📄 pm.php
字号:
<?php
/***********************************************
pm.php - 短消息
Version : 1.2
Author : Tracemouse (tracemouse@msn.com)
Copyright: www.vitci.com
Writed : 2003/08/08
Modified : 2004/04/14
***********************************************/
require './include/base.php';
require './include/code.php';
$nav.=SEPARATER."<a href='myshop.php'>".$language['myshop']."</a>".SEPARATER."<a href='pm.php'>".$language['pm']."</a>";
if (!$islogin)
{
include template('login');
exit;
}
/*
$sqlstr="SELECT b.maxpm FROM $table_members a,$table_groups b WHERE a.groupid=b.groupid AND a.username='$_login_user'";
$query=$db->query($sqlstr);
if($dbq_rec = $db->fetch_array($query))
$maxpmnum=$dbq_rec['maxpm'];
else
showmessage("db_err");
if($maxpmnum == 0)
$maxpmnum = 999;
*/
$maxpmnum=$login_user[maxpm];
$tpp=5;
$navtitle = '';
$query = $db->query("SELECT COUNT(*) FROM $table_pm WHERE (msgfrom='$_login_user' AND folder='outbox') OR (msgto='$_login_user' AND folder='inbox')");
$pm_total = $db->result($query, 0);
@$storage_percent = round((100 * $pm_total / $maxpmnum) + 1).'%';
if(empty($action)) {
if(empty($page)) {
$start_limit = 0;
$page = 1;
} else {
$start_limit = ($page - 1) * $tpp;
}
if(empty($folder) || $folder == 'inbox') {
$folder = 'inbox';
$query = $db->query("SELECT COUNT(*) FROM $table_pm WHERE msgto='$_login_user' AND folder='inbox'");
$pmnum = $db->result($query, 0);
$query = $db->query("SELECT * FROM $table_pm WHERE msgto='$_login_user' AND folder='inbox' ORDER BY dateline DESC LIMIT $start_limit, $tpp");
} elseif($folder == 'outbox') {
$query = $db->query("SELECT COUNT(*) FROM $table_pm WHERE msgfrom='$_login_user' AND folder='outbox'");
$pmnum = $db->result($query, 0);
$query = $db->query("SELECT * FROM $table_pm WHERE msgfrom='$_login_user' AND folder='outbox' ORDER BY dateline DESC LIMIT $start_limit, $tpp");
} elseif($folder == 'track') {
$query = $db->query("SELECT COUNT(*) FROM $table_pm WHERE msgfrom='$_login_user' AND folder='inbox'");
$pmnum = $db->result($query, 0);
$query = $db->query("SELECT * FROM $table_pm WHERE msgfrom='$_login_user' AND folder='inbox' ORDER BY dateline DESC LIMIT $start_limit, $tpp");
}
$multipage = multi($pmnum, $tpp, $page, "pm.php?folder=$folder");
$pmlist = array();
while($pm = $db->fetch_array($query)) {
$pm['msgfromenc'] = rawurlencode($pm['msgfrom']);
$pm['msgtoenc'] = rawurlencode($pm['msgto']);
$pm['dateline'] = gmdate("$dateformat $timeformat", $pm['dateline'] + $timeoffset * 3600);
$pm['subject'] = $pm['new'] ? "<b>$pm[subject]</b>" : $pm['subject'];
$pmlist[] = $pm;
}
} elseif($action == 'view') {
$codecount = 0;
if($pm_total > $maxpmnum) {
showmessage('pm_box_isfull', 'pm.php');
}
$query = $db->query("SELECT * FROM $table_pm WHERE pmid='$pmid' AND (msgto='$_login_user' OR msgfrom='$_login_user')");
if(!$pm = $db->fetch_array($query)) {
showmessage('pm_nonexistence');
}
if($pm['new'] && !($pm['msgfrom'] == $_login_user && $pm['msgto'] != $_login_user && $pm['folder'] == 'inbox')) {
$db->query("UPDATE $table_pm SET new='0' WHERE pmid='$pmid'");
}
$folder = $folder == 'track' ? $folder : $pm['folder'];
$pm['msgfromenc'] = rawurlencode($pm['msgfrom']);
$pm['msgtoenc'] = rawurlencode($pm['msgto']);
$pm['dateline'] = gmdate("$dateformat $timeformat", $pm['dateline'] + $timeoffset * 3600);
$pm['message'] = postify($pm['message']);
} elseif($action == 'send') {
if(!$pmsubmit) {
if($pmid) {
$query = $db->query("SELECT * FROM $table_pm WHERE pmid='$pmid' AND msgto='$_login_user'");
$pm = $db->fetch_array($query);
$pm['subject'] = $message = str_replace('Re: ', '', $pm[subject]);
$pm['subject'] = $message = str_replace('Fw: ', '', $pm[subject]);
$username = $pm['msgfrom'];
if($do == 'reply') {
