Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- ob_start();
- require_once('config.php');
- $title = $url.' -';
- $title .= $language['title'];
- $design->title = $title;
- $design->lang = $language;
- $design->bottom = $bottom;
- if($puslapis == 'main')
- {
- if($loged)
- {
- //skaiciuojam kiek gautu zinuciu
- try
- {
- $messages = $db->prepare("
- SELECT id, mreaded FROM mess
- WHERE user= :user
- AND mtype='1'
- ORDER BY id DESC
- ");
- $messages->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages->execute();
- $messages_query = $messages->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totalm = count($messages_query); //skaiciuojam kiek is viso zinuciu
- //skaiciuojam kiek is viso nauju zinuciu
- $new_mess = array();
- foreach($messages_query as $mess_q)
- {
- if($mess_q['mreaded'] == 0)
- {
- $new_mess[] = $mess_q['id'];
- }
- }
- $total_new_messages = count($new_mess);
- $design->main(); //headeris ?>
- <div class="mainp">
- <div class="bordline2" style="padding-bottom: 5px;">
- <a href="messages"><?php echo $language['privacios_zinutes']; ?> (<?php echo $total_new_messages; ?>/<?php echo $totalm; ?>)</a>
- /
- <a href="user/<?php echo htmlspecialchars($nick); ?>"><?php echo $language['profilis']; ?></a>
- <br>
- </div>
- <?php echo $ads_m; ?>
- </div>
- <div class="mainp2">
- <div class="usw">
- <?php echo $language['dalintis_ispudziais']; ?>:<br>
- <form action="new_event?p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off"/>
- <input type="submit" value="<?php echo $language['siusti']; ?>"/>
- </form>
- <div style="text-align: right;">
- <i>
- <small>
- <?php echo $language['noriu_ikelti']; ?>
- <a href="share_photo"><?php echo $language['nuotrauka']; ?></a>
- </small>
- </i>
- </div>
- </div>
- <?php
- //nustatom laika nuo kada iki kada rodyti nuotrauku kelimus
- $taim = time();
- $taim2 = $taim-(60*60*12);
- $profile_photos = $language['profilio_nuotraukos'];
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, events.event AS rate, events.etype, events.typ, usert.user, events.mess, events.taim,
- pht.name AS name,
- IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), IFNULL(ev.total_coments, 0 ),
- IF(events.etype=3,IFNULL(pht.total_photo,0),0) AS total_photos,
- IF(events.etype=3,IF(events.album>0,(SELECT albums.name FROM albums WHERE albums.id=events.album),'$profile_photos'),' ') AS album_name,
- IF((SELECT traf.id FROM traf WHERE traf.usert=:user AND traf.event=events.id LIMIT 1)>0, true, false ) AS voted,
- IF(events.etype=1,IFNULL((SELECT COUNT(traf.id) FROM traf WHERE traf.event=events.event),0),0) AS total_rates,
- IF(events.etype=1,IFNULL(ev.user,0),0) AS user_event,
- IF(events.etype=1,IFNULL((SELECT traf.id FROM traf WHERE traf.event=events.event AND traf.usert=:user),0),0) AS total_my_rates,
- IF(events.etype=1,IFNULL((SELECT usert.user FROM usert WHERE user_event=usert.id),0),0) AS username_event,
- IF(events.etype=2,IFNULL((SELECT COUNT(id) FROM events AS even WHERE even.event=events.event AND even.etype='2'),0),0) AS total_comment_ev,
- IF(events.etype=2,IFNULL(ev.user,0),0) AS user_eventt,
- IF(events.etype=2,IFNULL((SELECT evcom.id FROM evcom WHERE evcom.event=events.event AND evcom.user=:user LIMIT 1),0),0) AS total_my_comments,
- IF(events.etype=2,IFNULL((SELECT usert.user FROM usert WHERE user_eventt=usert.id),0),0) AS username_events,
- (SELECT traf.choosed FROM traf WHERE traf.usert=:user AND traf.event=events.id LIMIT 1) AS my_vote FROM events
- LEFT JOIN usert ON (events.user= usert.id)
- LEFT JOIN (SELECT COUNT(id) AS total_coments, IFNULL(event,0) AS event FROM evcom GROUP BY event) AS ev ON ev.event=events.id
- LEFT JOIN friends ON (friends.user= :user)
- LEFT JOIN events AS ev ON (ev.id= events.event AND (events.etype='1' OR events.etype='2'))
- LEFT JOIN followers ON (followers.user= :user)
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, IFNULL(event,0) AS event, usert FROM traf GROUP BY event) AS tr ON tr.event=events.id
- LEFT JOIN (SELECT CONCAT(GROUP_CONCAT(id,':',server,':',name ORDER BY id DESC SEPARATOR '/')) AS name, COUNT(id) AS total_photo, IFNULL(album,0) AS album, IFNULL(user,0) AS user, IFNULL(taim,0) AS taim FROM photos WHERE (taim BETWEEN $taim2 AND $taim) GROUP BY user, album ORDER BY id) AS pht ON pht.album=events.album AND events.user=pht.user AND events.etype='3'
- WHERE ((events.user= :user $etype2)
- OR (events.user= friends.friend AND events.typ<'3')
- OR (events.user= followers.friend AND events.typ='1'))
- AND (CASE WHEN events.etype='1' AND ev.user= :user THEN 0 ELSE events.id END)
- AND (CASE WHEN events.etype='2' AND ev.user= :user THEN 0 ELSE events.id END)
- AND (CASE WHEN events.etype='3' AND pht.total_photo IS NULL THEN 0 ELSE events.id END)
- GROUP BY events.etype, events.event, CASE WHEN events.event='0' AND events.etype<'3'THEN events.id WHEN events.etype='3' THEN pht.user ELSE 0 END
- ORDER BY events.taim DESC
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totale = count($events_query); //skaiciuojam kiek ivikiu
- if($totale < 1)
- { ?>
- <div class="usw2">
- <?php echo $language['nera_ivikiu']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 7; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totale / $inpage); //puslapiu skaicius
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //pradzia nuo kada rodys
- $end = $p*$inpage; // pabaiga kada baigs rodyt
- for($de=$start; $de<$end; $de++)
- {
- //nustatom privatuma
- if($events_query[$de]['typ'] == 2)
- {
- $privacy = $language['tik_draugams'];
- }
- elseif($events_query[$de]['typ'] == 3)
- {
- $privacy = $language['tik_man'];
- }
- else
- {
- $privacy = $language['viesai'];
- }
- if($events_query[$de]['etype'] == 0)//iraso tipas: komentaras
- {
- $zinex = explode(' ',$events_query[$de]['mess']); //ziurim ar ne per ilga zinute, jei taip, sutrumpinam
- if(count($zinex) < 30)
- {
- $mess = htmlspecialchars($events_query[$de]['mess']);
- }
- else
- {
- $zina = array();
- for($zn=0; $zn<40; $zn++)
- {
- $zina[] = $zinex[$zn];
- }
- $mess = htmlspecialchars(implode(' ',$zina));
- $mess .= '... <a href="events?post='.$events_query[$de]['id'].'"><small>'.$language['ziureti_visa'].'</small></a>';
- }
- $vote_sum = $events_query[$de]['IFNULL(tr.vote, 0 )'];
- $total_votes = $events_query[$de]['IFNULL(tr.total_votes, 0 )'];
- if($total_votes > 0)
- {
- $vote_prc = round(($vote_sum/$total_votes)*100);
- }
- else
- {
- $vote_prc = 0;
- }
- $voted = $events_query[$de]['voted'];
- $my_vote = $events_query[$de]['my_vote'];
- if($my_vote == 1)
- {
- $my_vote = $language['gerai'];
- }
- else
- {
- $my_vote = $language['blogai'];
- }
- $vote_sum = number_format($vote_sum, 0, '.', '.');
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- } ?>
- <div class="usw2">
- <div class="bordline2">
- <?php echo $usr; ?>: <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small><br>
- <?php echo nl2br($mess); ?><br>
- </div>
- <?php if($events_query[$de]['user'] == $nick)
- { ?>
- <small><?php echo $language['bendra_nuomone']; ?>:</small>
- <small>(<?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>)</small><br>
- <?php }
- elseif($voted)
- { ?>
- <small><?php echo $language['jusu_nuomone']; ?>: <b><?php echo $my_vote; ?></b></small>
- <small>(<a href="vote_event?post=<?php echo $events_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=3"><?php echo $language['naikinti_balsa']; ?></a>)</small><br>
- <small><?php echo $language['bendra_nuomone']; ?>:</small>
- <small>(<?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>)</small><br>
- <?php }
- else
- { ?>
- <small><?php echo $language['balsuoju']; ?>:</small>
- <small><a href="vote_event?post=<?php echo $events_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=1"><?php echo $language['gerai']; ?></a></small>
- <small>|</small>
- <small><a href="vote_event?post=<?php echo $events_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=2"><?php echo $language['blogai']; ?></a></small>
- <small>(<?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>)</small><br>
- <?php } ?>
- <small><a href="events?post=<?php echo $events_query[$de]['id']; ?>"><?php echo number_format($events_query[$de]['IFNULL(ev.total_coments, 0 )'], 0, '.', '.'); ?> <?php echo $language['komentaru']; ?></a>
- <?php if($events_query[$de]['user'] == $nick)
- { ?>
- | <a href="edit_event?post=<?php echo $events_query[$de]['id']; ?>"><?php echo $language['redaguoti']; ?></a>
- <?php } ?>
- </small>
- </div>
- <?php }
- elseif($events_query[$de]['etype'] == 1)
- {
- if($events_query[$de]['total_my_rates'] > 0)
- {
- $tr = 2;
- $jus = $language['jus'];
- $me = true;
- }
- else
- {
- $tr = 1;
- $jus = '';
- $me = false;
- }
- $total_rates = $events_query[$de]['total_rates']-$tr; ?>
- <div class="usw2">
- <div class="bordline2">
- <?php if($total_rates == 0 && !$me)
- {
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- if($events_query[$de]['username_event'] != '')
- {
- $usr2 = '<a href="users/'.htmlspecialchars($events_query[$de]['username_event']).'">'.htmlspecialchars($events_query[$de]['username_event']).'</a>';
- }
- else
- {
- $usr2 = 'Unknown';
- }
- echo $usr.' '.$language['isreiske_nuomone'].' '.$usr2; ?>
- <a href="events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irase']; ?></a>
- </div>
- <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small>
- <?php }
- elseif($total_rates == 0 && $me)
- {
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- if($events_query[$de]['username_event'] == $nick)
- {
- $usr2 = $language['jusu'];
- }
- else
- {
- if($events_query[$de]['username_event'] != '')
- {
- $usr2 = '<a href="users/'.htmlspecialchars($events_query[$de]['username_event']).'">'.htmlspecialchars($events_query[$de]['username_event']).'</a>';
- }
- else
- {
- $usr2 = 'Unknown';
- }
- }
- echo $jus.' '.$language['ir'].' '.$usr.' '.$language['isreiskete_nuomone'].' '.$usr2; ?>
- <a href="events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irase']; ?></a>
- </div>
- <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small>
- <?php
- }
- else
- {
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- if($events_query[$de]['username_event'] == $nick)
- {
- $usr2 = $language['jusu'];
- }
- else
- {
- if($events_query[$de]['username_event'] != '')
- {
- $usr2 = '<a href="users/'.htmlspecialchars($events_query[$de]['username_event']).'">'.htmlspecialchars($events_query[$de]['username_event']).'</a>';
- }
- else
- {
- $usr2 = 'Unknown';
- }
- }
- if($jus != '')
- {
- $jus = $jus.',';
- }
- echo $jus.' '.$usr.' '.$language['ir_dar'].' '.$total_rates.' '.$language['isreiske_nuomone'].' '.$usr2; ?>
- <a href= "events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irase']; ?></a>
- </div>
