<?php
require_once ('system/func.php');
auth(); // Закроем от не авторизованных
# Настройки #
$id = abs(intval($_GET['id']));
if($id){
$prof = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".$id."'"));
# Ошибки #
if(!$prof){
$_SESSION['msg'] == 'Такой игрок не существует';
header('Location: /mail/');
exit();
}
if(isset($_GET['text'])){
if(isset($_POST['text'])){
$text = text($_POST['text']);
$ban = mysql_query('SELECT * FROM `ban` WHERE `id_user` = "'.$myID.'" AND `last` > "'.time().'" ORDER BY `id` DESC LIMIT 1');
$ban = mysql_fetch_array($ban);
if(strlen($text) < 3 or strlen($text) > 5000)$err = 'Длина сообщения должна быть в пределах 3 - 5000 символов';
if($ban)$err = "На вас наложен, бан осталось ".tl($ban[last]-time());
if(!$err){
mysql_query("INSERT INTO `mail` SET `in` = '".$myID."', `out` = '".$prof['id']."', `text` = '".$text."' , `time` = '".time()."'");
$kont = mysql_fetch_assoc(mysql_query("SELECT * FROM `kont` WHERE `id_user` = '".$myID."' && `id_kont` = '".$prof['id']."' LIMIT 1"));
if($kont['id_kont'] != $prof['id']){
mysql_query("INSERT INTO `kont` SET `id_user` = '".$prof['id']."', `id_kont` = '".$myID."', `time` = '".time()."'");
mysql_query("INSERT INTO `kont` SET `id_user` = '".$myID."', `id_kont` = '".$prof['id']."', `time` = '".time()."'");
}else{
mysql_query("update `kont` set `time` = '".time()."' WHERE `id_user` = '".$myID."' && `id_kont` = '".$prof['id']."'");
mysql_query("update `kont` set `time` = '".time()."' WHERE `id_user` = '".$prof['id']."' && `id_kont` = '".$myID."'");
}
$_SESSION['msg'] = 'Сообщение успешно отправлено';
header("Location: /mail/".$prof['id']."");
exit();
}else{
$_SESSION['msg'] = $err;
header("Location: /mail/".$prof['id']."");
exit();
}
}else{
$_SESSION['msg'] == 'Введите сообщение';
header("Location: /mail/".$prof['id']."");
exit();
}
}
$title = 'Диалог с '.$prof['login'];
require_once ('system/header.php');
echo "<div class='content'>";
echo "<a href='/mail/'>Почта</a> / <a href='/profile/".$prof['id']."'> ".$prof['login']."</a></div><div class='bordered'>";
echo '<form name="text" method="post" action="?text">';
echo '<div class="center mt4"><textarea rows="5" id="textarea" style="width: 95%;" name="text" maxlength="5000" minlength="0"></textarea><br>';
echo '<input class="btni" type="submit" value="Отправить">';
echo "<a href='/mail/".$prof['id']."' class='btni'>Обновить</a>";
echo "</div></div></form><div class='content'></div>";
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE (`in` = '".$prof['id']."' && `out` = '".$user['id']."') or (`in` = '".$user['id']."' && `out` = '".$_GET['id']."')"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `mail` WHERE (`in` = '".$prof['id']."' && `out` = '".$user['id']."') or (`in` = '".$user['id']."' && `out` = '".$prof['id']."') ORDER BY `id` DESC LIMIT ".$start.", ".$set['p_str']."");
$ank = '0';
if($k_post == 0) echo "<div class='feedback'>Сообщений не найдено</div>";
mysql_query("update `mail` set `online` = '0' WHERE `in` = '".$prof['id']."' && `out` = '".$myID."'");
mysql_query("UPDATE `kont` SET `new_msg` = '0' WHERE `id_kont` = '".$ank['id']."' AND `id_user` = '".$myID."' LIMIT 1");
while($post = mysql_fetch_assoc($q)) {
echo'<div class="bordered">';
if($post['online'] == 1)$color = 'green';
else $color = '#A8A8A8';
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".$post['in']."' LIMIT 1"));
echo icons_user($ank['id'])." <a href='/profile/".$ank['id']."'>".$ank['login']."</a>, <font color='".$color."'>".vremja($post['time'])."</font><br>".text_msg($post['text'])."<br>";
echo "</div>";
echo'<div class="content"></div>';
}
if($k_post > 10){
str('?',$k_page,$page); // Вывод страниц
}else{
}
echo "</div>";
echo "</a>";
}else{
$title = 'Почта';
require_once ('system/header.php');
$set['p_str'] = 10;
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `kont` WHERE `id_user` = '".$myID."'"),0);
$k_page = k_page($k_post,$set['p_str']);
$page = page($k_page);
$start = $set['p_str']*$page-$set['p_str'];
$q = mysql_query("SELECT * FROM `kont` WHERE `id_user` = '".$myID."' ORDER BY `time` DESC LIMIT ".$start.", ".$set['p_str']."");
if($k_post == 0)echo "<div class='feedback'>Вы еще не кому не писали</div>";
while ($post = mysql_fetch_assoc($q)){
$ank = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '".$post['id_kont']."' LIMIT 1"));
$mess = mysql_query("SELECT * FROM `mail` WHERE `in` = '".$user['id']."' && `out` = '".$ank['id']."' OR `in` = '".$ank['id']."' AND `out` = '".$user['id']."' ORDER BY `id` DESC LIMIT 1");
$msg = mysql_fetch_assoc($mess);
$new_msg = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE `out` = '".$user['id']."' && `in` = '".$ank['id']."' AND `online` = '1'"),0);
$online = mysql_result(mysql_query("SELECT COUNT(*) FROM `mail` WHERE `out` = '".$ank['id']."' && `in` = '".$user['id']."' AND `online` = '1'"),0);
echo"<div class='content'></div>";
echo "<div class='bordered'>";
echo icons_user($ank['id'])."".$ank['login'].", ".vremja($msg['time'])."<br>";
echo "<a href='/mail/".$ank['id']."'>";
echo' Читать ';
if($online > 0)echo "<font color='gren'>(»)</font>";
if($new_msg > 0)echo "<font color='red'>(»)</font>";
echo "</a></div>";
}
echo "</div>";
if($k_post > 10){
echo "<div class='block'>";
str('?',$k_page,$page); // Вывод страниц
echo "</div>";
}else{
}
}
require_once ('system/footer.php');
?>