$subject = "Re: $pm[subject]";
$pm[message] = trim(preg_replace("/(\[QUOTE])(.*)(\[\/QUOTE])/siU", '', $pm[message]));
$message = "[QUOTE]$pm[message][/QUOTE]\n";
$touser = $pm['msgfrom'];
}
if($do == 'forward') {
$subject = "Fw: $pm[subject]";
$message = "[QUOTE]$pm[message][/QUOTE]\n";
$touser = $pm['msgfrom'];
}
}
$touser = stripslashes($username);
} else {
if(empty($msgto)) {
$msgto = array_merge($msgtobuddys, NULL);
} else {
$query = $db->query("SELECT username FROM $table_members WHERE username='$msgto'");
if(!$member = $db->fetch_array($query)) {
showmessage('pm_send_nonexistence');
}
$msgto = array_merge($msgtobuddys, $member['username']);
}
$msgto_count = count($msgto);
if(!$msgto_count || !trim($subject)) {
showmessage('pm_send_invalid');
}
$maxpmsend = ceil($maxpmnum / 10);
if($msgto_count > $maxpmsend) {
showmessage('pm_send_toomany');
}
//$msgto = daddslashes($msgto, 1);
$users = $comma = '';
foreach($msgto as $user) {
$users .= $comma.'\''.trim($user).'\'';
$comma = ', ';
}
$subject = dhtmlspecialchars(trim(censor($subject)));
$message = trim(censor(parseurl($message)));
foreach($msgto as $user) {
$db->query("INSERT INTO $table_pm (msgto, msgfrom, folder, new, subject, dateline, message)
VALUES('$user', '$_login_user', 'inbox', '1', '$subject', '$timestamp', '$message')");
}
$db->query("UPDATE $table_members SET newpm='1' WHERE username IN ($users)");
if($saveoutbox) {
$msgto = $msgto_count > 1 ? 'myBuddys' : $msgto[0];
$db->query("INSERT INTO $table_pm (pmid, msgto, msgfrom, folder, new, subject, dateline, message)
VALUES('', '$msgto', '$_login_user', 'outbox', '1', '$subject', '$timestamp', '".
($msgto_count > 1 ? 'This message was deliverd to '.str_replace('\'', '', $users)."\n\n" : NULL)."$message')");
}
showmessage('pm_send_succeed', 'pm.php');
}
} elseif($action == 'delete') {
$msg_field = $folder == 'inbox' ? 'msgto' : 'msgfrom';
if(!$pmid) {
if(is_array($delete)) {
$pmids = $comma = '';
foreach($delete as $pmid) {
$pmids .= "$comma'$pmid'";
$comma = ',';
}
$db->query("DELETE FROM $table_pm WHERE $msg_field='$_login_user' AND pmid IN ($pmids)");
}
} else {
$db->query("DELETE FROM $table_pm WHERE ".$msg_field."='$_login_user' AND pmid='$pmid'");
}
showmessage('pm_delete_succeed', "pm.php?folder=$folder");
} elseif($action == 'download' && !empty($pmid)) {
$query = $db->query("SELECT * FROM $table_pm WHERE pmid='$pmid' AND (msgto='$_login_user' OR msgfrom='$_login_user')");
if(!$pm = $db->fetch_array($query)) {
showmessage('pm_nonexistence');
}
$pm['dateline'] = gmdate("$dateformat $timeformat", $pm['dateline'] + $timeoffset * 3600);
$export = "VITCIE Private Message Export\n\n".
"Date:\t\t$pm[dateline]\n".
"From:\t\t$pm[msgfrom]\n".
"To:\t\t$pm[msgto]\n".
"Subject:\t$pm[subject]\n\n".
"$pm[message]\n\n\n".
"Welcome to $bbname ($boardurl)";
ob_end_clean();
header('Content-Encoding: none');
header('Content-Type: '.(strpos($HTTP_SERVER_VARS['HTTP_USER_AGENT'], 'MSIE') ? 'application/octetstream' : 'application/octet-stream'));
header('Content-Disposition: '.(strpos($HTTP_SERVER_VARS['HTTP_USER_AGENT'], 'MSIE') ? 'inline; ' : 'attachment; ').'filename="pm_'.$_login_user.'_'.$pmid.'.txt"');
header('Content-Length: '.strlen($export));
header('Pragma: no-cache');
header('Expires: 0');
echo $export;
discuz_exit();
} elseif($action == 'ignore') {
if(!$ignoresubmit) {
$query = $db->query("SELECT ignorepm FROM $table_members WHERE username='$_login_user'");
$ignorepm = $db->result($query, 0);
} else {
$db->query("UPDATE $table_members SET ignorepm='$ignorelist' WHERE username='$_login_user'");
showmessage('pm_ignore_succeed', 'pm.php');
}
}
include template('pm');
?>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -