<?php
session_start();
include_once "../inc/db_connect.php";
include_once "../inc/fnc.php";
if(!isset($_SESSION['user'])){
header("Location: index.php?");
exit();
}else{
$data_user = mysql_fetch_array(mysql_query("SELECT * FROM users WHERE login='".$_SESSION['user']."'")) or die(mysql_error());
if($data_user['status'] < 2){
header("Location: ../");
exit();
}else{
$user = $_SESSION['user'];
$dateig = date("H:i:s");
$data_userid = $data_user['id'];
include_once "../inc/head.php";
include_once "../inc/stat.php";
?>
<table class="wdt green-header">
<tr>
<td align="left">Админка:</td>
</tr>
</table>
<?php
if($err) echo "<div class='err'>" , $err , "</div>";
if(isset($_GET["addvis"])){
echo <<<addvis
<div class="menu">
<form action='addvis.php' method='post'>
Путь к машине: <br/><input type='text' name='car' value='car/'/><br/>
Имя машины: <br/><input type='text' name='carname' /><br/>
Класс: <br/><select name="class">
<option value="1">D</option>
<option value="2">C</option>
<option value="3">B</option>
<option value="4">A</option>
</select><br/>
Скорость: <br/><input type='text' name='speed' size='4' maxlength='3' /><br/>
Уровень: <br/><input type='text' name='level' size='3' maxlength='2' /><br/>
Цена: <br/><input type='text' size='6' name='price' /><br/>
<input type='submit' name='submit' class='btn' value='Добавить' />
</form>
</div>
addvis;
}
if($data_user['status'] ==5){
if(isset($_GET['clear'])){
mysql_query("DELETE FROM turnir");
echo "<meta http-equiv='refresh' content='0; URL=../adm_panel/index.php'>";
exit();
}
$turnir = mysql_fetch_array(mysql_query("SELECT * FROM turnir_settings"));
echo "
<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'>
<form action='tur.php' method='post'><center>
На машине: <input type='text' name='car' class='input' value='".$turnir['car']."' /><br/>
Описание в турнире на машине: <input type='text' name='carname' class='input' value='".$turnir['carname']."' /><br/>
Топ: <input type='text' name='top' class='input' value='".$turnir['top']."'/><br/>
Бензин: <select name='fuel'><option value='3'>3 Литров</option><option value='4'>4 Литров</option><option value='5'>5 Литров</option></select></br>
Баксы победителю: <select name='baks_win'><option value='200'>200 Баксов</select></br>
Баксы топу: <select name='baks_top'><option value='100'>100 Баксов</option></select></br>
Т.очки победителю: <select name='otur_win'><option value='1000'>1000 Турнирных очков</option></select></br>
Т.очки топу: <select name='otur_top'><option value='500'>500 Турнирных очков</option></select></br>
Вкл/Отк: <select name='status'><option value='0'>Отключить</option><option value='1'>Включить</option></select></br></br>
<input type='submit' name='submit' class='btn' /></center></br>
<a href='?clear'><font color='red' >Очистить гонщиков из турнира</font></a></br></br>
<a href='/tur/anons.php'><font color='red' >Создать анонс</font></a></br></br>
<a href='/tur/anon.php'><font color='red' >Создать ещё анонс</font></a></br></br>
</form>
</div>
<div class='niz'>
<p align='center' style='padding-top:3px;padding-bottom:3px;'>Вы вошли как <b>$user<b> | <a href='/exit.php'>Выйти</a><br /> <font color='#000'>Игровое время:</font> <b>$dateig</b><br/><font color='#000'>Игровой ID:</font> <b>$data_userid</b></p>
</div>
</body>
</html>
";
exit();
}
if(isset($_GET["carsv"])){
if(isset($_GET['editcar'])){
$editcar = trim(strip_tags(htmlspecialchars((int)$_GET['editcar'])));
$editcarrow = mysql_fetch_array(mysql_query("SELECT * FROM vis WHERE id='".$editcar."'")) or die(mysql_error());
echo "<div class='menu'>
<form action='updata_carsv.php' method='post'>
Путь: <br/><input type='text' name='car' value='".$editcarrow['car']."' /><br/>
<input type='hidden' name='id' value='".$editcarrow['id']."' />
Имя: <br/><input type='text' name='carname' value='".$editcarrow['carname']."' /><br/>
Скорость: <br/><input type='text' name='speed' value='".$editcarrow['speed']."' /><br/>
Уровень: <br/><input type='text' name='level' value='".$editcarrow['level']."' /><br/>
Цена: <br/><input type='text' name='price' value='".$editcarrow['price']."' /><br/>
<input type='submit' name='submit' class='btn' value='Сохранить' /><br/>
</form>
</div>";
}
$carsv = mysql_query("SELECT * FROM vis ORDER BY id ASC") or die(mysql_error());
$carsv_row = mysql_fetch_array($carsv);
echo "<div class='menu'>";
do{
$carsv_name = $carsv_row['carname'];
$carsv_id = $carsv_row['id'];
echo <<<carsv
<a style="color:#fff;font-size:8pt;" href="index.php?carsv&editcar=$carsv_id">$carsv_name</a><br/>
carsv;
}while($carsv_row = mysql_fetch_array($carsv));
echo "</div>";
}
if(isset($_GET['del'])){
$del = (int)$_GET['del'];
mysql_query("DELETE FROM `news` WHERE id=$del") or die(mysql_error());
echo "<meta http-equiv='refresh' content='0; URL=/index.php?'>";
exit();
}
if($err) echo "<div class='err'>" , $err , "</div>";
if(isset($_GET["addavto"])){
echo <<<addavto
<div class="menu">
<form action='addcar.php' method='post'>
Путь к машине: <br/><input type='text' name='car' value='car/'/><br/>
Имя машины: <br/><input type='text' name='carname' /><br/>
Класс: <br/><select name="class">
<option value="1">D</option>
<option value="2">C</option>
<option value="3">B</option>
<option value="4">A</option>
</select><br/>
Скорость: <br/><input type='text' name='speed' size='4' maxlength='3' /><br/>
Уровень: <br/><input type='text' name='level' size='3' maxlength='2' /><br/>
Цена: <br/><input type='text' size='6' name='price' /><br/>
<input type='submit' name='submit' class='btn' value='Добавить' />
</form>
</div>
addavto;
}
if(isset($_GET["cars"])){
if(isset($_GET['editcar'])){
$editcar = trim(strip_tags(htmlspecialchars((int)$_GET['editcar'])));
$editcarrow = mysql_fetch_array(mysql_query("SELECT * FROM auto WHERE id='".$editcar."'")) or die(mysql_error());
echo "<div class='menu'>
<form action='updata_car.php' method='post'>
Путь: <br/><input type='text' name='car' value='".$editcarrow['car']."' /><br/>
<input type='hidden' name='id' value='".$editcarrow['id']."' />
Имя: <br/><input type='text' name='carname' value='".$editcarrow['carname']."' /><br/>
Скорость: <br/><input type='text' name='speed' value='".$editcarrow['speed']."' /><br/>
Уровень: <br/><input type='text' name='level' value='".$editcarrow['level']."' /><br/>
Цена: <br/><input type='text' name='price' value='".$editcarrow['price']."' /><br/>
<input type='submit' name='submit' class='btn' value='Сохранить' /><br/>
</form>
</div>";
}
$cars = mysql_query("SELECT * FROM auto ORDER BY id ASC") or die(mysql_error());
$cars_row = mysql_fetch_array($cars);
echo "<div class='menu'>";
do{
$cars_name = $cars_row['carname'];
$cars_id = $cars_row['id'];
echo <<<cars
