File: /var/www/ilya/data/www/afish-ka.ru/admin/modules/firms/comments.inc
<?
//- Настройки модуля -----------------------------------------------------------
permission("mcp"); // tcp-техники; acp-админы; mcp-модеры; cp-рядовые участники
$skin_pname = "Отзывы посетителей на заведение";
$temp_html="";
//------------------------------------------------------------------------------
if(isset($_GET['delete'])) {
$result = query("SELECT * FROM `opinions` WHERE `id`='".$_GET['delete']."'");
if(mysql_num_rows($result)==1) {
$data = mysql_fetch_array($result);
cache_delete(array("opinions_actions"),$data['fid'].".html");
query("DELETE FROM `opinions` WHERE `id`='".$_GET['delete']."'");
header("Location: ./?m=".$_GET['m']."&task=comments&id=".$data['fid']);
}
else {
header("Location: ./?m=".$_GET['m']."&task=list");
}
}
$result = query("SELECT * FROM `firms` WHERE `id`=".$_GET['id'].";");
if(mysql_num_rows($result)!=1)
header("Location: ./?m=".$_GET['m']."&task=list");
else {
$firm = mysql_fetch_array($result);
$skin_pname = "Отзывы посетителей на заведение «<a href=\"./?m=".$_GET['m']."&task=edit&id=".$_GET['id']."\">".$firm['title']."</a>»";
$result = query("SELECT * FROM `opinions` WHERE `fid`='".$_GET['id']."';");
if(mysql_num_rows($result)==0)
$temp_html = "<p>Отзывов на заведение «".$firm['title']."» нет</p>";
else {
$list_opinions = "";
while($data=mysql_fetch_array($result)) {
$id = $data['id'];
$author = $data['author'];
$datetime = $data['datetime'];
$text = $data['text'];
$list_opinions .= preg_replace("/{%(\w+)%}/ee", "$\\1",skin_html("firms_comment.htm",0));
}
}
}
$temp_html .= $list_opinions;
skin_html_design($temp_html);
?>