- <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small>
- <?php } ?>
- </div>
- <?php }
- elseif($events_query[$de]['etype'] == 2)
- {
- if($events_query[$de]['total_my_comments'] > 0)
- {
- $tr = 2;
- $jus = $language['jus'];
- $me = true;
- }
- else
- {
- $tr = 1;
- $jus = '';
- $me = false;
- }
- $total_rates = $events_query[$de]['total_comment_ev']-$tr;
- ?>
- <div class="usw2">
- <div class="bordline2">
- <?php
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- if($events_query[$de]['username_events'] == $nick)
- {
- $usr2 = $language['jusu'];
- }
- else
- {
- if($events_query[$de]['username_events'] != '')
- {
- $usr2 = '<a href="users/'.htmlspecialchars($events_query[$de]['username_events']).'">'.htmlspecialchars($events_query[$de]['username_events']).'</a>';
- }
- else
- {
- $usr2 = 'Unknown';
- }
- }
- if($me != false && $total_rates < 1)
- {
- echo $jus.' '.$language['ir'].' '.$usr.' '.$language['pakomentavote'].' '.$usr2; ?>
- <a href="events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irasa']; ?></a>
- <?php }
- elseif($total_rates < 1 && $me == false)
- {
- echo $usr.' '.$language['pakomentavo'].' '.$usr2; ?>
- <a href="events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irasa']; ?></a>
- <?php }
- else
- {
- if($jus != '')
- {
- $jus = $jus.',';
- }
- echo $jus.' '.$usr.' '.$language['ir_dar'].' '.$total_rates.' '.$language['pakomentavo'].' '.$usr2; ?>
- <a href="events?post=<?php echo $events_query[$de]['rate']; ?>"><?php echo $language['irasa']; ?></a>
- <?php }
- ?>
- </div>
- <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small>
- </div>
- <?php }
- elseif($events_query[$de]['etype'] == 3)
- {
- $total_photos = $events_query[$de]['total_photos'];
- //suskaidom kad butu atskiros nuotraukos
- $explode = explode('/', $events_query[$de]['name']);
- $photos = array();
- //padarom kad rodytu maximum 5 nuotraukas, jei nuotrauku maziau, sustabdom cikla
- for($ph=0; $ph<5; $ph++)
- {
- $photos[] = $explode[$ph];
- if($ph+1 >= $total_photos)
- {
- break;
- }
- }
- if($events_query[$de]['mess'] != '')
- {
- $zinex = explode(' ',$events_query[$de]['mess']); //ziurim ar ne per ilga zinute, jei taip, sutrumpinam
- if(count($zinex) < 30)
- {
- $mess = htmlspecialchars($events_query[$de]['mess']);
- }
- else
- {
- $zina = array();
- for($zn=0; $zn<40; $zn++)
- {
- $zina[] = $zinex[$zn];
- }
- $mess = htmlspecialchars(implode(' ',$zina));
- $mess .= '... <a href="events?post='.$events_query[$de]['id'].'"><small>'.$language['ziureti_visa'].'</small></a>';
- }
- $mess .= '<br>';
- }
- else
- {
- $mess = '';
- }
- if($events_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query[$de]['user']).'">'.htmlspecialchars($events_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- } ?>
- <div class="usw2">
- <div class="bordline2">
- <?php if($total_photos == 1)
- {
- echo $usr.' '.$language['ikele'].' '.$language['nuotrauka_i_albuma']; ?> <u><?php echo $events_query[$de]['album_name']; ?></u>:<br>
- <?php }
- else
- {
- echo $usr.' '.$language['ikele'].' '.$total_photos.' '.$language['nuotraukas_i_albuma']; ?> <u><?php echo $events_query[$de]['album_name']; ?></u>:<br>
- <?php }
- //rodom nuotraukas
- foreach($photos as $photo)
- {
- list($photo_id,$photo_server,$photo_name) = explode(':', $photo);
- $server = new servers($photo_server);
- $server_name = $server->name(); ?>
- <a href="photos?view=<?php echo $photo_id; ?>"><img src="<?php echo $photo_url; ?>photo_preview/<?php echo $server_name; ?>/1/<?php echo $photo_id; ?>_<?php echo $photo_name; ?>" alt="<?php echo htmlspecialchars($events_query[$de]['user']); ?>"/></a>
- <?php } ?>
- <br>
- <?php echo nl2br($mess); ?>
- </div>
- <small>(<?php echo mdata($events_query[$de]['taim'],$taim,$language); ?>)</small> <small>(<?php echo $privacy; ?>)</small>
- </div>
- <?php }
- else
- {
- }
- if($de+1 >= $totale)
- {
- break;
- }
- }
- if($totalp > 1)
- { ?>
- <div class="usw3">
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="main?p=<?php echo --$back; ?>"><?php echo $language['ankstesni_ivykiai']; ?></a>
- <?php }
- if($p > 1 && $p < $totalp)
- { ?>
- |
- <?php }
- if ($p>=$totalp)
- {}
- else
- {
- $next=$p; ?>
- <a href="main?p=<?php echo ++$next; ?>"><?php echo $language['velesni_ivykiai']; ?></a>
- <?php } ?>
- </div>
- <?php }
- } ?>
- </div>
- <div class="bordline2"></div>
- <div class="mainp">
- <div class="inp">
- <?php echo $language['ieskoti_draugu']; ?>:<br>
- <form action="search_friend?p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off" placeholder="<?php echo $language['draugo_vardas_arba_nick']; ?>"/>
- <input type="submit" value="<?php echo $language['ieskoti']; ?>"/>
- </form>
- <small>
- <?php echo $language['ieskoti']; ?>
- <?php echo $language['pazystamu']; ?>
- <a href="friends?s=1"><?php echo $language['kurie_yra_draugu_sarase']; ?></a>!<br>
- <?php echo $language['noriu_susirasti']; ?>
- <a href="friends?s=2"><?php echo $language['nauju_draugu']; ?></a>!
- </small>
- </div>
- </div>
- <div class="nav">
- <small><a href="logout"><<<?php echo $language['atsijungti']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $design->main(); //headeris ?>
- <div class="mainp">
- <?php $log = new log($db); //prisijungimo laukeliai
- $log->lang = $language;
- $log->main('',''); ?>
- <div class="bordline">
- - <a href="registration"><?php echo $language['registruotis']; ?></a><br>
- - <a href="forget"><?php echo $language['pamirsai_slaptazodi']; ?></a><br>
- </div>
- </div>
- <?php $design->footer(); //apacia
- }
- }
- elseif($puslapis == 'share_photo' && $loged)
- {
- if($sx != $axrf)
- {
- unset($_GET['p']);
- }
- $album_notice = '';
- $photo_notice = '';
- $comment_notice = '';
- if(isset($_GET['p']))
- {
- if(isset($_POST['album']))
- {
- $album = preg_replace('/[^0-9]/', '', $_POST['album']);
- settype($album, 'integer');
- }
- else
- {
- $album = 0;
- }
- if($album > 0)
- {
- //tikrinam ar egzistuoja toks albumas
- try
- {
- $albumc = $db->prepare("
- SELECT id FROM albums
- WHERE user= :user AND
- id= :id
- ORDER BY id DESC
- ");
- $albumc->bindParam(':user', $user_id, PDO::PARAM_INT);
- $albumc->bindParam(':id', $album, PDO::PARAM_INT);
- $albumc->execute();
- $albumc_query = $albumc->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if(empty($albumc_query['id']))
- {
- $album_notice = '<span class="red"><small><i>'.$language['toks_albumas_negzistuoja'].'</i></small></span><br>';
- }
- }
- $time = time();
- if(isset($_FILES['photo']['tmp_name']) && !empty($_FILES['photo']['tmp_name'])
- && is_uploaded_file($_FILES['photo']['tmp_name']) == true && @getimagesize($_FILES['photo']['tmp_name']) == true
- && $post_time < $time)
- {
- if(isset($_POST['mess']))
- {
- $mess = $_POST['mess'];
- }
- else
- {
- $mess = '';
- }
- if($_FILES['photo']['size'] > $max_photo_size)
- {
- $photo_notice = '<span class="red"><small><i>'.$language['per_didelis_failas'].'</i></small></span><br>';
- }
- elseif(strlen($mess) > 50000)
- {
- $comment_notice = '<span class="red"><small><i>'.$language['per_ilgas_komentaras'].'</i></small></span><br>';
- }
- else
- {
- $servers = new servers($server);
- if($servers->connect())
- {
- if($_FILES['photo']['type'] == 'image/gif')
- {
- $type = '.gif';
- }
- elseif($_FILES['photo']['type'] == 'image/png')
- {
- $type = '.png';
- }
- else
- {
- $type = '.jpg';
- }
- $photo = iph($_FILES['photo']['name'].time()).$type;
- if($servers->upload($_FILES['photo']['tmp_name'],$photo,$user_id))
- {
- //kuriam irasa, jeigu egzistuoja atnaujinam laika
- try
- {
- $albumch = $db->prepare("
- SELECT id FROM events
- WHERE user= :user AND
- album= :album
- ORDER BY id DESC
- ");
- $albumch->bindParam(':user', $user_id, PDO::PARAM_INT);
- $albumch->bindParam(':album', $album, PDO::PARAM_INT);
- $albumch->execute();
- $albumch_query = $albumch->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if(empty($albumch_query['id']))
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO events
- SET user= :user,
- typ= :typ,
- taim= :taim,
- etype='3',
- album= :album,
- mess= :mess
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $time, PDO::PARAM_INT);
- $add->bindParam(':album', $album, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- else
- {
- try
- {
- $add=$db->prepare("
- UPDATE events
- SET typ= :typ,
- taim= :taim,
- mess= :mess
- WHERE user= :user AND album= :album
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $time, PDO::PARAM_INT);
- $add->bindParam(':album', $album, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- //kuriam nuotrauka mysqle
- try
- {
- $add=$db->prepare("
- INSERT INTO photos
- SET user= :user,
- typ= :typ,
- mess= :mess,
- album= :album,
- name= :name,
- server= :server,
- taim= :taim
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':album', $album, PDO::PARAM_INT);
- $add->bindParam(':name', $photo, PDO::PARAM_STR);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':server', $server, PDO::PARAM_STR);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->bindParam(':taim', $time, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- //atnaujinam antiflood
- $posttime = $time+10;
- try
- {
- $add=$db->prepare("
- UPDATE usert
- SET postm= :postm
- WHERE id= :id
- ");
- $add->bindParam(':id', $user_id, PDO::PARAM_INT);
- $add->bindParam(':postm', $posttime, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- else
- {
- $photo_notice = '<span class="red"><small><i>'.$language['nepavyko_ikelti_failo'].'</i></small></span><br>';
- }
- }
- else
- {
- $photo_notice = '<span class="red"><small><i>'.$language['nepavyko_ikelti_failo'].'</i></small></span><br>';
- }
- }
- }
- else
- {
- $photo_notice = '<span class="red"><small><i>'.$language['nepavyko_ikelti_failo2'].'</i></small></span><br>';
- }
- }
- try
- {
- $albums = $db->prepare("
- SELECT id, name FROM albums
- WHERE user= :user
- ORDER BY id DESC
- ");
- $albums->bindParam(':user', $user_id, PDO::PARAM_INT);
- $albums->execute();
- $albums_query = $albums->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $design->main(); ?>
- <div class="mainp">
- <div class="bord">
- <span class="red">*</span><?php echo $language['nuotraukos_ikelimas']; ?>:<br>
- <form action="share_photo?p=1&sx=<?php echo $amsrf; ?>" method="post" enctype="multipart/form-data">
- <input type="file" name="photo" id="photo"><br>
- <?php echo $photo_notice; ?>
- <?php echo $language['pasirinkite_albuma_i_kuri_ikelsite']; ?>:<br>
- <select name="album">
- <option value="0"><?php echo $language['profilio_nuotraukos']; ?></option>
- <?php foreach($albums_query as $albums)
- { ?>
- <option value="<?php echo $albums['id']; ?>"><?php echo $albums['name']; ?></option>
- <?php } ?>
- </select>
- <br>
- <?php echo $album_notice; ?>