<a style="color:#fff;font-size:8pt;" href="index.php?cars&editcar=$cars_id">$cars_name</a><br/>
cars;
}while($cars_row = mysql_fetch_array($cars));
echo "</div>";
}
if(isset($_GET['del'])){
$del = (int)$_GET['del'];
mysql_query("DELETE FROM `news` WHERE id=$del") or die(mysql_error());
echo "<meta http-equiv='refresh' content='0; URL=/index.php?'>";
exit();
}
if(isset($_GET['del_bar'])){
$del_bar = (int)$_GET['del_bar'];
mysql_query("DELETE FROM `bar` WHERE id=$del_bar") or die(mysql_error());
echo "<meta http-equiv='refresh' content='0; URL=/bar.php?'>";
exit();
}
if(isset($_GET['addnews'])){
echo "<div class='menu'>
<form action='addnews.php' method='post'>
Сообщение:<br/>
<textarea name='news'></textarea><br/>
<input type='submit' name='add' class='btn' value='Добавить' />
</form>
</div>";
}
if($data_user['status'] == 4){
if(isset($_GET['users'])){
if(isset($_GET['edit'])){
$edit_id = (int)$_GET['edit'];
$edit_user = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE id='".$edit_id."'")) or die(mysql_error());
print "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'>
<form action='update_user.php' method='post'>
<center>
<font color='red'>ID игрока: <b>".$edit_user['id']."</b></font><br/>
<input type='hidden' name='id1' value='".$edit_user['id']."' />
Бан: <input type='text' name='ban1' value='".$edit_user['ban']."' /><br/>
Ник: <input type='text' name='nick1' value='".$edit_user['nick']."' /><br/>
Логин: <input type='text' name='login1' value='".$edit_user['login']."' /><br/>
E-mail: <input type='text' name='email1' value='".$edit_user['email']."' /><br/>
Пароль: <input type='text' name='pass1' value='".$edit_user['password']."' /><br/>
Бензин: <input type='text' name='fuel1' value='".$edit_user['fuel']."' /><br/>
Скорость: <input type='text' name='speed1' value='".$edit_user['speed']."' /><br/>
Уровень: <input type='text' name='level1' value='".$edit_user['level']."' /><br/>
Монеты: <input type='text' name='money1' value='".$edit_user['money']."' /><br/>
Баксы: <input type='text' name='baksy1' value='".$edit_user['baksy']."' /><br/>
Рубли: <input type='text' name='rubli1' value='".$edit_user['rubli']."' /><br/>
Билеты: <input type='text' name='yacheek1' value='".$edit_user['yacheek']."' /><br/>
Тур.оч: <input type='text' name='turnirnie1' value='".$edit_user['turnirnie']."' /><br/>
Опыт: <input type='text' name='opit1' value='".$edit_user['opit']."' /><br/>
Машина: <input type='text' name='car1' value='".$edit_user['car']."' /><br/>
Машина имя: <input type='text' name='carname1' value='".$edit_user['carname']."' /><br/>
Рейтинг: <input type='text' name='raiting1' value='".$edit_user['raiting']."' /><br/>
Аватар: <input type='text' name='avatar1' value='".$edit_user['avatar']."' /><br/>
IP: <input type='text' disabled='disabled' name='ip1' value='".$edit_user['ip']."' /><br/>
Дата регистрации: <input disabled='disabled' type='text' name='date1' value='".$edit_user['date']."' /><br/><br/>
</center>
<input type='submit' name='submitsoz' class='btn' value='Сохранить'/><br/><br/>
</form>
</div>
<a href='index.php?'>» В админку</a></div>
<div class='niz'>
<p align='center' style='padding-top:3px;padding-bottom:3px;'>Вы вошли как <b>$user<b> | <a href='/exit.php'>Выйти</a><br /> <font color='#000'>Игровое время:</font> <b>$dateig</b><br/><font color='#000'>Игровой ID:</font> <b>$data_userid</b></p>
