<?php
/*********************************************************************/
#---------------------------KokirCMS Соц сети-------------------------#
#---------------------Kiriyan и kokir Сайт kiriyan.org----------------#
#-------------------------------2012 г.-------------------------------#
#------------------Связь ICQ 455002004. ewwap@mail.ru-----------------#
#----------------------------Пример ewwap.ru--------------------------#
/*********************************************************************/
if(isset($_POST['wall']))
{
$text = mb_substr(escstr($_POST['text']), 0, 1000);
if(mysql_num_rows(mysql_query("SELECT * FROM `wall` WHERE `author` = " . $user['id'] . " AND `date` > " . ($time - $antiFlood) . ";")))
echo '<div class="error">Антифлуд</div>';
else if(mysql_num_rows(mysql_query("SELECT * FROM `wall` WHERE `author` = " . $user['id'] . " AND `text` LIKE '" . $text . "';")) > 1)
echo '<div class="error">Антиспам</div>';
else
mysql_query("INSERT INTO `wall` VALUES(0, '" . $id . "', '" . $user['id'] . "', '" . $text . "', '" . $time . "');");
}
if(!empty($_GET['d']) && ctype_digit($_GET['id']))
{
$d = $_GET['d'];
$p = mysql_fetch_array(mysql_query("SELECT * FROM `wall` WHERE `id` = $d;"));
if($p['author'] == $user['id'] || $id == $user['id'] || $user['rights'] >= 1)
{
mysql_query("DELETE FROM `wall` WHERE `id` = " . $_GET['d'] . ";");
header("Location: {$home}/id{$id}?wall");
}
}
echo '<div class="tabs"><a href="?">Информация</a> <a>Стена (' . $totalWall . ')</a></div>';
echo '<div class="menu">';
echo '<form action="" method="post">';
echo '<label>Текст:(max.1000)<br/><textarea name="text" maxlength="1000"></textarea></label><br/>';
echo '<input type="submit" name="wall" value="Написать"/>';
echo '</form>';
echo '</div>';
$total = mysql_num_rows(mysql_query("SELECT * FROM `wall` WHERE `refid` = $id;"));
if($total)
{
if($total > $chms)
echo '<div class="nav">' . pagination($home . '/id' . $id . '?wall&', $total) . '</div>';
$query = mysql_query("SELECT * FROM `wall` WHERE `refid` = $id ORDER BY `date` DESC LIMIT $page, $chms;");
while($post = mysql_fetch_array($query))
{
echo '<div class="post">';
echo userInfo($post['author'], TRUE, '<small>' . fTime($post['date']) . '</small>');
echo tags($post['text']);
if($post['author'] == $user['id'] || $id == $user['id'] || $user['rights'] >= 1)
echo '<div class="sub"><a href="?wall&d=' . $post['id'] . '">Удалить</a></div>';
echo '</div>';
}
if($total > $chms)
echo '<div class="nav">' . pagination($home . '/id' . $id . '?wall&', $total) . '</div>';
echo '<div class="caption">Всего: ' . $total . '</div>';
if($total > 1 && ($id == $user['id'] || $user['rights'] >= 1))
echo '<div class="menu adm"><a href="' . $home . '/user/wall/trunc.php?id=' . $id . '">Очистка</a></div>';
}
else
echo '<div class="menu big-block">Сообщений пока нету. Будь первым!</div>';
?>