- <?php echo $language['komentaras']; ?>:<br>
- <textarea rows="10" cols="17" name="mess"></textarea><br>
- <?php echo $comment_notice; ?>
- <input type="submit" name="submit" value="<?php echo $language['ikelti']; ?>"><br>
- </form>
- <br>
- <span class="red">*</span>
- <small>
- <?php echo $language['nuotraukos_dydis_negali_virsyti']; ?>
- </small><br>
- <span class="red">*</span>
- <small>
- <?php echo $language['palaikomi_failai']; ?>: .jpg, .png, .gif
- </small>
- </div>
- <div class="bordline">
- » <a href="my_albums"><?php echo $language['mano_albumai']; ?></a> (<?php echo count($albums_query); ?>)<br>
- » <a href="photo_settings"><?php echo $language['nustatymai']; ?></a><br>
- </div>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($puslapis == 'events')
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- if($loged)
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, events.edited, events.taim2, events.taim, events.typ, usert.user, events.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), (SELECT traf.choosed FROM traf WHERE traf.usert=:user AND traf.event=events.id LIMIT 1) AS my_vote,IF((SELECT traf.id FROM traf WHERE traf.usert=:user AND traf.event=events.id LIMIT 1)>0, true, false ) AS voted FROM events
- LEFT JOIN usert ON (events.user= usert.id)
- LEFT JOIN friends ON (friends.user= :user)
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event, usert FROM traf GROUP BY event) AS tr ON tr.event=events.id
- WHERE events.id= :post AND ((events.user= :user) OR (events.user= friends.friend AND events.typ<'3')
- OR (events.typ='1')) $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- else
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, events.edited, events.taim2, events.taim, events.typ, usert.user, events.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), com.total_comments FROM events
- LEFT JOIN usert ON (events.user= usert.id)
- LEFT JOIN (SELECT COUNT(id) AS total_comments, event FROM evcom GROUP BY event) AS com ON com.event=events.id
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event FROM traf GROUP BY event) AS tr ON tr.event=events.id
- WHERE events.id= :post AND events.typ='1' $etype
- LIMIT 1
- ");
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $vote_sum = $events_query['IFNULL(tr.vote, 0 )'];
- $total_votes = $events_query['IFNULL(tr.total_votes, 0 )'];
- if($total_votes > 0)
- {
- $vote_prc = round(($vote_sum/$total_votes)*100);
- }
- else
- {
- $vote_prc = 0;
- }
- if($loged)
- {
- $voted = $events_query['voted'];
- $my_vote = $events_query['my_vote'];
- }
- else
- {
- $voted = 0;
- $my_vote = 0;
- $nick = '';
- }
- $vote_sum = number_format($vote_sum, 0, '.', '.');
- //nustatom privatuma
- if($events_query['typ'] == 2)
- {
- $privacy = $language['tik_draugams'];
- }
- elseif($events_query['typ'] == 3)
- {
- $privacy = $language['tik_man'];
- }
- else
- {
- $privacy = $language['viesai'];
- }
- $taim = time();
- if($my_vote == 1)
- {
- $my_vote = $language['gerai'];
- }
- else
- {
- $my_vote = $language['blogai'];
- }
- if($events_query['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query['user']).'">'.htmlspecialchars($events_query['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- $design->main(); ?><div class="mainp">
- <div class="bord">
- <?php echo $usr; ?>:
- <small>(<?php echo mdata($events_query['taim'],$taim,$language); ?>)</small>
- <small>(<?php echo $privacy; ?>)</small><br>
- <?php if($events_query['edited'])
- { ?>
- <small>(<?php echo $language['redaguota']; ?>: <?php echo mdata($events_query['taim2'],$taim,$language); ?>)</small><br>
- <?php } ?>
- </div>
- <div class="menu" style="margin-top: 2px;">
- <?php echo nl2br(htmlspecialchars($events_query['mess'])); ?>
- </div>
- <?php echo $ads_m; ?>
- <div class="bordline2">
- </div>
- <small><?php echo $language['bendra_nuomone']; ?>:
- <?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>
- <a href="ev_votes?post=<?php echo $events_query['id']; ?>"><?php echo $language['is']; ?> <?php echo number_format($total_votes, 0, '.', '.'); ?>
- <?php echo $language['balsavusiuju']; ?></a></small><br>
- <?php
- if($loged)
- {
- if($events_query['user'] == $nick)
- {}
- elseif($voted)
- { ?>
- <small><?php echo $language['jusu_nuomone']; ?>: <b><?php echo $my_vote; ?></b></small>
- <small>(<a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=3"><?php echo $language['naikinti_balsa']; ?></a>)</small><br>
- <?php }
- else
- { ?>
- <small><?php echo $language['balsuoju']; ?>:</small>
- <small><a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=1"><?php echo $language['gerai']; ?></a></small>
- <small>|</small>
- <small><a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=2"><?php echo $language['blogai']; ?></a></small>
- <?php } ?>
- <?php if($events_query['user'] == $nick)
- { ?>
- <small><a href="edit_event?post=<?php echo $events_query['id']; ?>"><?php echo $language['redaguoti']; ?></a></small>
- <?php }
- } ?>
- </div>
- <div class="mainp2">
- <div class="usw">
- <?php if($loged)
- {
- echo $language['komentuoti']; ?>:<br>
- <form action="new_comment?post=<?php echo $events_query['id']; ?>&p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off"/>
- <input type="submit" value="<?php echo $language['siusti']; ?>"/>
- </form>
- <?php }
- else
- {
- echo $language['komentarai']; ?>: (<?php echo $events_query['total_comments']; ?>)<br>
- <?php } ?>
- </div>
- <?php try
- {
- $comments = $db->prepare("
- SELECT evcom.id, evcom.edited, evcom.taim2, usert.user, evcom.time, evcom.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), (SELECT traf2.choosed FROM traf2 WHERE traf2.usert=:user AND traf2.event=evcom.id LIMIT 1) AS my_vote, IF((SELECT traf2.id FROM traf2 WHERE traf2.usert=:user AND traf2.event=evcom.id LIMIT 1)>0, true, false ) AS voted FROM evcom
- LEFT JOIN usert ON (evcom.user= usert.id)
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event, usert FROM traf2 GROUP BY event) AS tr ON tr.event=evcom.id
- WHERE evcom.event= :event
- ORDER BY IFNULL(tr.vote, 0 ) DESC, id DESC
- ");
- $comments->bindParam(':event', $events_query['id'], PDO::PARAM_INT);
- $comments->bindParam(':user', $user_id, PDO::PARAM_INT);
- $comments->execute();
- $comments_query = $comments->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totale = count($comments_query); //skaiciuojam kiek ivikiu
- if($totale < 1)
- { ?>
- <div class="usw2">
- <?php echo $language['komentaru_nera']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 7; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totale / $inpage); //puslapiu skaicius
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //pradzia nuo kada rodys
- $end = $p*$inpage; // pabaiga kada baigs rodyt
- for($de=$start; $de<$end; $de++)
- {
- $vote_sum = $comments_query[$de]['IFNULL(tr.vote, 0 )'];
- $total_votes = $comments_query[$de]['IFNULL(tr.total_votes, 0 )'];
- if($total_votes > 0)
- {
- $vote_prc = round(($vote_sum/$total_votes)*100);
- }
- else
- {
- $vote_prc = 0;
- }
- $voted = $comments_query[$de]['voted'];
- $my_vote = $comments_query[$de]['my_vote'];
- $vote_sum = number_format($vote_sum, 0, '.', '.');
- if($my_vote == 1)
- {
- $my_vote = $language['gerai'];
- }
- else
- {
- $my_vote = $language['blogai'];
- }
- if($comments_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($comments_query[$de]['user']).'">'.htmlspecialchars($comments_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- } ?>
- <div class="usw2">
- <div class="bordline2">
- <?php echo $usr; ?>:
- <small>(<?php echo mdata($comments_query[$de]['time'],$taim,$language); ?>)</small>
- <?php if($events_query['user'] == $nick && $comments_query[$de]['user'] != $nick)
- { ?>
- <small><a href="delete_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['trinti_irasa']; ?></a></small>
- <?php } ?> <br>
- <?php echo nl2br(htmlspecialchars($comments_query[$de]['mess'])); ?>
- </div>
- <small><?php echo $language['bendra_nuomone']; ?>:
- <?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>
- <a href="comment_votes?post=<?php echo $comments_query[$de]['id']; ?>"><?php echo $language['is']; ?> <?php echo number_format($total_votes, 0, '.', '.'); ?>
- <?php echo $language['balsavusiuju']; ?></a></small><br>
- <?php if($loged)
- {
- if($comments_query[$de]['user'] == $nick)
- { ?>
- <small><a href="edit_comment?post=<?php echo $comments_query[$de]['id']; ?>"><?php echo $language['redaguoti']; ?></a></small>
- <?php }
- elseif($voted)
- { ?>
- <small><?php echo $language['jusu_nuomone']; ?>: <b><?php echo $my_vote; ?></b></small>
- <small>(<a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=3"><?php echo $language['naikinti_balsa']; ?></a>)</small>
- <?php }
- else
- { ?>
- <small><?php echo $language['balsuoju']; ?>:</small>
- <small><a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=1"><?php echo $language['gerai']; ?></a></small>
- <small>|</small>
- <small><a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=2"><?php echo $language['blogai']; ?></a></small>
- <?php } ?>
- <br>
- <?php if($comments_query[$de]['edited'])
- { ?>
- <small>(<?php echo $language['redaguota']; ?>: <?php echo mdata($comments_query[$de]['taim2'],$taim,$language); ?>)</small><br>
- <?php }
- } ?>
- </div>
- <?php if($de+1 >= $totale)
- {
- break;
- }
- }
- if($totalp > 1)
- { ?>
- <div class="usw3">
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="events?post=<?php echo $post; ?>&p=<?php echo --$back; ?>"><?php echo $language['ankstesni']; ?></a>
- <?php }
- if($p > 1 && $p < $totalp)
- { ?>
- |
- <?php }
- if ($p>=$totalp)
- {}
- else
- {
- $next=$p; ?>
- <a href="events?post=<?php echo $post; ?>&p=<?php echo ++$next; ?>"><?php echo $language['velesni']; ?></a>
- <?php } ?>
- </div>
- <?php }
- } ?>
- </div>
- <div class="bordline3"></div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'photos')
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- if($loged)
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT photos.id, photos.taim, usert.user, photos.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), (SELECT traf3.choosed FROM traf3 WHERE traf3.usert=:user AND traf3.event=photos.id LIMIT 1) AS my_vote,IF((SELECT traf3.id FROM traf3 WHERE traf3.usert=:user AND traf3.event=photos.id LIMIT 1)>0, true, false ) AS voted FROM photos
- LEFT JOIN usert ON (events.user= usert.id)
- LEFT JOIN friends ON (friends.user= :user)
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event, usert FROM traf3 GROUP BY event) AS tr ON tr.event=photos.id
- WHERE photos.id= :post AND ((photos.user= :user) OR (photos.user= friends.friend AND photos.typ<'3')
- OR (events.typ='1')) $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- else