</div>
</body>
</html>
";
exit();
}
$igroki = mysql_query("SELECT * FROM users ORDER BY id ASC") or die(mysql_error());
$row_ig = mysql_fetch_array($igroki);
echo "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'><p style='color:red;padding-bottom:4px;margin:0;'>Пользователи: </p>";
do{
$usersall = $row_ig['id'];
printf("<b>ID:</b> <font color='yellow'>$usersall</font> <b>Игрок:</b> <a href='?users&edit=%s'>%s</a><br/>",$row_ig['id'],$row_ig['nick']);
}while($row_ig = mysql_fetch_array($igroki));
echo "<a href='index.php?'>» В админку</a></div></td>";
}else{
echo <<<sozdatel
<table class="wdt gray-table">
<tr>
<td class="td-cell white" style="height: 55px; border-left: 1px solid #000" align="left">
<a href="?users"><font color='yellow'>» Игроки</a><br/>
<a href="/tur/index.php"><font color='yellow'>» Турнирка</a><br/>
<a href="?addavto"><font color='yellow'>» Добавить машину НА АВТ</a><br/>
<a href="?addavto"><font color='yellow'>» Добавить машину на ВЫС</a><br/>
<a href="?cars"><font color='yellow'>» Машины с АВТ</a><br/>
<a href="?carsv"><font color='yellow'>» Машины С ВЫС</a><br/>
<a href="?turnir"><font color='yellow'>» Анонс турниров</a><br/>
<a href="?addnews"><font color='yellow'>» Добавить новость</a><br/>
</td>
sozdatel;
}
}elseif($data_user['status'] == "3"){
if(isset($_GET['users'])){
if(isset($_GET['edit'])){
$edit_id = (int)$_GET['edit'];
$edit_user = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE id='".$edit_id."'")) or die(mysql_error());
print "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'>
<form action='update_user.php' method='post'>
<center>
<font color='red'>ID игрока: <b>".$edit_user['id']."</b></font><br/>
<input type='hidden' name='id1' value='".$edit_user['id']."' />
Бан:<br/>Дать бан 10 Убрать бан 0 <input type='text' name='ban1' value='".$edit_user['ban']."' /><br/>
Ник: <input type='text' name='nick1' value='".$edit_user['nick']."' /><br/>
Монеты: <input type='text' disabled='disabled' name='money1' value='".$edit_user['money']."' /><br/>
Баксы: <input type='text' disabled='disabled' name='baksy1' value='".$edit_user['baksy']."' /><br/>
Рубли: <input type='text' disabled='disabled' name='rubli1' value='".$edit_user['rubli']."' /><br/>
IP: <input type='text' disabled='disabled' name='ip1' value='".$edit_user['ip']."' /><br/>
Дата регистрации: <input disabled='disabled' type='text' name='date1' value='".$edit_user['date']."' /><br/><br/>
</center>
<input type='submit' name='submitsoz' class='btn' value='Сохранить'/><br/><br/>
</form>
</div>
<a href='index.php?'><font color='yellow'>» В админку</font></a></div>
<div class='niz'>
<p align='center' style='padding-top:3px;padding-bottom:3px;'>Вы вошли как <b>$user<b> | <a href='/exit.php'>Выйти</a><br /> <font color='#000'>Игровое время:</font> <b>$dateig</b><br/><font color='#000'>Игровой ID:</font> <b>$data_userid</b></p>
</div>
</body>
</html>
";
exit();
}
$igroki = mysql_query("SELECT * FROM users ORDER BY id ASC") or die(mysql_error());
$row_ig = mysql_fetch_array($igroki);
echo "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'><p style='color:red;padding-bottom:4px;margin:0;'>Пользователи: </p>";
do{
$usersall = $row_ig['id'];
printf("<b>ID:</b> <font color='yellow'>$usersall</font> <b>Игрок:</b> <a href='?users&edit=%s'>%s</a><br/>",$row_ig['id'],$row_ig['nick']);
}while($row_ig = mysql_fetch_array($igroki));
echo "<a href='index.php?'>» В админку</a></div></td>";
}else{
echo <<<admin
<table class="wdt gray-table">
<tr>
<td class="td-cell white" style="height: 55px; border-left: 1px solid #000" align="left">
<a href="?users"><font color='yellow'>» Игроки</a><br/>
<a href="?addnews"><font color='yellow'>» Добавить новость</a><br/>
</td>
admin;
}
}elseif($data_user['status'] == "2"){
if(isset($_GET['cars'])){
echo "<meta http-equiv='refresh' content='0; URL=index.php?' />";
exit();
}if(isset($_GET['addnews'])){
echo "<meta http-equiv='refresh' content='0; URL=index.php?' />";
exit();
}if(isset($_GET['turnir'])){
echo "<meta http-equiv='refresh' content='0; URL=index.php?' />";
exit();
}if(isset($_GET['addavto'])){
echo "<meta http-equiv='refresh' content='0; URL=index.php?' />";
exit();
}
if(isset($_GET['users'])){
if(isset($_GET['edit'])){
$edit_id = (int)$_GET['edit'];
if($edit_id == 0){
echo "<meta http-equiv='refresh' content='0; URL=index.php?users' />";
exit();
}else{
$edit_user = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE id='".$edit_id."'")) or die(mysql_error());
print "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'>
<form action='update_user.php' method='post'>
<center>
<font color='red'>ID игрока: <b>".$edit_user['id']."</b></font><br/>
<input type='hidden' name='id1' value='".$edit_user['id']."' />
Бан:<br/>Дать бан 10 Убрать бан 0 <input type='text' name='ban1' value='".$edit_user['ban']."' /><br/>
Ник: <input type='text' name='nick1' value='".$edit_user['nick']."' /><br/>
Монеты: <input type='text' disabled='disabled' name='money1' value='".$edit_user['money']."' /><br/>
IP: <input type='text' disabled='disabled' name='ip1' value='".$edit_user['ip']."' /><br/>
Дата регистрации: <input disabled='disabled' type='text' name='date1' value='".$edit_user['date']."' /><br/><br/>
</center>
<input type='submit' name='submitsoz' class='btn' value='Сохранить'/><br/><br/>
</form>
</div>
<a href='index.php?'>» В админку</a></div>
<div class='niz'>
<p align='center' style='padding-top:3px;padding-bottom:3px;'>Вы вошли как <b>$user<b> | <a href='/exit.php'>Выйти</a><br /> <font color='#000'>Игровое время:</font> <b>$dateig</b><br/><font color='#000'>Игровой ID:</font> <b>$data_userid</b></p>
</div>
</body>
</html>
";
exit();
}
}
$igroki = mysql_query("SELECT * FROM `users` ORDER BY `id` ASC") or die(mysql_error());
$row_ig = mysql_fetch_array($igroki);
echo "<table class='wdt gray-table'>
<tr>
<td class='td-cell white' style='height: 55px; border-left: 1px solid #000' align='left'><p style='color:red;padding-bottom:4px;margin:0;'>Пользователи: </p>";
do{
$usersall = $row_ig['id'];
printf("<b>ID:</b> <font color='yellow'>$usersall</font> <b>Игрок:</b> <a href='?users&edit=%s'>%s</a><br/>",$row_ig['id'],$row_ig['nick']);
}while($row_ig = mysql_fetch_array($igroki));
echo "<a href='index.php?'>» В админку</a></div></td>";
}else{
echo <<<moder
<table class="wdt gray-table">
<tr>
<td class="td-cell white" style="height: 55px; border-left: 1px solid #000" align="left">
» <a href="?users"><font color='yellow'>Игроки</a><br/>
» <a href="?addnews"><font color='yellow'> Добавить новость</a><br/>
</td>
moder;
}
}else{
echo "<meta http-equiv='refresh' content='0; URL=../index.php' />";
exit();
}
}
}
include_once "../inc/foot.php";
?>