<?php session_start(); $local = "localhost"; $login = "root";

1. <?php
2.     session_start();
3.     $local = "localhost";
4.     $login = "root";
5.     $pass = "root";
6.     $name = "social";
7.     $link = mysqli_connect($local,$login,$pass,$name);
8.  
9.     $id = $_SESSION['id'];
10.     $b = $_GET['id'];
11.     if(!empty($_POST) && $_POST['mess'] !==""){
12.         $mess = $_POST['mess'];
13.         $query = mysqli_query($link,"INSERT INTO message SET from_id='$id',to_id='$b',text_message='$mess'");
14.         unset($_POST['mess']);
15.     }
16.     if(!empty($_GET['id'])){
17.         $query = mysqli_query($link,"SELECT * FROM message WHERE from_id='$id' AND to_id='$b' OR from_id='$b' AND to_id='$id'");
18.         while($row = mysqli_fetch_assoc($query)){
19.             echo $row['text_message']."</br>";
20.         }
21.     } else {
22.     $query = mysqli_query($link,"SELECT * FROM users_friends WHERE user_id='$id'");
23.     while($row = mysqli_fetch_assoc($query)){
24.         $friends_id = $row['friends_id'];
25.         $qu = mysqli_query($link,"SELECT * FROM users WHERE id='$friends_id'");
26.         $res = mysqli_fetch_assoc($qu);
27.         echo $res['login']." - <a href='/home/message?id=".$res['id']."'>Написать</a></br>";
28.     }
29.     $query = mysqli_query($link,"SELECT * FROM users_friends WHERE friends_id='$id'");
30.     while($row = mysqli_fetch_assoc($query)){
31.         $user_id = $row['user_id'];
32.         $qu = mysqli_query($link,"SELECT * FROM users WHERE id='$user_id'");
33.         $res = mysqli_fetch_assoc($qu);
34.         echo $res['login']." - <a href='/home/message?id=".$res['id']."'>Написать</a></br>";
35.     }}
36. ?>
37. <?php
38.     if(!empty($_GET['id'])){
39. ?>
40.     <form action="" method="POST">
41.         <textarea name="mess" placeholder="Ваше сообщение"></textarea>
42.         <input type="submit" value="Send">
43.     </form>
44. <?php
45.     }
46. ?>