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, events.edited, events.taim2, events.taim, events.typ, usert.user, events.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), com.total_comments FROM events
- LEFT JOIN usert ON (events.user= usert.id)
- LEFT JOIN (SELECT COUNT(id) AS total_comments, event FROM evcom GROUP BY event) AS com ON com.event=events.id
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event FROM traf GROUP BY event) AS tr ON tr.event=events.id
- WHERE events.id= :post AND events.typ='1' $etype
- LIMIT 1
- ");
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $vote_sum = $events_query['IFNULL(tr.vote, 0 )'];
- $total_votes = $events_query['IFNULL(tr.total_votes, 0 )'];
- if($total_votes > 0)
- {
- $vote_prc = round(($vote_sum/$total_votes)*100);
- }
- else
- {
- $vote_prc = 0;
- }
- if($loged)
- {
- $voted = $events_query['voted'];
- $my_vote = $events_query['my_vote'];
- }
- else
- {
- $voted = 0;
- $my_vote = 0;
- $nick = '';
- }
- $vote_sum = number_format($vote_sum, 0, '.', '.');
- //nustatom privatuma
- if($events_query['typ'] == 2)
- {
- $privacy = $language['tik_draugams'];
- }
- elseif($events_query['typ'] == 3)
- {
- $privacy = $language['tik_man'];
- }
- else
- {
- $privacy = $language['viesai'];
- }
- $taim = time();
- if($my_vote == 1)
- {
- $my_vote = $language['gerai'];
- }
- else
- {
- $my_vote = $language['blogai'];
- }
- if($events_query['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($events_query['user']).'">'.htmlspecialchars($events_query['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- }
- $design->main(); ?><div class="mainp">
- <div class="bord">
- <?php echo $usr; ?>:
- <small>(<?php echo mdata($events_query['taim'],$taim,$language); ?>)</small>
- <small>(<?php echo $privacy; ?>)</small><br>
- <?php if($events_query['edited'])
- { ?>
- <small>(<?php echo $language['redaguota']; ?>: <?php echo mdata($events_query['taim2'],$taim,$language); ?>)</small><br>
- <?php } ?>
- </div>
- <div class="menu" style="margin-top: 2px;">
- <?php echo nl2br(htmlspecialchars($events_query['mess'])); ?>
- </div>
- <?php echo $ads_m; ?>
- <div class="bordline2">
- </div>
- <small><?php echo $language['bendra_nuomone']; ?>:
- <?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>
- <a href="ev_votes?post=<?php echo $events_query['id']; ?>"><?php echo $language['is']; ?> <?php echo number_format($total_votes, 0, '.', '.'); ?>
- <?php echo $language['balsavusiuju']; ?></a></small><br>
- <?php
- if($loged)
- {
- if($events_query['user'] == $nick)
- {}
- elseif($voted)
- { ?>
- <small><?php echo $language['jusu_nuomone']; ?>: <b><?php echo $my_vote; ?></b></small>
- <small>(<a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=3"><?php echo $language['naikinti_balsa']; ?></a>)</small><br>
- <?php }
- else
- { ?>
- <small><?php echo $language['balsuoju']; ?>:</small>
- <small><a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=1"><?php echo $language['gerai']; ?></a></small>
- <small>|</small>
- <small><a href="vote_event?post=<?php echo $events_query['id']; ?>&sx=<?php echo $amsrf; ?>&t=2"><?php echo $language['blogai']; ?></a></small>
- <?php } ?>
- <?php if($events_query['user'] == $nick)
- { ?>
- <small><a href="edit_event?post=<?php echo $events_query['id']; ?>"><?php echo $language['redaguoti']; ?></a></small>
- <?php }
- } ?>
- </div>
- <div class="mainp2">
- <div class="usw">
- <?php if($loged)
- {
- echo $language['komentuoti']; ?>:<br>
- <form action="new_comment?post=<?php echo $events_query['id']; ?>&p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off"/>
- <input type="submit" value="<?php echo $language['siusti']; ?>"/>
- </form>
- <?php }
- else
- {
- echo $language['komentarai']; ?>: (<?php echo $events_query['total_comments']; ?>)<br>
- <?php } ?>
- </div>
- <?php try
- {
- $comments = $db->prepare("
- SELECT evcom.id, evcom.edited, evcom.taim2, usert.user, evcom.time, evcom.mess, IFNULL(tr.vote, 0 ), IFNULL(tr.total_votes, 0 ), (SELECT traf2.choosed FROM traf2 WHERE traf2.usert=:user AND traf2.event=evcom.id LIMIT 1) AS my_vote, IF((SELECT traf2.id FROM traf2 WHERE traf2.usert=:user AND traf2.event=evcom.id LIMIT 1)>0, true, false ) AS voted FROM evcom
- LEFT JOIN usert ON (evcom.user= usert.id)
- LEFT JOIN (SELECT SUM(choosed) AS vote, COUNT(id) AS total_votes, event, usert FROM traf2 GROUP BY event) AS tr ON tr.event=evcom.id
- WHERE evcom.event= :event
- ORDER BY IFNULL(tr.vote, 0 ) DESC, id DESC
- ");
- $comments->bindParam(':event', $events_query['id'], PDO::PARAM_INT);
- $comments->bindParam(':user', $user_id, PDO::PARAM_INT);
- $comments->execute();
- $comments_query = $comments->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totale = count($comments_query); //skaiciuojam kiek ivikiu
- if($totale < 1)
- { ?>
- <div class="usw2">
- <?php echo $language['komentaru_nera']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 7; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totale / $inpage); //puslapiu skaicius
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //pradzia nuo kada rodys
- $end = $p*$inpage; // pabaiga kada baigs rodyt
- for($de=$start; $de<$end; $de++)
- {
- $vote_sum = $comments_query[$de]['IFNULL(tr.vote, 0 )'];
- $total_votes = $comments_query[$de]['IFNULL(tr.total_votes, 0 )'];
- if($total_votes > 0)
- {
- $vote_prc = round(($vote_sum/$total_votes)*100);
- }
- else
- {
- $vote_prc = 0;
- }
- $voted = $comments_query[$de]['voted'];
- $my_vote = $comments_query[$de]['my_vote'];
- $vote_sum = number_format($vote_sum, 0, '.', '.');
- if($my_vote == 1)
- {
- $my_vote = $language['gerai'];
- }
- else
- {
- $my_vote = $language['blogai'];
- }
- if($comments_query[$de]['user'] != '')
- {
- $usr = '<a href="users/'.htmlspecialchars($comments_query[$de]['user']).'">'.htmlspecialchars($comments_query[$de]['user']).'</a>';
- }
- else
- {
- $usr = 'Unknown';
- } ?>
- <div class="usw2">
- <div class="bordline2">
- <?php echo $usr; ?>:
- <small>(<?php echo mdata($comments_query[$de]['time'],$taim,$language); ?>)</small>
- <?php if($events_query['user'] == $nick && $comments_query[$de]['user'] != $nick)
- { ?>
- <small><a href="delete_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['trinti_irasa']; ?></a></small>
- <?php } ?> <br>
- <?php echo nl2br(htmlspecialchars($comments_query[$de]['mess'])); ?>
- </div>
- <small><?php echo $language['bendra_nuomone']; ?>:
- <?php echo $vote_sum;?> - <?php echo vote($vote_prc); ?>
- <a href="comment_votes?post=<?php echo $comments_query[$de]['id']; ?>"><?php echo $language['is']; ?> <?php echo number_format($total_votes, 0, '.', '.'); ?>
- <?php echo $language['balsavusiuju']; ?></a></small><br>
- <?php if($loged)
- {
- if($comments_query[$de]['user'] == $nick)
- { ?>
- <small><a href="edit_comment?post=<?php echo $comments_query[$de]['id']; ?>"><?php echo $language['redaguoti']; ?></a></small>
- <?php }
- elseif($voted)
- { ?>
- <small><?php echo $language['jusu_nuomone']; ?>: <b><?php echo $my_vote; ?></b></small>
- <small>(<a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=3"><?php echo $language['naikinti_balsa']; ?></a>)</small>
- <?php }
- else
- { ?>
- <small><?php echo $language['balsuoju']; ?>:</small>
- <small><a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=1"><?php echo $language['gerai']; ?></a></small>
- <small>|</small>
- <small><a href="vote_comment?post=<?php echo $comments_query[$de]['id']; ?>&sx=<?php echo $amsrf; ?>&t=2"><?php echo $language['blogai']; ?></a></small>
- <?php } ?>
- <br>
- <?php if($comments_query[$de]['edited'])
- { ?>
- <small>(<?php echo $language['redaguota']; ?>: <?php echo mdata($comments_query[$de]['taim2'],$taim,$language); ?>)</small><br>
- <?php }
- } ?>
- </div>
- <?php if($de+1 >= $totale)
- {
- break;
- }
- }
- if($totalp > 1)
- { ?>
- <div class="usw3">
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="events?post=<?php echo $post; ?>&p=<?php echo --$back; ?>"><?php echo $language['ankstesni']; ?></a>
- <?php }
- if($p > 1 && $p < $totalp)
- { ?>
- |
- <?php }
- if ($p>=$totalp)
- {}
- else
- {
- $next=$p; ?>
- <a href="events?post=<?php echo $post; ?>&p=<?php echo ++$next; ?>"><?php echo $language['velesni']; ?></a>
- <?php } ?>
- </div>
- <?php }
- } ?>
- </div>
- <div class="bordline3"></div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'edit_event' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, events.mess FROM events
- WHERE id= :post AND user= :user $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if($sx != $axrf)
- {
- unset($_GET['p']);
- }
- if(isset($_GET['p']))
- {
- $p = preg_replace("/[^0-9]/", "", $_GET['p']);
- }
- else
- {
- $p = '';
- }
- $ev_ok = false;
- $ev_ch = '';
- if($p)
- {
- if(isset($_POST['mess']))
- {
- $mess = trim($_POST['mess']);
- }
- else
- {
- $mess = '';
- }
- $events = new events;
- $events->lang = $language;
- $ev_ch = $events->evpost($mess,$post_time);//tikrinam ar gerai suvede teksta
- $ev_ok = true;
- }
- else
- {
- $mess = '';
- }
- if($ev_ch == '' && $ev_ok)
- {
- $taim = time();
- try
- {
- $add=$db->prepare("
- UPDATE events
- SET mess= :mess,
- edited='1',
- taim2= :taim2
- WHERE user= :user
- AND id= :id
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':id', $post, PDO::PARAM_INT);
- $add->bindParam(':taim2', $taim, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$post.'');
- exit;
- }
- $design->main(); ?>
- <div class="mainp">
- <div class="bord">
- <a href="delete_event?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['trinti_irasa']; ?></a><br>
- <form action="edit_event?post=<?php echo $post; ?>&p=1&sx=<?php echo $amsrf; ?>" method="post">
- <textarea rows="10" cols="17" name="mess"><?php echo htmlspecialchars($events_query['mess']); ?></textarea>
- <input type="submit" value="<?php echo $language['redaguoti']; ?>"/>
- </form>
- </div>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $post; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'edit_comment' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT events.id, evcom.mess FROM evcom
- LEFT JOIN events ON evcom.event=events.id
- WHERE evcom.id= :post AND evcom.user= :user $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if($sx != $axrf)
- {
- unset($_GET['p']);
- }
- if(isset($_GET['p']))
- {
- $p = preg_replace("/[^0-9]/", "", $_GET['p']);
- }
- else
- {
- $p = '';
- }
- $ev_ok = false;
- $ev_ch = '';
- if($p)
- {
- if(isset($_POST['mess']))
- {
- $mess = trim($_POST['mess']);
- }
- else
- {
- $mess = '';
- }
- $events = new events;
- $events->lang = $language;
- $ev_ch = $events->evpost($mess,$post_time);//tikrinam ar gerai suvede teksta
- $ev_ok = true;
- }
- else
- {
- $mess = '';
- }
- if($ev_ch == '' && $ev_ok)
- {
- $taim = time();
- try
- {
- $add=$db->prepare("
