/dead/friends.php
PHP | 184 lines | 150 code | 31 blank | 3 comment | 49 complexity | 03f2a6e3f19f5e034f518084e310fe35 MD5 | raw file
Possible License(s): GPL-2.0
- <?
-
- require "include/bittorrent.php";
-
-
- dbconn(false);
- loggedinorreturn();
-
- $userid = $_GET['id'];
- $action = $_GET['action'];
-
- if (!$userid)
- $userid = $CURUSER['id'];
-
- if (!is_valid_id($userid))
- stderr("Error", "Invalid ID $userid.");
-
- if ($userid != $CURUSER["id"])
- stderr("Error", "Access denied.");
-
- $res = mysql_query("SELECT * FROM users WHERE id=$userid") or mysql_error();
- $user = mysql_fetch_array($res) or stderr("Error", "No user with ID $userid.");
-
- // action: add -------------------------------------------------------------
-
- if ($action == 'add')
- {
- $targetid = $_GET['targetid'];
- $type = $_GET['type'];
-
- if (!is_valid_id($targetid))
- stderr("Error", "Invalid ID $$targetid.");
-
- if ($type == 'friend')
- {
- $table_is = $frag = 'friends';
- $field_is = 'friendid';
- }
- elseif ($type == 'block')
- {
- $table_is = $frag = 'blocks';
- $field_is = 'blockid';
- }
- else
- stderr("Error", "Unknown type $type");
-
- $r = mysql_query("SELECT id FROM $table_is WHERE userid=$userid AND $field_is=$targetid") or mysql_error();
- if (mysql_num_rows($r) == 1)
- stderr("Error", "User ID $targetid is already in your $table_is list.");
-
- mysql_query("INSERT INTO $table_is VALUES (0,$userid, $targetid)") or mysql_error();
- header("Location: $DEFAULTBASEURL/friends.php?id=$userid#$frag");
- die;
- }
-
- // action: delete ----------------------------------------------------------
-
- if ($action == 'delete')
- {
- $targetid = $_GET['targetid'];
- $sure = $_GET['sure'];
- $type = $_GET['type'];
-
- if (!is_valid_id($targetid))
- stderr("Error", "Invalid ID $userid.");
-
- if (!$sure)
- stderr("Delete $type","Do you really want to delete a $type? Click\n" .
- "<a href=?id=$userid&action=delete&type=$type&targetid=$targetid&sure=1>here</a> if you are sure.");
-
- if ($type == 'friend')
- {
- mysql_query("DELETE FROM friends WHERE userid=$userid AND friendid=$targetid") or mysql_error();
- if (mysql_affected_rows() == 0)
- stderr("Error", "No friend found with ID $targetid");
- $frag = "friends";
- }
- elseif ($type == 'block')
- {
- mysql_query("DELETE FROM blocks WHERE userid=$userid AND blockid=$targetid") or mysql_error();
- if (mysql_affected_rows() == 0)
- stderr("Error", "No block found with ID $targetid");
- $frag = "blocks";
- }
- else
- stderr("Error", "Unknown type $type");
-
- header("Location: $DEFAULTBASEURL/friends.php?id=$userid#$frag");
- die;
- }
-
- // main body -----------------------------------------------------------------
-
- stdhead("Personal lists for " . $user['username']);
-
- if ($user["donor"] == "yes") $donor = "<td class=embedded><img src=images/starbig.gif alt='Donor' style='margin-left: 4pt'></td>";
- if ($user["warned"] == "yes") $warned = "<td class=embedded><img src=images/warnedbig.gif alt='Warned' style='margin-left: 4pt'></td>";
-
- print("<p><table class=main border=0 cellspacing=0 cellpadding=0>".
- "<tr><td class=embedded><h1 style='margin:0px'><font color=red> - BETA - </font></h1></td></tr></table></p>\n");
-
- print("<p><table class=main border=0 cellspacing=0 cellpadding=0>".
- "<tr><td class=embedded><h1 style='margin:0px'> Personal lists for $user[username]</h1>$donor$warned$country</td></tr></table></p>\n");
-
- print("<table class=main width=750 border=0 cellspacing=0 cellpadding=0><tr><td class=embedded>");
-
- print("<br>");
- print("<h2 align=left><a name=\"friends\">Friends list</a></h2>\n");
-
- print("<table width=750 border=1 cellspacing=0 cellpadding=5><tr><td>");
-
- $i = 0;
-
- $res = mysql_query("SELECT f.friendid as id, u.username AS name, u.class, u.avatar, u.title, u.donor, u.warned, u.enabled, u.last_access FROM friends AS f JOIN users as u ON f.friendid = u.id WHERE userid=$userid ORDER BY name") or mysql_error();
- if(mysql_num_rows($res) == 0)
- $friends = "<em>Your friends list is empty.</em>";
- else
- while ($friend = mysql_fetch_array($res))
- {
- $title = $friend["title"];
- if (!$title)
- $title = get_user_class_name($friend["class"]);
- $body1 = "<a href=userdetails.php?id=" . $friend['id'] . "><b>" . $friend['name'] . "</b></a>" .
- get_user_icons($friend) . " ($title)<br><br>last seen on " . $friend['last_access'] .
- "<br>(" . get_elapsed_time(sql_timestamp_to_unix_timestamp($friend[last_access])) . " ago)";
- $body2 = "<br><a href=friends.php?id=$userid&action=delete&type=friend&targetid=" . $friend['id'] . ">Remove</a>" .
- "<br><br><a href=sendmessage.php?receiver=" . $friend['id'] . ">Send PM</a>";
- $avatar = ($CURUSER["avatars"] == "yes" ? htmlspecialchars($friend["avatar"]) : "");
- if (!$avatar)
- $avatar = "images/default_avatar.gif";
- if ($i % 2 == 0)
- print("<table width=100% style='padding: 0px'><tr><td class=bottom style='padding: 5px' width=50% align=center>");
- else
- print("<td class=bottom style='padding: 5px' width=50% align=center>");
- print("<table class=main width=100% height=75px>");
- print("<tr valign=top><td width=75 align=center style='padding: 0px'>" .
- ($avatar ? "<div style='width:75px;height:75px;overflow: hidden'><img width=75px src=\"$avatar\"></div>" : ""). "</td><td>\n");
- print("<table class=main>");
- print("<tr><td class=embedded style='padding: 5px' width=80%>$body1</td>\n");
- print("<td class=embedded style='padding: 5px' width=20%>$body2</td></tr>\n");
- print("</table>");
- print("</td></tr>");
- print("</td></tr></table>\n");
- if ($i % 2 == 1)
- print("</td></tr></table>\n");
- else
- print("</td>\n");
- $i++;
- }
- if ($i % 2 == 1)
- print("<td class=bottom width=50%> </td></tr></table>\n");
- print($friends);
- print("</td></tr></table>\n");
-
- $res = mysql_query("SELECT b.blockid as id, u.username AS name, u.donor, u.warned, u.enabled, u.last_access FROM blocks AS b JOIN users as u ON b.blockid = u.id WHERE userid=$userid ORDER BY name") or mysql_error();
- if(mysql_num_rows($res) == 0)
- $blocks = "<em>Your blocked users list is empty.</em>";
- else
- {
- $i = 0;
- $blocks = "<table width=100% cellspacing=0 cellpadding=0>";
- while ($block = mysql_fetch_array($res))
- {
- if ($i % 6 == 0)
- $blocks .= "<tr>";
- $blocks .= "<td style='border: none; padding: 4px; spacing: 0px;'>[<font class=small><a href=friends.php?id=$userid&action=delete&type=block&targetid=" .
- $block['id'] . ">D</a></font>] <a href=userdetails.php?id=" . $block['id'] . "><b>" . $block['name'] . "</b></a>" .
- get_user_icons($block) . "</td>";
- if ($i % 6 == 5)
- $blocks .= "</tr>";
- $i++;
- }
- print("</table>\n");
- }
- print("<br><br>");
- print("<table class=main width=750 border=0 cellspacing=0 cellpadding=10><tr><td class=embedded>");
- print("<h2 align=left><a name=\"blocks\">Blocked users list</a></h2></td></tr>");
- print("<tr><td style='padding: 10px;background-color: #ECE9D8'>");
- print("$blocks\n");
- print("</td></tr></table>\n");
- print("</td></tr></table>\n");
- print("<p><a href=users.php><b>Find User/Browse User List</b></a></p>");
- stdfoot();
- ?>