Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
- <html>
- <head>
- <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
- <title></title>
- </head>
- <body>
- <?php
- session_start();
- $dbserver="localhost";
- $dbuser="book";
- $dbpassword="QYP8zXGQs6yvRvvy";
- $db="book";
- date_default_timezone_set("Europe/Zaporozhye");
- if (isset($_SESSION['username']) && isset($_SESSION['uid']))
- {
- echo "Hello ".$_SESSION['username']."<br>";
- echo '<form method="post" action="./logout.php">';
- echo '<input type="submit" name="submit" value="Logout">';
- echo '</form>';
- echo '<form method="post" action="./index.php">';
- echo '<textarea name="mesg" cols="72" rows="5"></textarea><br>';
- echo '<input type="submit" name="submit" value="Send">';
- echo '<input type="reset" name="reset" value="Clear">';
- echo '</form>';
- if (isset($_POST['del']))
- {
- $del=$_POST['del'];
- if (!mysql_connect($dbserver, $dbuser, $dbpassword))
- {
- echo "Cannot connect to MySQL";
- }
- mysql_select_db($db);
- if (mysql_query("DELETE FROM `book`.`mesg` WHERE `id`='$del';"))
- {
- echo "Message deleted.";
- mysql_close();
- }
- }
- if (isset($_POST['mesg']))
- {
- $mesg=$_POST['mesg'];
- $username=$_SESSION['username'];
- $uid=$_SESSION['uid'];
- if (!mysql_connect($dbserver, $dbuser, $dbpassword))
- {
- echo "Cannot connect to MySQL";
- }
- mysql_select_db($db);
- $date=date("r");
- if (mysql_query("INSERT INTO `book`.`mesg` (`uid`, `mesg`, `date`) VALUES ('$uid', '$mesg', '$date');"))
- {
- echo "Message send.";
- mysql_close();
- }
- }
- }
- else
- {
- $_SESSION['uid']="0";
- echo '<form method="post" action="./login.php">';
- echo 'Username :';
- echo '<input type="text" name="login" size="10" maxlength="8">';
- echo '<br>';
- echo 'Password :';
- echo '<input type="password" name="pass" size="10" maxlength="255"><br>';
- echo '<input type="submit" name="submit" value="Login">';
- echo '<a href="./register.php">Register</a>';
- echo '</form>';
- }
- mysql_connect();
- if (!mysql_connect($dbserver, $dbuser, $dbpassword))
- {
- echo "Cannot connect to MySQL";
- }
- mysql_select_db($db);
- $result = mysql_query("SELECT * FROM mesg");
- while($row=mysql_fetch_array($result))
- {
- $uid=$row['uid'];
- $getname = mysql_query("SELECT `username` FROM `passwd` WHERE `uid`='$uid'");
- $name=mysql_fetch_array($getname);
- echo "<table border=1 width=600><tr><td>".$row["date"]." <b>".$name["username"]."</b> wrote :"."</td><td>";
- if ($_SESSION['uid']==$row['uid'] || $_SESSION['uid']=='1')
- {
- echo '<form method="post" action="./index.php">';
- echo "<input name=del type=hidden value=".$row['id'].">";
- echo '<input type="submit" name="submit" value="delete">';
- echo '</form>';
- }
- echo "</td></tr>";
- echo "<tr height=100><td colspan=2 valign=top>".$row["mesg"]."</td></tr></table>";
- }
- $result = mysql_query("SELECT * FROM mesg");
- $num_rows = mysql_num_rows($result);
- echo "<br>Total messages: $num_rows<br>";
- ?>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement