<?php
require_once ('system/func.php');
auth(); // Закроем от не авторизованных
# Настройки #
$id = abs(intval($_GET['id']));
if($id){
$prof = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".$id."'"));
# Ошибки #
if(!$prof){
$_SESSION['msg'] == 'Такой игрок не существует';
header('Location: /mail/');
exit();
}
if(isset($_GET['text'])){
if(isset($_POST['text'])){
$text = text($_POST['text']);
$ban = mysql_query('SELECT * FROM `ban` WHERE `id_user` = "'.$myID.'" AND `last` > "'.time().'" ORDER BY `id` DESC LIMIT 1');
$ban = mysql_fetch_array($ban);
if(strlen($text) < 3 or strlen($text) > 1000)$err = 'Длина сообщения должна быть в пределах 3 - 1000 символов';
if($ban)$err = "На вас наложен, бан осталось ".tl($ban[last]-time());
if(!$err){
mysql_query("INSERT INTO `mail` SET `in` = '$myID', `out` = '".$prof['id']."', `text` = '$text' , `time` = '".time()."'");
$kont = mysql_fetch_assoc(mysql_query("SELECT * FROM `kont` WHERE `id_user` = '".$myID."' && `id_kont` = '".$prof['id']."' LIMIT 1"));
if($kont['id_kont'] != $prof['id']){
mysql_query("INSERT INTO `kont` SET `id_user` = '".$prof['id']."', `id_kont` = '".$myID."', `time` = '".time()."'");
mysql_query("INSERT INTO `kont` SET `id_user` = '$myID', `id_kont` = '".$prof['id']."', `time` = '".time()."'");
}else{
mysql_query("update `kont` set `time` = '".time()."' WHERE `id_user` = '".$myID."' && `id_kont` = '".$prof['id']."'");
mysql_query("update `kont` set `time` = '".time()."' WHERE `id_user` = '".$prof['id']."' && `id_kont` = '".$myID."'");
}
$_SESSION['msg'] = 'Сообщение успешно отправлено';
header("Location: /mail/$prof[id]");
exit();
}else{
$_SESSION['msg'] = $err;
header("Location: /mail/$prof[id]");
exit();
}
}else{
$_SESSION['msg'] == 'Введите сообщение';
header("Location: /mail/$prof[id]");
exit();
}
}
$title = 'Диалог с '.$prof['login'];
require_once ('system/header.php');
echo "<div class='content'>";
echo "<a href='/mail/'>Почта</a> / <a href='/profile/$prof[id]'> $prof[login]</a></div><div class='bordered'>";
echo '<form name="text" method="post" action="?text">';
echo '<center><textarea name="text"></textarea><br>';
echo '<input class="btn" type="submit" value="Отправить">';
echo "<a href='/mail/$prof[id]' class='btn'>Обновить</a>";
echo "</center></div></form><div class='content'></div>";
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE (`in` = '$prof[id]' && `out` = '$user[id]') or (`in` = '$user[id]' && `out` = '$_GET[id]')"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `mail` WHERE (`in` = '$prof[id]' && `out` = '$user[id]') or (`in` = '$user[id]' && `out` = '$prof[id]') ORDER BY `id` DESC LIMIT $start, $set[p_str]");
if($k_post == 0) echo "<div class='feedback'>Сообщений не найдено</div>";
mysql_query("update `mail` set `online` = '0' WHERE `in` = '".$prof['id']."' && `out` = '".$myID."'");
mysql_query("UPDATE `kont` SET `new_msg` = '0' WHERE `id_kont` = '$ank[id]' AND `id_user` = '$myID' LIMIT 1");
while($post = mysql_fetch_assoc($q)) {
echo'<div class="bordered">';
if($post['online'] == 1)$color = 'green';
else $color = '#A8A8A8';
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = $post[in] LIMIT 1"));
echo icons_user($ank[id])." <a href='/profile/$ank[id]'>$ank[login]</a>, <font color='$color'>".vremja($post['time'])."</font><br>".text_msg($post['text'])."<br>";
echo "</div>";
echo'<div class="content"></div>';
}
if($k_post > 10){
str('?',$k_page,$page); // Вывод страниц
}else{
}
echo "</div>";
echo "</a>";
}else{
$title = 'Почта';
require_once ('system/header.php');
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `kont` WHERE `id_user` = '".$myID."'"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `kont` WHERE `id_user` = '".$myID."' ORDER BY `time` DESC LIMIT $start, $set[p_str]");
if($k_post == 0)echo "<div class='feedback'>Вы еще не кому не писали</div>";
while ($post = mysql_fetch_assoc($q)){
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".$post['id_kont']."' LIMIT 1"));
$mess = mysql_query("SELECT * FROM `mail` WHERE `in` = '$user[id]' && `out` = '$ank[id]' OR `in` = '$ank[id]' AND `out` = '$user[id]' ORDER BY `id` DESC LIMIT 1");
$msg = mysql_fetch_assoc($mess);
$new_msg = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE `out` = '".$user['id']."' && `in` = '".$ank['id']."' AND `online` = '1'"),0);
$online = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE `out` = '".$ank['id']."' && `in` = '".$user['id']."' AND `online` = '1'"),0);
echo"<div class='content'></div>";
echo "<div class='bordered'>";
echo icons_user($ank[id])."$ank[login], ".vremja($msg['time'])."<br>";
echo "<a href='/mail/$ank[id]'>";
echo' Читать ';
if($online > 0)echo "<font color='gren'>(»)</font>";
if($new_msg > 0)echo "<font color='red'>(»)</font>";
echo "</a></div>";
}
echo "</div>";
if($k_post > 10){
echo "<div class='block'>";
str('?',$k_page,$page); // Вывод страниц
echo "</div>";
}else{
}
}
require_once ('system/footer.php');
?>