| 1 | <?php |
| 2 | switch ($_POST['event']) { |
| 3 | case 'pridaj priatela': |
| 4 | $status=eventz::addfriend(); |
| 5 | if ($status) { |
| 6 | Header("Location:".ACTION_SCRIPT."friends"); |
| 7 | } |
| 8 | else echo $error; |
| 9 | break; |
| 10 | |
| 11 | } |
| 12 | |
| 13 | class eventz { |
| 14 | |
| 15 | function addfriend() { |
| 16 | global $kyberia; |
| 17 | global $user_id; |
| 18 | $friend_text=$_POST['friend_text']; |
| 19 | $friend_name=$_POST['friend_name']; |
| 20 | |
| 21 | $q="select id from user where login='$friend_name'"; |
| 22 | $result=$kyberia->query($q); |
| 23 | $result->next(); |
| 24 | $friend=$result->getRecord(); |
| 25 | $friend_id=$friend['id']; |
| 26 | |
| 27 | if ($friend_id==$user_id) { |
| 28 | global $error; |
| 29 | $error="egotrip?"; |
| 30 | return false; |
| 31 | } |
| 32 | |
| 33 | elseif ($friend_id) { |
| 34 | $friend_text=strip_tags($friend_text,'<a><b><i><u><img><br><p><font>'); |
| 35 | $friend_text=str_replace("\n","<br>",$friend_text); |
| 36 | $friend_text = EregI_Replace("((( )|(\n)|(^))+)(http://|ftp://|https://)([[:alnum:]][^,[:space:]]*)","\\2<a href=\"\\6\\7\">\\6\\7</a>",$friend_text); |
| 37 | $friend_text=addslashes($friend_text); |
| 38 | $q="insert into friends set user_id='$user_id',friend_text='$friend_text',friend_id='$friend_id'"; |
| 39 | $result=mysql_query($q); |
| 40 | $kyberia->ubikMail($friend_id,"Uzivatel $user_name si ta pridal medzi priatelov s textom: $friend_text"); |
| 41 | } |
| 42 | |
| 43 | else { |
| 44 | global $error; |
| 45 | $error="Uzivatel neexistuje!"; |
| 46 | return false; |
| 47 | } |
| 48 | } |
| 49 | |
| 50 | |
| 51 | } |