291 lines
13 KiB
PHP
291 lines
13 KiB
PHP
<?php
|
|
header('Content-Type: text/html; charset=windows-1251');
|
|
|
|
const GAME = true;
|
|
include('_incl_data/__config.php');
|
|
include('_incl_data/class/__db_connect.php');
|
|
$u = User::start();
|
|
function test_line($v)
|
|
{
|
|
$r = true;
|
|
$v = str_replace(' ', '', $v);
|
|
$v = str_replace(' ', '', $v);
|
|
if ($v == '') {
|
|
$r = false;
|
|
}
|
|
return $r;
|
|
}
|
|
|
|
function go_text($v)
|
|
{
|
|
$v = str_replace('\x3C', '<', $v);
|
|
$v = str_replace('\x3', '>', $v);
|
|
$v = str_replace('\\', '\\\\', $v);
|
|
$v = str_replace('"', '[s1;]', $v);
|
|
$v = str_replace("'", '[s2;]', $v);
|
|
$v = str_replace('<', '[s3;]', $v);
|
|
$v = str_replace('>', '[s4;]', $v);
|
|
$v = str_replace(' ', ' ', $v);
|
|
$v = htmlspecialchars($v, null, 'cp1251');
|
|
return $v;
|
|
}
|
|
|
|
if (!isset($u->info['id']) || $u->info['banned'] > 0) {
|
|
die('-1');
|
|
}
|
|
$r = round((int)$_POST['r']);
|
|
if ($r != 1 && $r != 2 && $r != 3) {
|
|
$r = 1;
|
|
}
|
|
$html = '';
|
|
$js = '';
|
|
|
|
if (isset($_POST['see_msg'])) {
|
|
$msg = mysql_fetch_array(
|
|
mysql_query(
|
|
'SELECT * FROM `telegram` WHERE `id` = "' . mysql_real_escape_string(
|
|
$_POST['see_msg']
|
|
) . '" AND (`uid` = "' . $u->info['id'] . '" OR `from` = "' . $u->info['id'] . '") LIMIT 1'
|
|
)
|
|
);
|
|
if (!isset($msg['id'])) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Ñîîáùåíèå íå íàéäåíî.</center>';
|
|
} elseif ($msg['uid'] == $u->info['id'] && ($msg['delete'] == 2 || $msg['delete'] == 3)) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Ñîîáùåíèå áûëî óäàëåíî.</center>';
|
|
} else {
|
|
$to = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login`,`banned` FROM `users` WHERE `id` = "' . $msg['uid'] . '" LIMIT 1')
|
|
);
|
|
$from = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login`,`banned` FROM `users` WHERE `id` = "' . $msg['from'] . '" LIMIT 1')
|
|
);
|
|
if (($msg['read'] == 0 || $msg['read'] == 1) && $to['id'] == $u->info['id']) {
|
|
mysql_query('UPDATE `telegram` SET `read` = `read` + 2 WHERE `id` = "' . $msg['id'] . '" LIMIT 1');
|
|
}
|
|
$html = '<div style="padding:10px;">';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96"><b>Îò</b>: ' . $from['login'] . '<a style="float:right" onclick="top.tgf_closeMsg()" href="javascript:void(0)">Çàêðûòü</a></div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96"><b>Êîìó</b>: ' . $to['login'] . '<span style="float:right">' . date(
|
|
'd.m.Y H:i', $msg['time']
|
|
) . '</span></div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96"><b>Òåìà</b>: ' . $msg['tema'] . '</div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;"><b>Ñîîáùåíèå</b>:<br><div style="width:496;margin-left:1px;overflow:auto;height:185px;">' . $msg['text'] . '</div>';
|
|
$html .= '<button style="float:right" onclick="top.tgf_rz(3,1,' . $msg['id'] . ');">Îòâåòèòü</button>';