- UPDATE evcom
- SET mess= :mess,
- edited='1',
- taim2= :taim2
- WHERE user= :user
- AND id= :id
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':id', $post, PDO::PARAM_INT);
- $add->bindParam(':taim2', $taim, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$ev.'');
- exit;
- }
- $design->main(); ?>
- <div class="mainp">
- <div class="bord">
- <a href="delete_comment?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['trinti_irasa']; ?></a><br>
- <form action="edit_comment?post=<?php echo $post; ?>&p=1&sx=<?php echo $amsrf; ?>" method="post">
- <textarea rows="10" cols="17" name="mess"><?php echo htmlspecialchars($events_query['mess']); ?></textarea>
- <input type="submit" value="<?php echo $language['redaguoti']; ?>"/>
- </form>
- </div>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $ev; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'delete_event' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT events.id, events.mess FROM events
- WHERE id= :post AND user= :user $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($sx != $axrf)
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['uzklausos_ivygdyti_nepavyko']; ?>
- <a href="delete_event?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['bandyti_is_naujo']; ?></a>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $post; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $events = $db->prepare("
- DELETE evcom, traf2, events FROM events
- LEFT JOIN evcom ON evcom.event=events.id
- LEFT JOIN traf ON traf.event=events.id
- LEFT JOIN traf2 ON traf2.event=evcom.id
- WHERE events.id= :post AND events.user= :user
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: main');
- exit;
- }
- }
- elseif($puslapis == 'delete_comment' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT events.id FROM evcom
- LEFT JOIN events ON evcom.event=events.id
- WHERE evcom.id= :post AND (evcom.user= :user OR events.user= :user) $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($sx != $axrf)
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['uzklausos_ivygdyti_nepavyko']; ?>
- <a href="delete_comment?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>"><?php echo $language['bandyti_is_naujo']; ?></a>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $ev; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $events = $db->prepare("
- DELETE evcom, traf2 FROM evcom
- LEFT JOIN traf2 ON traf2.event=evcom.id
- WHERE evcom.id= :post
- ");
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$ev.'');
- exit;
- }
- }
- elseif($puslapis == 'vote_event' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, IF((SELECT traf.id FROM traf WHERE traf.usert=:user AND traf.event=events.id LIMIT 1)>0, true, false ) AS voted FROM events
- LEFT JOIN friends ON (friends.user= :user)
- WHERE events.id= :post AND ((events.user= friends.friend AND events.typ<'3')
- OR (events.typ='1'))
- AND events.user!= :user $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if(isset($_GET['t']))
- {
- $t = preg_replace("/[^0-9]/", "", $_GET['t']);
- settype($t, 'integer');
- }
- else
- {
- $t = '';
- }
- if($sx != $axrf)
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['uzklausos_ivygdyti_nepavyko']; ?> <a href="vote_event?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>&t=<?php echo $t; ?>"><?php echo $language['bandyti_is_naujo']; ?></a>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if($t == 1)
- {
- if($events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_jau_balsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO traf
- SET usert= :user,
- event= :event,
- choosed='1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $taim = time();
- try
- {
- $add=$db->prepare("
- INSERT INTO events
- SET user= :user,
- event= :event,
- typ= :typ,
- taim= :taim,
- etype='1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $taim, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$post.'');
- exit;
- }
- }
- elseif($t == 2)
- {
- if($events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_jau_balsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO traf
- SET usert= :user,
- event= :event,
- choosed='-1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $taim = time();
- try
- {
- $add=$db->prepare("
- INSERT INTO events
- SET user= :user,
- event= :event,
- typ= :typ,
- taim= :taim,
- etype='1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $taim, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$post.'');
- exit;
- }
- }
- elseif($t == 3)
- {
- if(!$events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_dar_nebalsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- DELETE FROM traf
- WHERE usert= :user AND
- event= :event
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- try
- {
- $add=$db->prepare("
- DELETE FROM events
- WHERE user= :user AND
- event= :event
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$post.'');
- exit;
- }
- }
- }
- }
- }
- elseif($puslapis == 'vote_comment' && $loged)
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id, IF((SELECT traf2.id FROM traf2 WHERE traf2.usert=:user AND traf2.event=evcom.id LIMIT 1)>0, true, false ) AS voted FROM evcom
- LEFT JOIN events ON (evcom.event=events.id)
- LEFT JOIN friends ON (friends.user= :user)
- WHERE evcom.id= :post AND ((friends.friend=evcom.user AND events.typ<'3')
- OR (events.typ='1'))
- AND evcom.user!= :user $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if(isset($_GET['t']))
- {
- $t = preg_replace("/[^0-9]/", "", $_GET['t']);
- settype($t, 'integer');
- }
- else
- {
- $t = '';
- }
- if($sx != $axrf)
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['uzklausos_ivygdyti_nepavyko']; ?> <a href="vote_comment?post=<?php echo $post; ?>&sx=<?php echo $amsrf; ?>&t=<?php echo $t; ?>"><?php echo $language['bandyti_is_naujo']; ?></a>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if($t == 1)
- {
- if($events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_jau_balsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO traf2
- SET usert= :user,
- event= :event,
- choosed='1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$ev.'');
- exit;
- }
- }
- elseif($t == 2)
- {
- if($events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_jau_balsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO traf2
- SET usert= :user,
- event= :event,
- choosed='-1'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$ev.'');
- exit;
- }
- }
- elseif($t == 3)
- {
- if(!$events_query['voted'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['jus_dar_nebalsavote']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- try
- {
- $add=$db->prepare("
- DELETE FROM traf2
- WHERE usert= :user AND
- event= :event
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$ev.'');
- exit;
- }
- }
- }
- }
- }
- elseif($puslapis == 'new_event' && $loged)
- {
- if($sx != $axrf)
- {
- unset($_GET['p']);
- }
- if(isset($_GET['p']))
- {
- $p = preg_replace("/[^0-9]/", "", $_GET['p']);
- }
- else
- {
- $p = '';
- }
- $ev_ok = false;
- $ev_ch = '';
- if($p)
- {
- if(isset($_POST['mess']))
- {
- $mess = trim($_POST['mess']);
- }
- else
- {
- $mess = '';
- }
- $events = new events;
- $events->lang = $language;
- $ev_ch = $events->evpost($mess,$post_time);//tikrinam ar gerai suvede teksta
- $ev_ok = true;
- }
- else
- {
- $mess = '';
- }
- if($ev_ch == '' && $ev_ok)
- {
- $taim = time();
- try
- {
- $add=$db->prepare("
- INSERT INTO events
- SET user= :user,
- mess= :mess,
- typ= :typ,
- taim= :taim,
- etype='0'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $taim, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $posttime = $taim+15;
- try
- {
- $add=$db->prepare("
- UPDATE usert
- SET postm= :postm
- WHERE id= :id
- ");
- $add->bindParam(':id', $user_id, PDO::PARAM_INT);
- $add->bindParam(':postm', $posttime, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: main');
- exit;
- }
- $design->main(); //headeris ?>
- <div class="mainp">
- <div class="bord">
- <?php echo $language['dalintis_ispudziais']; ?>:<br>
- <form action="new_event?p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off" value="<?php echo htmlspecialchars($mess); ?>"/><br>
- <?php echo $ev_ch; ?>
- <input type="submit" value="<?php echo $language['siusti']; ?>"/>
- </form>
- </div>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($puslapis == 'ev_votes')
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- if($loged)
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT ev.id, traf.choosed, usert.user FROM traf
- LEFT JOIN friends ON (friends.user= :user)
- LEFT JOIN (SELECT id,user, typ, etype FROM events GROUP BY id) AS ev ON traf.event=ev.id
- LEFT JOIN usert ON usert.id=traf.usert
- WHERE ev.id= :post AND ((ev.user= friends.friend AND ev.typ<'3')
- OR (ev.typ='1')
- OR ev.user= :user) $etype
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = '';
- foreach($events_query as $ev_q)
- {
- $ev = $events_query[0]['id'];
- break;
- }
- }
- else
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT ev.id, traf.choosed, usert.user FROM traf
- LEFT JOIN (SELECT id,user, typ FROM events GROUP BY id) AS ev ON traf.event=ev.id
- LEFT JOIN usert ON usert.id=traf.usert
- WHERE ev.id= :post AND ev.typ='1' $etype
- ");
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query[0]['id'];
- }
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $design->main(); //headeris
- $totale = count($events_query); //skaiciuojam kiek ivikiu
- if($totale < 1)
- { ?>
- <div class="mainp" style="margin-top: 3px;">
- <?php echo $language['niekas_nuomones_neisreiske']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 7; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totale / $inpage); //puslapiu skaicius
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //pradzia nuo kada rodys
- $end = $p*$inpage; // pabaiga kada baigs rodyt ?>
- <div class="bordline3">
- <?php echo $ads_m; ?>
- </div>
- <div class="mainp2">
- <div class="usw2">
- <?php for($de=$start; $de<$end; $de++)
- { ?>
- <div class="bordline2" style="padding-bottom: 4px;">
- <a href="users/<?php echo htmlspecialchars($events_query[$de]['user']); ?>"><?php echo htmlspecialchars($events_query[$de]['user']); ?></a>
- <?php echo $language['isreiske']; ?>
- <?php if($events_query[$de]['choosed'] == 1)
- { ?>
- <span class="voter7">
- <?php echo $language['gera']; ?>
- </span>
- <?php }
- else
- { ?>
- <span class="voter">
- <?php echo $language['bloga']; ?>
- </span>
- <?php
- }
- echo $language['nuomone']; ?>
- </div>
- <?php if($de+1 >= $totale)
- {
- break;
- }
- } ?>
- </div>
- <?php if($totalp > 1)
- { ?>
- <div class="usw3">
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="ev_votes?post=<?php echo $post; ?>&p=<?php echo --$back; ?>"><?php echo $language['atgal']; ?></a>
- <?php }
- if($p > 1 && $p < $totalp)
- { ?>
- |
- <?php }
- if ($p>=$totalp)
- {}
- else
- {
- $next=$p; ?>
- <a href="ev_votes?post=<?php echo $post; ?>&p=<?php echo ++$next; ?>"><?php echo $language['toliau']; ?></a>
- <?php } ?>
- </div>
- <?php }
- } ?>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $ev; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'comment_votes')
- {
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- if($loged)
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT ev.id, traf2.choosed, usert.user FROM traf2
- LEFT JOIN friends ON (friends.user= :user)
- LEFT JOIN evcom ON (evcom.id=traf2.event)
- LEFT JOIN (SELECT id,user, typ, etype FROM events GROUP BY id) AS ev ON evcom.event=ev.id
- LEFT JOIN usert ON usert.id=traf2.usert
- WHERE evcom.id= :post AND ((ev.user= friends.friend AND ev.typ<'3')
- OR (ev.typ='1')
- OR ev.user= :user) $etype
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = '';
- foreach($events_query as $ev_q)
- {
- $ev = $events_query[0]['id'];
- break;
- }
- }
- else
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT ev.id, traf.choosed, usert.user FROM traf
- LEFT JOIN (SELECT id,user, typ FROM events GROUP BY id) AS ev ON traf.event=ev.id
- LEFT JOIN usert ON usert.id=traf.usert
- WHERE ev.id= :post AND ev.typ='1' $etype
- ");
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query[0]['id'];
- }
- }
- else
- {
- $ev = '';
- }
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $design->main(); //headeris
- $totale = count($events_query); //skaiciuojam kiek ivikiu
- if($totale < 1)
- { ?>
- <div class="mainp" style="margin-top: 3px;">
- <?php echo $language['niekas_nuomones_neisreiske']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 7; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totale / $inpage); //puslapiu skaicius
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //pradzia nuo kada rodys
- $end = $p*$inpage; // pabaiga kada baigs rodyt ?>
- <div class="bordline3">
- <?php echo $ads_m; ?>
- </div>
- <div class="mainp2">
- <div class="usw2">
- <?php for($de=$start; $de<$end; $de++)
- { ?>
- <div class="bordline2" style="padding-bottom: 4px;">
- <a href="users/<?php echo htmlspecialchars($events_query[$de]['user']); ?>"><?php echo htmlspecialchars($events_query[$de]['user']); ?></a>
- <?php echo $language['isreiske']; ?>
- <?php if($events_query[$de]['choosed'] == 1)
- { ?>
- <span class="voter7">
- <?php echo $language['gera']; ?>
- </span>
- <?php }
- else
- { ?>
- <span class="voter">
- <?php echo $language['bloga']; ?>
- </span>
- <?php
- }
- echo $language['nuomone']; ?>
- </div>
- <?php if($de+1 >= $totale)
- {
- break;
- }
- } ?>
- </div>
- <?php if($totalp > 1)
- { ?>
- <div class="usw3">
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="ev_votes?post=<?php echo $post; ?>&p=<?php echo --$back; ?>"><?php echo $language['atgal']; ?></a>
- <?php }
- if($p > 1 && $p < $totalp)
- { ?>
- |
- <?php }
- if ($p>=$totalp)
- {}
- else
- {
- $next=$p; ?>
- <a href="ev_votes?post=<?php echo $post; ?>&p=<?php echo ++$next; ?>"><?php echo $language['toliau']; ?></a>
- <?php } ?>
- </div>
- <?php }
- } ?>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $ev; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- }
- elseif($puslapis == 'new_comment' && $loged)
- {
- if($sx != $axrf)
- {
- unset($_GET['p']);
- }
- if(isset($_GET['p']))
- {
- $p = preg_replace("/[^0-9]/", "", $_GET['p']);
- }
- else
- {
- $p = '';
- }
- $ev_ok = false;
- $ev_ch = '';
- if(isset($_GET['post']))
- {
- $post = preg_replace("/[^0-9]/", "", $_GET['post']);
- settype($post, 'integer');
- }
- else
- {
- $post = '';
- }
- if(!empty($post))
- {
- try
- {
- $events = $db->prepare("
- SELECT DISTINCT events.id FROM events
- LEFT JOIN friends ON (friends.user= :user)
- WHERE events.id= :post AND ((events.user= friends.friend AND events.typ<'3')
- OR (events.typ='1')
- OR events.user= :user) $etype
- LIMIT 1
- ");
- $events->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events->bindParam(':post', $post, PDO::PARAM_INT);
- $events->execute();
- $events_query = $events->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $ev = $events_query['id'];
- }
- else
- {
- $ev = '';
- }
- if(!empty($p))
- {
- if(empty($ev))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- exit;
- }
- if(isset($_POST['mess']))
- {
- $mess = trim($_POST['mess']);
- }
- else
- {
- $mess = '';
- }
- $comments = new comments;
- $comments->lang = $language;
- $ev_ch = $comments->compost($mess,$post_time);//tikrinam ar gerai suvede teksta
- $ev_ok = true;
- }
- else
- {
- $mess = '';
- }
- if($ev_ch == '' && $ev_ok)
- {
- $taim = time();
- try
- {
- $add=$db->prepare("
- INSERT INTO evcom
- SET user= :user,
- mess= :mess,
- time= :time,
- event= :event
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':time', $taim, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->bindParam(':mess', $mess, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- try
- {
- $events_comment = $db->prepare("
- SELECT id FROM events
- WHERE event= :post AND etype='2' AND user= :user
- LIMIT 1
- ");
- $events_comment->bindParam(':user', $user_id, PDO::PARAM_INT);
- $events_comment->bindParam(':post', $post, PDO::PARAM_INT);
- $events_comment->execute();
- $events_comment_query = $events_comment->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if(empty($events_comment_query['id']))
- {
- try
- {
- $add=$db->prepare("
- INSERT INTO events
- SET user= :user,
- event= :event,
- typ= :typ,
- taim= :taim,
- etype='2'
- ");
- $add->bindParam(':user', $user_id, PDO::PARAM_INT);
- $add->bindParam(':typ', $my_privacy, PDO::PARAM_INT);
- $add->bindParam(':taim', $taim, PDO::PARAM_INT);
- $add->bindParam(':event', $post, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- $posttime = $taim+15;
- try
- {
- $add=$db->prepare("
- UPDATE usert
- SET postm= :postm
- WHERE id= :id
- ");
- $add->bindParam(':id', $user_id, PDO::PARAM_INT);
- $add->bindParam(':postm', $posttime, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- header('Location: events?post='.$post.'');
- exit;
- }
- $design->main(); //headeris ?>
- <div class="mainp">
- <div class="bord">
- <?php echo $language['komentuoti']; ?>:<br>
- <form action="new_comment?post=<?php echo $post; ?>&p=1&sx=<?php echo $amsrf; ?>" method="post">
- <input type="text" name="mess" autocomplete="off" value="<?php echo htmlspecialchars($mess); ?>"/><br>
- <?php echo $ev_ch; ?>
- <input type="submit" value="<?php echo $language['siusti']; ?>"/>
- </form>
- </div>
- </div>
- <div class="nav">
- <small><a href="events?post=<?php echo $ev; ?>"><<?php echo $language['atgal']; ?></a></small><br>
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($puslapis == 'messages' && $loged)
- {
- $design->main(); //headeris ?>
- <div class="topp" style="text-align: center;">
- <?php echo $language['gautos_zinutes']; ?>
- |
- <a href="messages/new"><?php echo $language['rasyti_zinute']; ?></a>
- |
- <a href="messages/sended"><?php echo $language['issiustos_zinutes']; ?></a>
- </div>
- <div class="bordline2">
- <?php echo $ads_m; ?>
- </div>
- <?php if(isset($_GET['s'])) //ziurim ar nori trinti zinutes
- {
- if(isset($_POST['delete']))//trynimo tipas
- {
- $delete = preg_replace('/[^0-9]/', '', $_POST['delete']);
- settype($delete, 'integer');
- }
- else
- {
- $delete = 4;
- }
- if($sx != $axrf)
- {
- $delete == 4;
- }
- if($delete == 0)
- {
- if(isset($_POST['message_list']))//sarasas pasirinktu zinuciu
- {
- $message_list=$_POST['message_list'];
- settype($message_list,"array");
- foreach($message_list as $mess_key=>$mess_value)
- {
- $mess_value = preg_replace("/[^0-9]/", "", $mess_value);
- //tikrinam ar tokia zinute egzistuoja
- try
- {
- $messages_dl = $db->prepare("
- SELECT id FROM mess
- WHERE user= :user
- AND id= :id
- AND mess.mtype='1'
- ");
- $messages_dl->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages_dl->bindParam(':id', $mess_value, PDO::PARAM_INT);
- $messages_dl->execute();
- $messages_query_dl = $messages_dl->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if($messages_query_dl)
- {
- try
- {
- $dlm=$db->prepare("
- DELETE FROM mess
- WHERE user= :user
- AND id= :id
- ");
- $dlm->bindParam(':user', $user_id, PDO::PARAM_INT);
- $dlm->bindParam(':id', $mess_value, PDO::PARAM_INT);
- $dlm->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- }
- }
- }
- elseif($delete == 1)//trinam visas zinutes
- {
- try
- {
- $messages_dl = $db->prepare("
- SELECT id FROM mess
- WHERE user= :user
- AND mess.mtype='1'
- ");
- $messages_dl->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages_dl->execute();
- $messages_query_dl = $messages_dl->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if($messages_query_dl)
- {
- try
- {
- $dlm=$db->prepare("
- DELETE FROM mess
- WHERE user= :user
- ");
- $dlm->bindParam(':user', $user_id, PDO::PARAM_INT);
- $dlm->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- }
- elseif($delete == 2)//trinam visas perskaitytas zinutes
- {
- try
- {
- $messages_dl = $db->prepare("
- SELECT id FROM mess
- WHERE user= :user
- AND mreaded='1'
- AND mess.mtype='1'
- ");
- $messages_dl->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages_dl->execute();
- $messages_query_dl = $messages_dl->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if($messages_query_dl)
- {
- try
- {
- $dlm=$db->prepare("
- DELETE FROM mess
- WHERE user= :user
- AND mreaded='1'
- ");
- $dlm->bindParam(':user', $user_id, PDO::PARAM_INT);
- $dlm->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- }
- elseif($delete == 3)//trinam visas neskaitytas zinutes
- {
- try
- {
- $messages_dl = $db->prepare("
- SELECT id FROM mess
- WHERE user= :user
- AND mreaded='0'
- AND mess.mtype='1'
- ");
- $messages_dl->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages_dl->execute();
- $messages_query_dl = $messages_dl->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if($messages_query_dl)
- {
- try
- {
- $dlm=$db->prepare("
- DELETE FROM mess
- WHERE user= :user
- AND mreaded='0'
- ");
- $dlm->bindParam(':user', $user_id, PDO::PARAM_INT);
- $dlm->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- }
- else
- {
- }
- }
- //traukiam zinutes
- try
- {
- $messages = $db->prepare("
- SELECT mess.id, usert.user, mess.mtema, mess.tims, mess.mreaded FROM mess
- LEFT JOIN usert ON usert.id= mess.fromu
- WHERE mess.user= :user
- AND mess.mtype='1'
- ORDER BY mess.id DESC
- ");
- $messages->bindParam(':user', $user_id, PDO::PARAM_INT);
- $messages->execute();
- $messages_query = $messages->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totalm = count($messages_query); //skaiciuojam kiek zinuciu
