-radius: 5px; width: 70px; height: 70px;"/>';
echo" </a>";
}
}
if($post1['type_files']=='video'){
if (IS_WEB == 1) {
echo '<br /><br /><video style="border: 1px solid #CCDDED; padding: 2px; border-radius: 5px;" src="'.$df['name'].''.$video77.''.$post1['id_file'].'.mp4" width="100%" height="300px" poster="/site/files/video_f.png" controls /></video>';
}else{
echo '<br /><br /><video style="border: 1px solid #CCDDED; padding: 2px; border-radius: 5px;" src="'.$df['name'].''.$video77.''.$post1['id_file'].'.mp4" width="93%" height="200px" poster="/site/files/video_f.png" controls /></video>';
}
echo "<br /><small><a href='/user/video/file.php?id=".$post1['id_file']."'><i class='fa fa-film fa-fw'></i> " . stripcslashes(htmlspecialchars(substr($post1['name'],0,25))) . "</a></small><br>";
}
if ($post1['type_files'] == 'files') {
echo "<br /><b>Файл:</b> <small><a href='/user/file/file.php?id=".$post1['id_file']."'><i class='fa fa-file fa-fw'></i> " . stripcslashes(htmlspecialchars(substr($post1['name'],0,25))) . "</a></small><br>";
}
if ($post1['type_files'] == 'music') {
echo '<br /><br /><audio style="border: 1px solid #CCDDED; padding: 2px; border-radius: 5px;" src="'.$df['name'].''.$music77.''.$post1['id_file'].'.mp3" width="100%" height="300px" poster="/site/files/video_f.png" controls /></audio>';
echo "<br /><small><a href='/user/music/file.php?id=".$post1['id_file']."'><i class='fa fa-music fa-fw'></i> " . stripcslashes(htmlspecialchars(substr($post1['name'],0,25))) . "</a></small><br>";
}
}
echo "<br>";
}
echo "<br>";
if (isset($user) && $user['id'] != $ank2['id']) {
echo " <a class='comm-in' href='/modules/foto/komm.php?id=$post[id]'><i class='fa fa-comment fa-fw'></i> Ответ</a> ";
}
if (isset($user))
{
$like = $pdo->query(("SELECT COUNT(*) FROM `like_post` WHERE `id_post` = '".$post['id']."' AND `type` = 'foto'"),0)->fetchColumn();
if ($pdo->query(("SELECT COUNT(*) FROM `like_post` WHERE `id_user` = '".$user['id']."' AND `id_post` = '".$post['id']."' AND `type` = 'foto' LIMIT 1"),0)->fetchColumn()==0){
echo " <span style='float: right; position: relative; left: 8px;'><a class='like-in-o' href='/user/like_post/?id=".$foto['id']."&type=foto&id_post=$post[id]'> <b>$like</b> </a></span> ";
echo " <span id='like' style='float: right; position: relative; left: 8px;'><a class='like-in' href='?id=".$foto['id']."&type=foto&like_post=$post[id]'><i class='fa fa-heart-o fa-fw'></i></a></span> ";
}else{
echo " <span style='float: right; position: relative; left: 8px;'><a class='like-in-o-red' href='/user/like_post/?id=".$foto['id']."&type=foto&id_post=$post[id]'> <b>$like</b> </a></span> ";
echo " <span style='float: right; position: relative; left: 8px;'><a class='like-in-red' href='/user/like_post/?id=".$foto['id']."&type=foto&id_post=$post[id]'><i class='fa fa-heart fa-fw'></i></a></span> ";
}
if (access('adm_news_delete_comments')){
echo " <span style='float: right; position: relative; left: 4px;'><a class='comm-in' href='/modules/foto/edit_post.php?id=".$foto['id']."&edit=$post[id]'><i class='fa fa-pencil fa-fw'></i></a></span> ";
}else{
if (isset($user) && $post['id_user']==$user['id'] && $post['time']>time()-280){
echo " <span style='float: right; position: relative; left: 4px;'><a class='comm-in' href='/modules/foto/edit_post.php?id=".$foto['id']."&edit=$post[id]'><i class='fa fa-pencil fa-fw'></i></a></span> ";
} }
if (isset($user) && access('adm_mysql') || $user['id']==$foto['id_user']){
echo "<span style='float: right;'><a class='comm-in' href='?delete=".$post['id']."'><i class='fa fa-trash fa-fw'></i></a></span>";
}
}
echo "</div>";
}
$sql = $pdo->query("SELECT * FROM `user_blacklist` WHERE `id_user` = '" . htmlspecialchars($ank['id']) . "' AND `id_ank` = '" . htmlspecialchars($user['id']) . "';")->fetch(PDO::FETCH_NUM);
if (($sql) != 0 AND $user['level'] < 3) {
echo " <div class='list-group-item'>\n";
echo " <div class='err'>\n";
echo "Вы не можете комментировать это фото, так как находитесь в черном списке у автора\n";
echo " </div>\n";
echo " </div>\n";
}else{
if (isset($user)) {
if ($foto['komm'] == 'all' || $foto['komm'] == 'only_me' && ($user['id'] == $ank['id'] || $user['level'] >= 3) || $foto['komm'] == 'friends' && ($ank['id'] == $user['id'] || $user['level'] >= 3 || mysql_result(mysql_query("SELECT COUNT(*) FROM `friends` WHERE (`user` = '$user[id]' AND `friends` = '$ank[id]') OR (`user` = '$ank[id]' AND `friends` = '$user[id]')"), 0) != 0)) {
echo "<form class='list-group-item' name='message' method='POST' action='?$passgen'>";
echo auto_bb("message", "msg");
echo "<textarea placeholder='" . lang('Напишите что-нибудь') . "...' name='msg' class='form-control'></textarea>";
echo "<br />";
$doc->Button('knopka', 'ok', 'pencil', 'Опубликовать');
echo "<span style='float: right;'>";
$doc->Link('btn btn-secondary btn-sm', "/user/files_post/foto.php?id=$foto[id]&type=foto", 'file');
echo "</span><br>";
$files = $pdo->query("SELECT * FROM `files_post` WHERE `id_user` = '$user[id]' AND `type` = 'foto' AND `active` = '1' LIMIT 3");
while ($post = $files->fetch(PDO::FETCH_ASSOC))
{
if($post['type_files']=='foto'){
$file_id = $pdo->query("SELECT * FROM `gallery_foto` WHERE `id_user` = '$user[id]' AND `id` = '".intval($post['id_file'])."'")->fetch(PDO::FETCH_BOTH);
if(isset($file_id['id'])){
echo "<br><span class='btn btn-secondary btn-sm' style='margin: 1px;'><i class='fa fa-camera fa-fw'></i> ";
echo toOutput(htmlspecialchars($file_id['name']));
}
}
if($post['type_files']=='foto_download'){
echo '<br><span class="btn btn-secondary btn-sm" style="margin: 1px;">';
echo"<i class='fa fa-camera fa-fw'></i> ";
echo htmlspecialchars($post['name']);
}
if($post['type_files']=='video'){
echo '<br><span class="btn btn-secondary btn-sm" style="margin: 1px;">';
echo"<i class='fa fa-film fa-fw'></i> ";
echo htmlspecialchars($post['name']);
}
if($post['type_files']=='music'){
echo '<br><span class="btn btn-secondary btn-sm" style="margin: 1px;">';
echo"<i class='fa fa-music fa-fw'></i> ";
echo htmlspecialchars($post['name']);
}
if($post['type_files']=='files'){
echo '<br><span class="btn btn-secondary btn-sm" style="margin: 1px;">';
echo"<i class='fa fa-file fa-fw'></i> ";
echo htmlspecialchars($post['name']);
}
echo' <a href="?id='.$foto['id'].'&del_file='.$post['id'].'"><font color=#F56257><i class="fa fa-trash fa-lg"></i></font></a>';
echo '</span> ';
}
echo "</form>";
} else {
echo "<div class='err'>";
echo lang('Автор ограничил круг лиц, которые могут оставлять комментарии');
echo "</div>";
}
}
}
if ($k_page > 1) {
echo "<div class='list-group-item'>";
str('?', $k_page, $page);
echo "</div>";
}
require_once H . 'sys/inc/tfoot.php';
exit;