|
|
$html .= '</div>';
|
|
$html .= '</div>';
|
|
}
|
|
} elseif ($r == 3) {
|
|
if ($u->info['noreal'] == 1) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Îòïðàâëÿòü ñîîáùåíèÿ ïî òåëåãðàôó âîçìîæíî òîëüêî ñ îñíîâíîãî ïåðñîíàæà</center>';
|
|
} elseif ($u->info['level'] < 4) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Îòïðàâëÿòü ñîîáùåíèÿ ïî òåëåãðàôó âîçìîæíî ñ 4-ãî óðîâíÿ.</center>';
|
|
} elseif ($u->info['molch1'] > time()) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Ïåðñîíàæè ñ ìîë÷àíêîé íå ìîãóò ïîëüçîâàòüñÿ òåëåãðàôîì.</center>';
|
|
} else {
|
|
if (isset($_POST['to'])) {
|
|
$_POST['to'] = go_text(iconv('UTF-8', 'windows-1251', $_POST['to']));
|
|
$_POST['text'] = go_text(iconv('UTF-8', 'windows-1251', $_POST['text']));
|
|
$_POST['tema'] = go_text(iconv('UTF-8', 'windows-1251', $_POST['tema']));
|
|
|
|
if (test_line($_POST['to']) == false) {
|
|
$error = 'Ïóñòîå ïîëå "Êîìó".';
|
|
} elseif (test_line($_POST['text']) == false) {
|
|
$error = 'Ïóñòîå ïîëå "Ñîîáùåíèå".';
|
|
} elseif (test_line($_POST['tema']) == false) {
|
|
$error = 'Ïóñòîå ïîëå "Òåìà".';
|
|
} else {
|
|
$to = mysql_fetch_array(
|
|
mysql_query(
|
|
'SELECT `id`,`login`,`banned` FROM `users` WHERE `login` = "' . mysql_real_escape_string(
|
|
$_POST['to']
|
|
) . '" LIMIT 1'
|
|
)
|
|
);
|
|
if (!isset($to['id'])) {
|
|
$error = 'Ïîëó÷àòåëü íå íàéäåí â áàçå.';
|
|
} elseif ($to['banned'] > 0) {
|
|
$error = 'Ïîëó÷àòåëü áûë çàáëîêèðîâàí.';
|
|
} elseif ($to['id'] == $u->info['id']) {
|
|
$error = 'Íåëüçÿ îòïðàâëÿòü ñàìîìó ñåáå.';
|
|
} else {
|
|
$_POST['text'] = str_replace("\n", '<br>', $_POST['text']);
|
|
$_POST['text'] = str_replace("\r", '<br>', $_POST['text']);
|
|
mysql_query(
|
|
'INSERT INTO `telegram` (`uid`,`from`,`tema`,`text`,`time`,`ip`) VALUES ("' . $to['id'] . '","' . $u->info['id'] . '","' . mysql_real_escape_string(
|
|
$_POST['tema']
|
|
) . '","' . mysql_real_escape_string($_POST['text']) . '","' . time(
|
|
) . '","' . mysql_real_escape_string($u->info['ip']) . '")'
|
|
);
|
|
unset($_POST['to'], $_POST['text'], $_POST['tema']);
|
|
$error = 'Ñîîáùåíèå äîñòàâëåíî "' . $to['login'] . '".';
|
|
}
|
|
}
|
|
}
|
|
if (isset($_POST['re']) && $_POST['re'] > 0 && !isset($_POST['to'])) {
|
|
$msg = mysql_fetch_array(
|
|
mysql_query(
|
|
'SELECT * FROM `telegram` WHERE `id` = "' . mysql_real_escape_string(
|
|
$_POST['re']
|
|
) . '" AND (`uid` = "' . $u->info['id'] . '" OR `from` = "' . $u->info['id'] . '") LIMIT 1'
|
|
)
|
|
);
|
|
if (isset($msg['id'])) {
|
|
$to = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login`,`banned` FROM `users` WHERE `id` = "' . $msg['uid'] . '" LIMIT 1')
|
|
);
|
|
$from = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login`,`banned` FROM `users` WHERE `id` = "' . $msg['from'] . '" LIMIT 1')
|
|
);
|
|
if ($msg['from'] == $u->info['id']) {
|
|
$_POST['to'] = $to['login'];
|
|
} elseif ($msg['uid'] == $u->info['id']) {
|
|
$_POST['to'] = $from['login'];
|
|
} else {
|
|
unset($msg);
|
|
}
|
|
$_POST['tema'] = 'Re:' . str_replace('Re:', '', $msg['tema']);
|
|
}
|
|
}
|
|
$html = '<div style="padding:10px;">';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96">Îò: <b>' . $u->info['login'] . '</b></div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96">Êîìó: <input value="' . $_POST['to'] . '" id="tgf_to" type="text" style="width:170px"></div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96">Òåìà: <input value="' . $_POST['tema'] . '" id="tgf_tema" type="text" style="width:269px"></div>';
|
|
$html .= '<div style="margin-bottom:3px;padding-bottom:3px;border-bottom:1px solid #b7ae96">Ñîîáùåíèå:<br><textarea rows="9" style="width:100%;resize:none;outline:none;" id="tgf_text">' . $_POST['text'] . '</textarea></div>';
|
|
$html .= '<div style="margin-bottom:3px;color:red;float:left;" align="left"><small><b id="trf_snd_error">' . $error . '</b></small></div><div style="margin-bottom:3px;" align="right"><button onClick="top.tgf_send()">Îòïðàâèòü ñîîáùåíèå</button></div>';
|
|
$html .= '</div>';
|
|
}
|
|
} elseif ($r == 1 || $r == 2) {
|
|
if ($r == 1) {
|
|
mysql_query(
|
|
'UPDATE `telegram` SET `open` = "1" WHERE `uid` = "' . $u->info['id'] . '" AND `open` = "0" LIMIT 100'
|
|
);
|
|
}
|
|
$pg = round((int)$_POST['p']);
|
|
if ($pg < 1) {
|
|
$pg = 1;
|
|
}
|
|
$pgssee = ceil(($pg - 1) * 9);
|
|
if ($r == 1) {
|
|
if (isset($_POST['del_msg'])) {
|
|
mysql_query(
|
|
'UPDATE `telegram` SET `delete` = `delete` + 2 WHERE `uid` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 1) AND `id` = "' . mysql_real_escape_string(
|
|
$_POST['del_msg']
|
|
) . '" LIMIT 1'
|
|
);
|
|
}
|
|
$sp = mysql_query(
|
|
'SELECT * FROM `telegram` WHERE `uid` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 1) ORDER BY `id` DESC LIMIT ' . mysql_real_escape_string(
|
|
$pgssee
|
|
) . ',10'
|
|
);
|
|
} elseif ($r == 2) {
|
|
if (isset($_POST['del_msg'])) {
|
|
mysql_query(
|
|
'UPDATE `telegram` SET `delete` = `delete` + 1 WHERE `from` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 2) AND `id` = "' . mysql_real_escape_string(
|
|
$_POST['del_msg']
|
|
) . '" LIMIT 1'
|
|
);
|
|
}
|
|
$sp = mysql_query(
|
|
'SELECT * FROM `telegram` WHERE `from` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 2) ORDER BY `id` DESC LIMIT ' . mysql_real_escape_string(
|
|
$pgssee
|
|
) . ',10'
|
|
);
|
|
}
|
|
$msgs = 0;
|
|
while ($pl = mysql_fetch_array($sp)) {
|
|
if ($msgs < 9) {
|
|
if ($r == 1) {
|
|
$from = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login` FROM `users` WHERE `id` = "' . $pl['from'] . '" LIMIT 1')
|
|
);
|
|
}
|
|
if ($r == 2) {
|
|
$from = mysql_fetch_array(
|
|
mysql_query('SELECT `id`,`login` FROM `users` WHERE `id` = "' . $pl['uid'] . '" LIMIT 1')
|
|
);
|
|
}
|
|
if (!isset($from['id'])) {
|
|
$from = '<b>' . $pl['from'] . '</b>';
|
|
} else {
|
|
$from = '<b>' . $from['login'] . '</b>';
|
|
}
|
|
//if($r == 1) {
|
|
if ($pl['read'] == 0 || $pl['read'] == 1) {
|
|
$pl['read'] = 0;
|
|
} else {
|
|
$pl['read'] = 1;
|
|
}
|
|
|
|
|
|
if ($r == 1) {
|
|
$html .= '
|
|
<div id="tgfm' . $pl['id'] . '" onclick="top.tgf_openMsg(' . $pl['id'] . ')" class="tgf_msg' . $pl['read'] . '">
|
|
<small class="tgf_msgt" title="' . date('H:i', $pl['time']) . '">' . date('d.m.y', $pl['time']) . '</small>
|
|
<small>Îò: ' . $from . '</small>
|
|
<small>Òåìà: <a href="javascript:void(0)">' . $pl['tema'] . '</a></small>
|
|
<img src="https://img.new-combats.com/i/clear.gif" height="13" style="float:right;vertical-align:bottom;cursor:pointer;" onclick="top.del_tgf(' . $r . ',' . $pg . ',' . $pl['id'] . ');">
|
|
</div>';
|
|
}
|
|
if ($r == 2) {
|
|
$html .= '
|
|
<div id="tgfm' . $pl['id'] . '" onclick="top.tgf_openMsg(' . $pl['id'] . ')" class="tgf_msg' . $pl['read'] . '">
|
|
<small class="tgf_msgt" title="' . date('H:i', $pl['time']) . '">' . date('d.m.y', $pl['time']) . '</small>
|
|
<small>Êîìó: ' . $from . '</small>
|
|
<small>Òåìà: <a href="javascript:void(0)">' . $pl['tema'] . '</a></small>
|
|
<img src="https://img.new-combats.com/i/clear.gif" height="13" style="float:right;vertical-align:bottom;cursor:pointer;" onclick="top.del_tgf(' . $r . ',' . $pg . ',' . $pl['id'] . ');">
|
|
</div>';
|
|
}
|
|
}
|
|
$msgs++;
|
|
}
|
|
|
|
if ($msgs > 9 || $pg > 1) {
|
|
if ($html != '') {
|
|
$html .= '<div class="tfpgs">';
|
|
if ($r == 1) {
|
|
$pgs = mysql_fetch_array(
|
|
mysql_query(
|
|
'SELECT COUNT(`id`) FROM `telegram` WHERE `uid` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 1)'
|
|
)
|
|
);
|
|
} else {
|
|
if ($r == 2) {
|
|
$pgs = mysql_fetch_array(
|
|
mysql_query(
|
|
'SELECT COUNT(`id`) FROM `telegram` WHERE `from` = "' . $u->info['id'] . '" AND (`delete` = 0 OR `delete` = 2)'
|
|
)
|
|
);
|
|
}
|
|
}
|
|
$pgs = $pgs[0];
|
|
$pga = ceil($pgs / 9);
|
|
$i = 1;
|
|
while ($i <= $pga) {
|
|
if ($i == $pg) {
|
|
$html .= ' <small onclick="top.tgf_rz(' . $r . ',' . $i . ')" class="tf_btn11">' . $i . '</small>';
|
|
} else {
|
|
$html .= ' <small onclick="top.tgf_rz(' . $r . ',' . $i . ')" class="tf_btn1">' . $i . '</small>';
|
|
}
|
|
$i++;
|
|
}
|
|
$html .= '</div>';
|
|
} else {
|
|
$js .= 'top.tgf_rz(' . $r . ',' . ($pg - 1) . ');';
|
|
}
|
|
}
|
|
}
|
|
|
|
$js .= 'top.tgf_loading(2)';
|
|
if ($js != '') {
|
|
$js = '<script>' . $js . '</script>';
|
|
}
|
|
if ($html == '') {
|
|
if ($r == 1) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Ó Âàñ íåò ñîîáùåíèé îò äðóãèõ ïîëüçîâàòåëåé</center>';
|
|
} elseif ($r == 2) {
|
|
$html = '<br><br><br><br><br><br><br><br><center>Ó Âàñ íåò ñîîáùåíèé îòïðàâëåííûõ äðóãèì ïîëüçîâàòåëÿì</center>';
|
|
}
|
|
}
|
|
|
|
echo $html . $js;
|