- if($totalm < 1)
- { ?>
- <div class="mainp" style="margin-top: 3px;">
- <?php echo $language['gautu_zinuciu_negavote']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 20; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totalm / $inpage);
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //zinuciu pradzia nuo kada rodys
- $end = $p*$inpage; // zinuciu pabaiga kada baigs ?>
- <div class="mainp">
- <form action="messages?s=1&sx=<?php echo $amsrf; ?>" method="post">
- <?php for($de=$start; $de<$end; $de++)
- {
- if($de%2==0)
- { ?>
- <div class="menu2">
- <?php }
- else
- { ?>
- <div class="menu">
- <?php } ?>
- <input type="checkbox" name="message_list[]" value="<?php echo $messages_query[$de]['id']; ?>" />
- <?php if($messages_query[$de]['mreaded'] == 0)
- { ?>
- [+]
- <?php }
- else
- { ?>
- [-]
- <?php }
- if($messages_query[$de]['mtema'])
- {
- $theme = htmlspecialchars($messages_query[$de]['mtema']);
- }
- else
- {
- $theme = $language['be_temos'];
- }
- if($messages_query[$de]['user'])
- {
- $us = '<a href="users/'.htmlspecialchars($messages_query[$de]['user']).'">'.htmlspecialchars($messages_query[$de]['user']).'</a>';
- }
- else
- {
- $us = '<span class="gray">Unknow</span>';
- } ?>
- <a href="messages/read?post=<?php echo $messages_query[$de]['id']; ?>"><?php echo $theme; ?></a>
- (<?php echo $us; ?>)<br>
- <small>(
- <?php
- echo mdata($messages_query[$de]['tims'],$taim,$language); ?>)
- </small>
- </div>
- <?php if($de+1 >= $totalm)
- {
- break;
- }
- } ?>
- <div class="bordline2" style="margin-top: 3px;">
- </div>
- <div class="sel" style="margin-top: 5px; margin-bottom: 3px;">
- <select name="delete">
- <option value="0"><?php echo $language['trinti_pasirinktus']; ?></option>
- <option value="1"><?php echo $language['trinti_visas']; ?></option>
- <option value="2"><?php echo $language['trinti_visas_perskaitytas']; ?></option>
- <option value="3"><?php echo $language['trinti_visas_neskaitytas']; ?></option>
- </select>
- <input type="submit" value="<?php echo $language['vygdyti']; ?>"/>
- </div>
- </form>
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="messages?p=<?php echo --$back; ?>">«««</a>
- <?php }
- if ($p>=$totalp)
- { ?>
- »»»
- <?php }
- else
- {
- $next=$p; ?>
- <a href="messages?p=<?php echo ++$next; ?>">»»»</a>
- <?php } ?>
- </div>
- </div>
- <?php } ?>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($puslapis == 'registration' && !$loged)
- {
- $reg = new reg; //atidarom registracijos klase
- $reg->lang = $language; //idedam kalbos masyva
- $type = 0;
- if(!isset($_GET['r']))
- {
- $email = '';
- $name = '';
- $emailch = '';
- $pass = '';
- $pass2 = '';
- $passch = '';
- $used_acc = '';
- $pass2ch = '';
- $namech = '';
- $genderch = '';
- $agreech = '';
- $cook_err = '';
- $gender = '';
- $agree = '';
- }
- else
- {
- if(isset($_COOKIE['uct']) && !empty($_COOKIE['uct']))
- {
- $uct = preg_replace('/[^a-z0-9A-Z.]/', '', $_COOKIE['uct']);
- }
- else
- {
- $uct = '';
- }
- $ip_hash = iph($_SERVER['REMOTE_ADDR']);
- if($uct != '' && $ip_hash == $uct)
- {
- //paimam emaila
- if(isset($_POST['email']))
- {
- $email = trim($_POST['email']);
- }
- else
- {
- $email = '';
- }
- //paimam slaptazodi
- if(isset($_POST['pass']))
- {
- $pass = $_POST['pass'];
- }
- else
- {
- $pass = '';
- }
- //paimam patvirtinimo slaptazodi
- if(isset($_POST['pass2']))
- {
- $pass2 = $_POST['pass2'];
- }
- else
- {
- $pass2 = '';
- }
- //paimam varda
- if(isset($_POST['name']))
- {
- $name = $_POST['name'];
- }
- else
- {
- $name = '';
- }
- //paimam lyti
- if(isset($_POST['gender']))
- {
- $gender = preg_replace('/[^0-9]/', '', $_POST['gender']);
- settype($bday, 'integer');
- }
- else
- {
- $gender = '';
- }
- //paimam sutikima su taisyklemis
- if(isset($_POST['agree']))
- {
- $agree = $_POST['agree'];
- }
- else
- {
- $agree = '';
- }
- //jei slapyvardis ir emailas ivestas, isvedam vartotojus patikrinimui ar neuzimtas
- if($name != '' && $email != '')
- {
- try
- {
- $user = $db->prepare("
- SELECT id FROM usert
- WHERE user= :user OR
- email= :email
- ORDER BY id DESC
- ");
- $user->bindParam(':email', $email, PDO::PARAM_STR);
- $user->bindParam(':user', $name, PDO::PARAM_STR);
- $user->execute();
- $user_query = $user->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $taim = time()-$reg_antiflood;
- try
- {
- $userc = $db->prepare("
- SELECT id FROM uscnf
- WHERE (nick= :nick OR
- email= :email)
- OR (uid= :uid AND time2> :time2)
- ORDER BY id DESC
- ");
- $userc->bindParam(':email', $email, PDO::PARAM_STR);
- $userc->bindParam(':nick', $name, PDO::PARAM_STR);
- $userc->bindParam(':uid', $uct, PDO::PARAM_STR);
- $userc->bindParam(':time2', $taim, PDO::PARAM_INT);
- $userc->execute();
- $user_query_confirm = $userc->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $qid = $user_query['id'];
- $qid2 = $user_query_confirm['id'];
- }
- else
- {
- $qid = '';
- $qid2 = '';
- }
- $emailch = $reg->email($email);
- $passch = $reg->pass($pass);
- $pass2ch = $reg->pass2($pass2,$pass);
- $namech = $reg->nick($name);
- $genderch = $reg->gender($gender);
- $agreech = $reg->agree($agree);
- $used_acc = $reg->used_acc($qid,$qid2);
- $cook_err = '';
- if($emailch == '' && $passch == '' && $pass2ch == '' && $namech == '' &&
- $genderch == '' && $agreech == '' && $used_acc == '' && $cook_err == '')
- {
- //kuriam hasha patvirtinimui
- $possible = '1234567890qwertyuiopasdfghjklzxcvbnmQWERTYUIOPASDFGHJKLZXCVBNM'; //palaikomi simboliai
- $i = 0;
- $characters = rand(5,10); //random budu nustatom hash dydi
- $code = '';
- $code2 = '';
- while ($i < $characters)
- {
- $code .= substr($possible, mt_rand(0, strlen($possible)-1), 1); //renkam simboli
- $code2 .= substr($possible, mt_rand(0, strlen($possible)-1), 1); //renkam simboli
- $i++;
- }
- $time = time(); //registracijos laikas
- $ttime = $time+$reg_confirm_time; //patvirtinimo galiojimo laikas
- $subject = $language['reg_patvirtinimas'];
- $message = $language['reg_patvirtinimas2']."\n\n";
- $message .= $language['reg_patvirtinimas3']." http://".strtolower($url)."/confirm?from=".$name."&code=".$code."\n";
- $message .= "\n";
- $message .= $language['reg_patvirtinimas4']." http://".strtolower($url)."/confirm?from=".$name." ".$language['reg_patvirtinimas5']."\n";
- $message .= $code."\n\n";
- $message .= $language['reg_patvirtinimas6']." ".cont($reg_confirm_time)."\n\n";
- $message .= $language['slapyvardis'].": ".$name."\n";
- $message .= $language['slaptazodis'].": ".$pass."\n";
- $message .= "\n\n--\n".$language['pagarbiai'].", ".$url."\n\n".$language['prasome_neatsakyti']."";
- mail(trim(htmlspecialchars($email)), $subject, $message, "From: noreplay@".strtolower($url)."");
- //uzregistruojam patvirtinimui
- $pass = passw($pass,$code2);
- try
- {
- $add=$db->prepare("
- INSERT INTO uscnf
- SET nick= :nick,
- pass= :pass,
- email= :email,
- uid= :uid,
- time= :time,
- time2= :time2,
- code= :code,
- gender= :gender,
- salt= :salt
- ");
- $add->bindParam(':nick', $name, PDO::PARAM_STR);
- $add->bindParam(':email', $email, PDO::PARAM_STR);
- $add->bindParam(':pass', $pass, PDO::PARAM_STR);
- $add->bindParam(':uid', $uct, PDO::PARAM_STR);
- $add->bindParam(':time', $ttime, PDO::PARAM_INT);
- $add->bindParam(':time2', $time, PDO::PARAM_INT);
- $add->bindParam(':gender', $gender, PDO::PARAM_INT);
- $add->bindParam(':code', $code, PDO::PARAM_STR);
- $add->bindParam(':salt', $code2, PDO::PARAM_STR);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- //nukeliam i patvirtinimo puslapi
- header('Location: confirm?from='.$name.'');
- exit;
- }
- }
- else
- {
- $email = '';
- $used_acc = '';
- $agree = '';
- $gender = '';
- $name = '';
- $pass = '';
- $pass2 = '';
- $emailch = '';
- $passch = '';
- $pass2ch = '';
- $namech = '';
- $genderch = '';
- $agreech = '';
- $cook_err = '<span class="red"><small><i>'.$language['cookie_error'].'</i></small></span>';
- }
- $type = 1;
- }
- $design->main(); ?>
- <div class="mainp">
- <div class="bord">
- <?php if($cook_err != '')
- {
- echo $cook_err;
- }
- else
- {
- echo $used_acc;
- }
- $reg->main($type, $email, $emailch, $pass, $passch, $pass2, $pass2ch, $name,$namech, $gender, $genderch, $agree,$agreech); //registracijos laukeliai ?>
- <br>
- <span class="red">*</span><?php echo $language['reikes_patvirtinimui']; ?>
- </div>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- elseif($puslapis == 'confirm' && !$loged)
- {
- if(isset($_GET['from']))
- {
- $from = preg_replace("/[^0-9a-zA-Z-_]/", "", $_GET['from']);
- }
- else
- {
- $from = '';
- }
- if($from == '')
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- $time = time();
- try
- {
- $userc = $db->prepare("
- SELECT id, code, email, nick, pass, gender, salt FROM uscnf
- WHERE nick= :nick
- AND time> :time
- ORDER BY id DESC
- ");
- $userc->bindParam(':nick', $from, PDO::PARAM_STR);
- $userc->bindParam(':time', $time, PDO::PARAM_INT);
- $userc->execute();
- $user_query_confirm = $userc->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- if(empty($user_query_confirm['id']))
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if(isset($_GET['code']))
- {
- $code = preg_replace("/[^0-9a-zA-Z]/", "", $_GET['code']);
- }
- else
- {
- $code = '';
- }
- if($code == '')
- {
- $design->main(); ?>
- <div class="mainp">
- <?php echo $language['reg_patvirtinimas2']; ?>:<br>
- <form action="confirm"method="get">
- <input type="hidden" name="from" value="<?php echo $from; ?>"/>
- <input type="text" name="code" maxlength="10"/><br>
- <input type="submit" value="<?php echo $language['patvirtinti_anketa']; ?>!"/>
- </form>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- }
- else
- {
- if($code != $user_query_confirm['code'])
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['neteisingas_kodas']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer(); }
- else
- {
- //uzregistruojam vartotoja
- try
- {
- $add=$db->prepare("
- INSERT INTO usert
- SET user= :user,
- email= :email,
- passw= :passw,
- gender= :gender,
- regtime= :regtime,
- salt= :salt
- ");
- $add->bindParam(':user', $user_query_confirm['nick'], PDO::PARAM_STR);
- $add->bindParam(':email', $user_query_confirm['email'], PDO::PARAM_STR);
- $add->bindParam(':passw', $user_query_confirm['pass'], PDO::PARAM_STR);
- $add->bindParam(':gender', $user_query_confirm['gender'], PDO::PARAM_STR);
- $add->bindParam(':salt', $user_query_confirm['salt'], PDO::PARAM_STR);
- $add->bindParam(':regtime', $time, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- ///trinam patvirtinima
- try
- {
- $dlu=$db->prepare("
- DELETE FROM uscnf
- WHERE id= :id
- ");
- $dlu->bindParam(':id', $user_query_confirm['id'], PDO::PARAM_INT);
- $dlu->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- //kuriam sesija
