芝麻web文件管理V1.00
编辑当前文件:/home/p/r/i/prismawe/www/projets/managechat.php
assign("loginerror", 0); $template->display("login.tpl"); die(); } $action = getArrayVal($_GET, "action"); $userto = getArrayVal($_GET, "userto"); $userto_id = getArrayVal($_GET, "uid"); $userto_id = (int) $userto_id; if (!$action) { $now = time(); $now = $now - 35; $cook = "chatstart" . $userto_id; $cook2 = "chatwin" . $userto_id; setcookie("$cook", "$now"); setcookie("$cook2", "1"); $template->assign("userto", $userto); $template->assign("userto_id", $userto_id); $user = new user(); $avatar = $user->getAvatar($userto_id); $template->assign("avatar", $avatar); $template->display("chatwin.tpl"); } if ($action == "post") { if (!$userpermissions["chat"]["add"]) { $errtxt = $langfile["nopermission"]; $noperm = $langfile["accessdenied"]; $template->assign("errortext", "
$errtxt
$noperm"); $template->display("error.tpl"); die(); } $content = $_POST['content']; $content = strip_tags($content); $content = mysql_real_escape_string($content); $userto = $_POST['userto']; $userto_id = $_POST['userto_id']; $userto = mysql_real_escape_string($userto); $userto_id = (int) $userto_id; // $content = utf8_decode($content); $now = time(); mysql_query("INSERT INTO chat (time,ufrom,ufrom_id,userto,userto_id,text) VALUES ('$now','$username','$userid','$userto','$userto_id','$content')"); } elseif ($action == "pull") { $cook = "chatstart" . $userto_id; $start = $_COOKIE["$cook"]; $start = mysql_real_escape_string($start); if (!$start) { $start = 0; } $sel = mysql_query("SELECT * FROM chat WHERE ufrom_id IN($userid,$userto_id) AND userto_id IN($userid,$userto_id) AND time > $start ORDER by time ASC"); while ($chat = mysql_fetch_array($sel)) { $date = date("H:i", $chat["time"]); echo "[$date]
$chat[ufrom]:
$chat[text]"; echo "
"; } } elseif ($action == "chk") { $now = time(); $now = $now - 20; $sel = mysql_query("SELECT ufrom_id,ufrom FROM chat WHERE userto_id = $userid AND time > $now"); while ($chk = mysql_fetch_row($sel)) { $cook = "chatwin" . $chk[0]; if (!$_COOKIE[$cook]) { echo ""; } } $mynow = time(); $upd = mysql_query("UPDATE user SET lastlogin='$mynow' WHERE ID = $userid"); } ?>