28 lines
1.2 KiB
PHP
28 lines
1.2 KiB
PHP
<?php
|
|
if ($_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest') {
|
|
define('GAME', true);
|
|
include_once('../_incl_data/__config.php');
|
|
include_once('../_incl_data/class/__db_connect.php');
|
|
|
|
|
|
$u = mysql_fetch_array(mysql_query('SELECT `id` FROM `users` WHERE `login`="' . mysql_real_escape_string($_COOKIE['login']) . '"'));
|
|
if (!isset($u['id']) || ($u['joinIP'] == 1 && $u['ip'] != $_SERVER['HTTP_X_REAL_IP'])) {
|
|
die('<script>top.location = \'https://' . $c['host'] . '/\';</script>');
|
|
} else {
|
|
if (isset($_POST['act'])) {
|
|
$post = Telegram::start();
|
|
if ($_POST['act'] == 'read') {
|
|
$post->readMsg(mysql_real_escape_string($_POST['msg']), $u['id']);
|
|
} elseif ($_POST['act'] == 'lock') {
|
|
$post->lockMsg(mysql_real_escape_string($_POST['msg']), $u['id']);
|
|
} elseif ($_POST['act'] == 'delete') {
|
|
$post->deleteMsg(mysql_real_escape_string($_POST['msg']), $u['id'], $_POST['pageGo']);
|
|
} elseif ($_POST['act'] == 'deleteAll') {
|
|
$post->deleteMsgAll($u['id'], $_POST['pageGo']);
|
|
} elseif ($_POST['act'] == 'page') {
|
|
$post->seeMsg($u['id'], $_POST['msg'], 5);
|
|
}
|
|
}
|
|
}
|
|
}
|