- $browser = trim(htmlspecialchars($_SERVER['HTTP_USER_AGENT']));
- $ip = $_SERVER['REMOTE_ADDR'];
- $ip = preg_replace("/[^0-9.]/", "", $ip);
- $_SESSION['email'] = $user_query_confirm['email'];
- $_SESSION['pass'] = $user_query_confirm['pass'];
- $_SESSION['uap'] = $browser;
- $_SESSION['ip'] = $ip;
- header('Location: main');
- exit;
- }
- }
- }
- }
- }
- //tikrinam ar gerai suvede duomenis
- elseif($puslapis == 'log' && !$loged)
- {
- if(isset($_POST['email']))
- {
- $email = $_POST['email'];
- }
- else
- {
- $email = '';
- }
- if(isset($_POST['pass']))
- {
- $pass = preg_replace("/[^0-9a-zA-Z-_]/", "", $_POST['pass']);
- }
- else
- {
- $pass = '';
- }
- $log->lang = $language;
- $log->designm = $design->main(1);
- $log->designf = $design->footer(1);
- if($email != '' && $pass != '')
- {
- $account_ch = $log->access($email,'id, salt, passw'); //paimam info is mysql
- $pass_hashed = passw($pass,$account_ch['salt']);
- if($pass_hashed == $account_ch['passw'])
- {
- $my_account = 1;
- }
- else
- {
- $my_account = 0;
- }
- }
- else
- {
- $pass_hashed = '';
- $my_account = 0;
- }
- if($log->conn($email,$pass,$my_account))
- {
- if(isset($_POST['box']))
- {
- $box = 1;
- }
- else
- {
- $box = 0;
- }
- //kuriam sesija
- $browser = trim(htmlspecialchars($_SERVER['HTTP_USER_AGENT']));
- $ip = $_SERVER['REMOTE_ADDR'];
- $ip = preg_replace("/[^0-9.]/", "", $ip);
- $_SESSION['email'] = $email;
- $_SESSION['pass'] = $pass_hashed;
- $_SESSION['uap'] = $browser;
- $_SESSION['ip'] = $ip;
- if($box)//jei vartotojas pazymejo prisiminti, tai kuriam hasha atpazinimui
- {
- //ziurim ar yra atpazinimo kodas sukurtas
- try
- {
- $userh = $db->prepare("
- SELECT code FROM coname
- WHERE email= :email
- AND passw= :passw
- ORDER BY id DESC
- ");
- $userh->bindParam(':email', $email, PDO::PARAM_STR);
- $userh->bindParam(':passw', $pass_hashed, PDO::PARAM_STR);
- $userh->execute();
- $user_hash = $userh->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- //jei sukurtas, nekuriam o paimam sena hasha
- if($user_hash['code'])
- {
- $user_hash_code = $user_hash['code'];
- }
- else //jei nesukurtas, tada sukuriam ir irasom i lentele
- {
- $user_hash_code = logh($email,$pass);
- $time = time()+60*60*24*7;
- try
- {
- $add=$db->prepare("
- INSERT INTO coname
- SET email= :email,
- passw= :passw,
- code= :code,
- time= :time,
- salt= :salt
- ");
- $add->bindParam(':email', $email, PDO::PARAM_STR);
- $add->bindParam(':passw', $pass_hashed, PDO::PARAM_STR);
- $add->bindParam(':code', $user_hash_code, PDO::PARAM_STR);
- $add->bindParam(':salt', $account_ch['salt'], PDO::PARAM_STR);
- $add->bindParam(':time', $time, PDO::PARAM_INT);
- $add->execute();
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- }
- $cookie_time = time()+60*60*24*6;
- setcookie('fuh',$user_hash_code,$cookie_time,'','','',true);
- }
- header('Location: main');
- exit;
- }
- }
- elseif($puslapis == 'classfields' && $loged)
- {
- $design->main(); //headeris ?>
- <div class="topp" style="text-align: center;">
- <?php echo $language['skelbimai']; ?>
- </div>
- <div class="mainp">
- <?php $category = (int) $_GET['category']; ?>
- <?php $lang = 'LTU'; ?>
- <div class="usw">
- <?php
- if($category == false){
- ?>
- <strong><?php echo $language['skelbimu_kategorijos']; ?>:</strong><br>
- <?php
- try
- {
- $cats = $db->prepare("
- SELECT classfields.id AS id,classfields.category AS category,classfields.language AS language
- FROM classfields
- WHERE language = :language ORDER BY id ASC
- ");
- $cats->bindParam(':language', $lang, PDO::PARAM_STR);
- $cats->execute();
- $cats_query = $cats->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totalm = count($cats_query);
- if($totalm < 1)
- { ?>
- <div class="mainp" style="margin-top: 3px;">
- <?php echo $language['dar_nera_skelbimu_kategoriju']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 10; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totalm / $inpage);
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- $start = ($inpage*$p)-$inpage; //zinuciu pradzia nuo kada rodys
- $end = $p*$inpage; // zinuciu pabaiga kada baigs ?>
- <?php for($de=$start; $de<$end; $de++)
- {
- try
- {
- $cats = $db->prepare("
- SELECT classfields.id AS id,classfields.category AS category,classfields.language AS language, (SELECT COUNT(id) FROM classfields_content WHERE category_id = :id) AS total
- FROM classfields
- WHERE language = :language ORDER BY id ASC
- ");
- $cats->bindParam(':id', $cats_query[$de]['id'], PDO::PARAM_STR);
- $cats->bindParam(':language', $lang, PDO::PARAM_STR);
- $cats->execute();
- $cats_query = $cats->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- ?>
- <a href="?category=<?php echo $cats_query[$de]['id']; ?>">
- » <?php echo $cats_query[$de]['category']; ?> (<?php echo $cats_query[$de]['total']; ?>)</a><br/>
- <?php if($de+1 >= $totalm)
- {
- break;
- }
- } ?>
- </div>
- </div><br/>
- <?php } ?>
- <?php } else {
- try
- {
- //select kategorijos pavadinima
- $cats2 = $db->prepare("
- SELECT classfields.id AS id,classfields.category AS category,classfields.language AS language,
- (SELECT COUNT(id) FROM classfields_content WHERE category_id = :id) AS total
- FROM classfields
- WHERE id = :id
- AND language = :language LIMIT 1
- ");
- $cats2->bindParam(':id', $category, PDO::PARAM_INT);
- $cats2->bindParam(':language', $lang, PDO::PARAM_STR);
- $cats2->execute();
- $cats2_query = $cats2->fetch(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- ?>
- <?php
- if(!isset($cats2_query['id'])){
- header("location: ?");
- exit;
- }
- ?>
- <strong><?php echo $cats2_query['category']; ?></strong> <br/>
- <small><?php echo $language['patalpinta_skelbimu']; ?>: <?php echo $cats2_query['total']; ?></small>
- <?php } ?>
- </div>
- <?php
- if($category == false){
- ?>
- <div class="usw">
- <img src="img/icn/plus.png" alt="+"/> <a href="classfields/add"><?php echo $language['ideti_skelbima']; ?></a>
- </div>
- <?php } ?>
- <div class="forump">
- <?php $lang = 'LTU'; ?>
- <?php
- try
- {
- if(!empty($category)){
- $classfields = $db->prepare("
- SELECT classfields_content.id AS id,classfields_content.category_id AS category_id, classfields_content.title AS title,classfields_content.price AS price,classfields_content.currency AS currency,classfields_content.description AS description,classfields_content.type AS type,
- usert.user,classfields_content.time AS time
- FROM classfields_content
- LEFT JOIN usert ON classfields_content.user = usert.id
- WHERE (language = :language
- AND category_id = :category_id)
- ORDER BY id DESC
- ");
- $classfields->bindParam(':language', $lang, PDO::PARAM_STR);
- $classfields->bindParam(':category_id', $category, PDO::PARAM_INT);
- } else {
- $classfields = $db->prepare("
- SELECT classfields_content.id AS id,classfields_content.category_id AS category_id, classfields_content.title AS title,classfields_content.price AS price,classfields_content.currency AS currency,classfields_content.description AS description,classfields_content.type AS type,
- usert.user,classfields_content.time AS time
- FROM classfields_content
- LEFT JOIN usert ON classfields_content.user= usert.id
- WHERE (language = :language)
- ORDER BY id DESC
- ");
- $classfields->bindParam(':language', $lang, PDO::PARAM_STR);
- }
- $classfields->execute();
- $classfields_query = $classfields->fetchAll(PDO::FETCH_ASSOC);
- }
- catch (PDOException $e)
- {
- echo 'Invalid query';
- exit;
- }
- $totalm = count($classfields_query);
- if($totalm < 1)
- { ?>
- <div class="warn" style="margin-top: 3px; text-align: center;">
- <?php echo $language['dar_nera_skelbimu']; ?>!
- </div>
- <?php }
- else
- {
- $inpage = 10; //puslapiu skaiciu vienam puslapyje
- $totalp=ceil($totalm / $inpage);
- //nustatom kelintam puslapyje esam
- if(isset($_GET['p']))
- {
- $p=$_GET['p'];
- $p = preg_replace('/[^0-9]/', '', $p);
- settype($p, 'integer');
- }
- else
- {
- $p = '';
- }
- if(empty($p))
- {
- $p = 1;
- }
- elseif($p > $totalp)
- {
- $p = 1;
- }
- else
- {}
- $taim = time();
- $start = ($inpage*$p)-$inpage; //zinuciu pradzia nuo kada rodys
- $end = $p*$inpage; // zinuciu pabaiga kada baigs ?>
- <div class="mainp">
- <?php for($de=$start; $de<$end; $de++)
- {
- if($de%2==0)
- { ?>
- <div class="menu2">
- <?php }
- else
- { ?>
- <div class="menu">
- <?php } ?>
- <img class="photo photo_p" src="http://localhost/chat/photo_preview/ltp/1/14_cdf51c7bc28cae945e0a445a4.jpg" alt="" /> <div class="classfields_title"><strong>
- <a href="classfields/view?c=<?php echo $classfields_query[$de]['id']; ?>">
- <?php echo $classfields_query[$de]['title']; ?></a></strong> <div class="classfields_price"><?php echo $classfields_query[$de]['currency']; ?> <?php echo number_format($classfields_query[$de]['price'],2); ?></div></div> <small><div class="classfields_desc"><?php echo $classfields_query[$de]['description']; ?></div></small>
- <small><div class="classfields_date"><?php echo mdata($classfields_query[$de]['time'],$taim,$language); ?> - <?php echo $language['skelbimai_patalpino']; ?>: <a href=""><?php echo $classfields_query[$de]['user']; ?></a></div></small><br class="clear" />
- </div>
- <?php if($de+1 >= $totalm)
- {
- break;
- }
- } ?>
- <div class="bordline2" style="margin-top: 3px;">
- </div>
- <?php if ($p>1)
- {
- $back=$p; ?>
- <a href="?category=<?php echo $category; ?>&p=<?php echo --$back; ?>">«««</a>
- <?php }
- if ($p>=$totalp)
- { ?>
- »»»
- <?php }
- else
- {
- $next=$p; ?>
- <a href="?category=<?php echo $category; ?>&p=<?php echo ++$next; ?>">»»»</a>
- <?php } ?>
- </div>
- </div><br/>
- <?php } ?>
- <?php
- if($category == false){
- ?>
- <div class="usw">
- * Ko ieskote:<br>
- <form action="new_event?p=1&sx=1e3c080d98" method="post">
- <input type="text" name="mess" autocomplete="off" placeholder="Iveskite teksta"/><br/>
- <select class="input-xlarge" name="server_mod">
- <option value="classic">- Visi -</option>
- <option value="classic">Automobiliai (0)</option>
- </select>
- <input type="submit" value="Ieskoti"/>
- </form>
- </div>
- <?php } ?>
- </div>
- </div>
- <div class="nav">
- <small><a href="<?php echo $murl; ?>main"><<<?php echo $language['pagrindinis']; ?></a></small> <?php if(!empty($category)){ ?> |
- <small><a href="?">Į skelbimus</a></small> <?php } ?>
- </div>
- <?php $design->footer();
- }
- else
- {
- $design->main(); ?>
- <div class="mainp">
- <div class="warn" style="text-align: center;">
- <?php echo $language['ivyko_klaida']; ?>
- </div>
- <?php echo $language['puslapis_neegzistuoja']; ?>
- </div>
- <div class="nav">
- <small><a href="main"><<<?php echo $language['pagrindinis']; ?></a></small>
- </div>
- <?php $design->footer();
- } ob_start();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement