Размер файла: 4.67Kb
<?
Error_Reporting(E_ALL & ~E_NOTICE); /////////////// игнорируем ошибки
header ("Content-type:text/vnd.wap.wml; charset=utf-8");
list($msec,$sec)=explode(chr(32),microtime());
$HeadTime=$sec+$msec;
$rand=rand(10000,1000000);
require("../conf.inc.php");
global $REMOTE_ADDR;
global $HTTP_USER_AGENT;
$id=@mysql_escape_string($id);
$pass=@mysql_escape_string($pass);
$login=@mysql_escape_string($login);
$link=mysql_pconnect ($DB_HOST, $DB_USER, $DB_PASS);
mysql_select_db($DB_NAME);
if(empty($id)) {
$find_user=mysql_query("Select * from users where cid='".$cid."' AND login='".$login."' and pass='".$pass."'") or die("Querry error");
} else {
$find_user=mysql_query("Select * from users where cid='".$cid."' AND id='".$id."' and pass='".$pass."'") or die("Querry error");
}
if(mysql_affected_rows()==0)
{
echo <<<END
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE wml PUBLIC "-//WAPFORUM//DTD WML 1.1//EN" "http://www.wapforum.org/DTD/wml_1.1.xml">
<wml>
<card id="search" title="РџРѕРёСЃРє">
<p align="center">
Логин или пароль неверны, проверьте ваш ввод.
</p>
</card>
</wml>
END;
return 0;
}
else
{
$row=mysql_fetch_array($find_user);
$login=$row['login'];
$id=$row['id'];
$admin=$row['admin'];
$status=$row['status'];
$posts=$row['posts'];
if (($row["browser"]!==$HTTP_USER_AGENT) or ($row["ip"]!==$REMOTE_ADDR))
{
mysql_query("update users set browser='$HTTP_USER_AGENT', ip='$REMOTE_ADDR' where cid='".$cid."' AND id='$id';");
}
//Проверка, не забанен ли ip+browser:
mysql_query ("Select * from bannedib WHERE cid='".$cid."' AND (ip = '".$REMOTE_ADDR."')and(browser = '".$HTTP_USER_AGENT."')");
if(mysql_affected_rows()!=0)
{
echo <<<END
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE wml PUBLIC "-//WAPFORUM//DTD WML 1.1//EN" "http://www.wapforum.org/DTD/wml_1.1.xml">
<wml>
<card id="error" title="Забанен">
<p align="center">
Вы забанены по связке ip+browser!
</p>
</card>
</wml>
END;
exit;
}
echo "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n";
echo "<!DOCTYPE wml PUBLIC \"-//WAPFORUM//DTD WML 1.2//EN\" \"http://www.wapforum.org/DTD/wml12.dtd\">\n";
echo "<wml>\n";
echo "<card title=\"Записки\">\n";
echo "<p align=\"center\">\n";
if($row['fsize'] == "small") { $fsize1 = "<small>"; $fsize2 = "</small>"; }
elseif($row['fsize'] == "big") { $fsize1 = "<big>"; $fsize2 = "</big>"; }
else { $fsize1 = ""; $fsize2 = ""; }
$timeoutseconds = 30*24*3600; //скока храним прочитанные записки
$timestamp=time();
$timeout2=$timestamp-$timeoutseconds;
mysql_query("DELETE FROM letters WHERE time<'".$timeout2."' && new=0");
mysql_query("OPTIMIZE TABLE `letters`");
$let_in=mysql_query("select id from letters where cid='".$cid."' AND to_user='$login' and new=1;");
$let_to=mysql_query("select id from letters where cid='".$cid."' AND from_user='$login';");
$num_in=mysql_num_rows($let_in);
$num_to=mysql_num_rows($let_to);
?>
В целях экономии памяти и уменьшения нагрузки на БД записки хранятся неделю!
<br/>
<?
?>
</p>
<p align="left">
<?
?>
<a href="inbox.php?id=<? print $id; ?>&pass=<? print $pass; ?>&cid=<? print $cid; ?>&ref=<? print $rand; ?>">Входящие(<? print $num_in; ?>)</a><br/>
<a href="draft.php?id=<? print $id; ?>&pass=<? print $pass; ?>&cid=<? print $cid; ?>&ref=<? print $rand; ?>">Отправленные(<? print $num_to; ?>)</a><br/>
<a href="sendform.php?id=<? print $id; ?>&pass=<? print $pass; ?>&cid=<? print $cid; ?>&ref=<? print $rand; ?>">Написать</a><br/>
<?
echo "***<br/><a href=\"../enter.php?id=$id&pass=$pass&cid=$cid&ref=$ref\">Прихожая</a><br/>";
}
?>
</p>
</card>
</wml>
<?
mysql_close($link);
?>