Почему все видят сообщения которые отправлены вприват!
Я сравнил с другими и ошибок нету вроде!
chat.php
Я сравнил с другими и ошибок нету вроде!
chat.php
Код:
<?
define('INSIDE', true);
include("inc/db_connect.php");
$stat = mysql_fetch_array(mysql_query("SELECT `id`,`user`,`bloked`,`m_time`,`room`,`rank`,`color`,`font`,`admin`,`tribe` FROM `players` WHERE `user` = '".$_COOKIE['user']."' AND `pass` = '".$_COOKIE['pass']."' LIMIT 1"));
mysql_query("SET CHARSET cp1251");
if (empty($stat['id']) || $stat['bloked']) {
print "<script>top.location='index.php?action=logout'</script>";
exit;
}
mysql_query("UPDATE `players` SET `lpv` = '".time()."' WHERE `user` = '".$stat['user']."' LIMIT 1");
include("inc/chat/functions.php");
$mess_id=$_GET['message_id'];
if ($_GET['action']=="send") {
$text = HtmlSpecialChars(Trim($_POST['text']));
if ($stat['m_time']>time()) $text="";
if ($text=="") { $clear_text = 0; } else {
$clear_text = 1;
$to_login = "";
$private = "";
$to_clan = "";
if (preg_match("/клану \[(.*?)\]/", $text, $private_clan)) {
$privateclan = $private_clan['1'];
if ($stat[tribe]==$privateclan) {
$text = str_replace('клану ['.$privateclan.']',' ',$text);
$to_clan = $privateclan;
}else $text="Вы не состоите в этом клане";
}
elseif (preg_match("/приватно \[(.*?)\]/", $text, $private_temp)) {
$private = $private_temp['1'];
$text = str_replace('приватно ['.$private.']',' ',$text);
}
elseif (preg_match("/для \[(.*?)\]/", $text, $to_login_temp)) {
$to_login = $to_login_temp['1'];
$text = str_replace('для ['.$to_login.']',' ',$text);
}
$search = array("<", ">",);
$replace = array("<", ">");
$text = str_replace($search, $replace, $text);
include("inc/chat/smiles.php");
if ($stat['font']=='b') $text = '[b]'.$text.'[/b]';
elseif ($stat['font']=='i') $text = '[i]'.$text.'[/i]';
elseif ($stat['font']=='bi') $text = '[i][b]'.$text.'[/b][/i]';
if ($stat['admin']) $send = '<font face="Comic Sans MS" size="2">'.$text.'</font>';
else $send = $text;
insert_msg($send,$to_login,$private,0,'','','',$to_clan);
}
$mess_id=$_POST['message_id'];
}
print "<script LANGUAGE=\"JavaScript\">";
if ($mess_id!="") {
$chat = mysql_query("SELECT * FROM `chat` WHERE `id` > ".$mess_id." AND (`room` = '".$stat['room']."' OR `room` = '0' OR `room` = '') ORDER BY `id`");
while($chats = mysql_fetch_array($chat)) {
if ($chats['id']>$mess_id) {
$mess_id=$chats['id'];
if ($chats['date']+60 > time()) {
if ($chats['system']==1) {
if ($chats['system_to']=="") {
if ($chats['msg']<>"") {
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','','<LABEL STYLE=\'COLOR: Red\' title=\'Уровень важности: Высокий\'>[u][b]Внимание![/b][/u]</LABEL> ".stripslashes($chats['msg'])."','1','0');";
echo "\n";
}
} else {
if ($chats['system_to']==$stat['user']) {
if ($chats['msg']<>"") {
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','','<LABEL STYLE=\'COLOR: Green\' title=\'Уровень важности: Низкий\'>[u][b]Внимание![/b][/u]</LABEL> ".stripslashes($chats['msg'])."','1','0');";
echo "\n";
}
}
}
if ($chats['redirect']) $redirect=$chats['redirect'];
} elseif (!empty($chats['to_clan']) && $chats['to_clan']==$stat['tribe']) {
if ($chats['login']==$stat['user']) { $my=1; $me=0; } else { $my=0; $me=1; }
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','".$chats['login']."','<FONT class=private onclick=\'top.cl(\"$chats[to_clan]\");\'>клану [".$chats[to_clan]."]</FONT> ".stripslashes($chats['msg'])."','".$me."','".$my."');";
echo "\n";
} elseif ($chats['private']<>"" && ($chats['login']==$stat['user'] || $chats['private']==$stat['user'])) {
if ($chats['login']==$stat['user']) { $my=1; $me=0; } else { $my=0; $me=1; }
if ($my==1) { $pp=$chats['private']; } else { $pp=$chats['login']; }
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','".$chats['login']."','<FONT class=private onclick=\'top.pp(\"".$pp."\");\'>приватно [".$chats['private']."]</FONT>".stripslashes($chats['msg'])."','".$me."','".$my."');";
echo "\n";
} elseif ($chats['to_login']<>""){
unset ($stick);
if ($chats['to_login']==$stat['user']) { $my=0; $me=1; $stick=1; }
if ($chats['login']==$stat['user']) { $my=1; $me=0; $stick=1; }
if ($my==1) { $to=$chats['to_login']; } else { $to=$chats['login']; }
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','".$chats['login']."','";
if (isset($stick) && !empty($stick)) { echo "<FONT class=player onclick=\'top.to(\"".$to."\");\'>"; }
echo "для [".$chats['to_login']."]</FONT><font color=".$chats['color']."> ".stripslashes($chats['msg'])."</font>','".$me."','".$my."');";
echo "\n";
} elseif ($chats['private']=="" && $chats['to_login']=="" && empty($chats['to_clan']) && $chats['system']<>1) {
if ($chats['login']==$stat['user']) $my=1; else $my=0;
echo "top.ChatMsg('".date('H:i:s',$chats['date'])."','".$chats['login']."','<font color=".$chats['color']."> ".addslashes($chats['msg'])."</font>','0','".$my."');";
echo "\n";
}
}
}
}
} else { $mess_id=-1; }
print"\ntop.MsgSent('".$mess_id."'";
if (isset($clear_text)) print ",'1'";
print ");\n";
if ($redirect) echo"top.main.location=\"$redirect?\"+Math.random();\"\"\n";
print "</SCRIPT>";
mysql_close($link);
?>