<?php
if ($user_id)
{
require_once ('incfiles/lib/class.upload.php');
if ($id)
{
$object = $object->process_nav_panel($id);
echo '<div class="phdr">' . $object->print_nav_panel() . '</div>';
}
else
{
echo '<div class="phdr"><a href="/">' . $lng['elon_doska'] . '</a> | ' . $lng['elon_berish'] . '</div>';
}
if (isset($_POST['submit']))
{
$name = isset($_POST['name']) ? mb_substr(functions::checkin(trim($_POST['name'])), 0, 50) : null;
$desc = isset($_POST['desc']) ? mb_substr(functions::checkin(trim($_POST['desc'])), 0, 1000) : null;
$davlat = isset($_POST['davlat']) ? mb_substr(functions::checkin(trim($_POST['davlat'])), 0, 50) : null;
$shahar = isset($_POST['shahar']) ? mb_substr(functions::checkin(trim($_POST['shahar'])), 0, 50) : null;
$kvulitsa = isset($_POST['kvulitsa']) ? mb_substr(functions::checkin(trim($_POST['kvulitsa'])), 0, 50) : null;
$kv_dom = isset($_POST['kv_dom']) ? mb_substr(functions::checkin(trim($_POST['kv_dom'])), 0, 50) : null;
$pulbirligi = isset($_POST['pulbirligi']) ? mb_substr(functions::checkin(trim($_POST['pulbirligi'])), 0, 50) : null;
$kvkomvk = isset($_POST['kvkomvk']) ? mb_substr(functions::checkin(trim($_POST['kvkomvk'])), 0, 50) : null;
$kvetaj = isset($_POST['kvetaj']) ? mb_substr(functions::checkin(trim($_POST['kvetaj'])), 0, 50) : null;
$kvjamimay = isset($_POST['kvjamimay']) ? mb_substr(functions::checkin(trim($_POST['kvjamimay'])), 0, 50) : null;
$kvetajz = isset($_POST['kvetajz']) ? mb_substr(functions::checkin(trim($_POST['kvetajz'])), 0, 50) : null;
$kvymaydon = isset($_POST['kvymaydon']) ? mb_substr(functions::checkin(trim($_POST['kvymaydon'])), 0, 50) : null;
$kvkmaydon = isset($_POST['kvkmaydon']) ? mb_substr(functions::checkin(trim($_POST['kvkmaydon'])), 0, 50) : null;
$kvsanuzel = isset($_POST['kvsanuzel']) ? mb_substr(functions::checkin(trim($_POST['kvsanuzel'])), 0, 50) : null;
$kvtelephone = isset($_POST['kvtelephone']) ? mb_substr(functions::checkin(trim($_POST['kvtelephone'])), 0, 50) : null;
$kvinternet = isset($_POST['kvinternet']) ? mb_substr(functions::checkin(trim($_POST['kvinternet'])), 0, 50) : null;
$kvbalkon = isset($_POST['kvbalkon']) ? mb_substr(functions::checkin(trim($_POST['kvbalkon'])), 0, 50) : null;
$narx = isset($_POST['narx']) ? mb_substr(functions::checkin(trim($_POST['narx'])), 0, 50) : null;
$tuman = isset($_POST['tuman']) ? mb_substr(functions::checkin(trim($_POST['tuman'])), 0, 50) : null;
$telefon = isset($_POST['telefon']) ? mb_substr(functions::checkin(trim($_POST['telefon'])), 0, 15) : null;
$email = isset($_POST['email']) ? mb_substr(functions::checkin(trim($_POST['email'])), 0, 30) : null;
$days = (isset($_POST['days'])) ? abs(intval($_POST['days'])) : 30;
$end = time() + (3600 * 24 * $days);
$status = ($set_board['moderation'] == 1) ? 0 : 1;
$error = array();
if (empty($name))
$error[] = '' . $lng['elon_nomini_kiriting'] . '';
if (empty($desc))
$error[] = '' . $lng['elon_tafsinini_kiriting'] . '';
if (empty($davlat))
$error[] = 'Давлат танланмади';
if (empty($shahar))
$error[] = 'Шахар номида хатолик';
if (empty($kvulitsa))
$error[] = 'Шахар номида хатолик';
if (empty($kvdom))
$error[] = 'Шахар номида хатолик';
if (empty($kvkomvk))
$error[] = 'Шахар номида хатолик';
if (empty($kvetaj))
$error[] = 'Шахар номида хатолик';
if (empty($kvjamimay))
$error[] = 'Шахар номида хатолик';
if (empty($tuman))
$error[] = 'Шахар номида хатолик';
if ($days == 0 || $days < 0)
$error[] = '' . $lng['elon_kuni'] . '';
if ($set_board['pay'] == 1 && (($days - $set_board['free_days']) * $set_board['price']) > $datauser['balans'])
$error[] = '' . $lng['hisobingizda_yetmaydi'] . '';
if (!$error)
{
$handle = new upload($_FILES['img']);
if ($handle->uploaded)
{
$fname = time();
$handle->file_new_name_body = $fname;
$handle->allowed = array (
'image/jpeg',
'image/jpg',
'image/gif',
'image/png'
);
$handle->file_max_size = 1024 * $set['flsz'];
$handle->file_overwrite = true;
$handle->image_resize = true;
$handle->image_x = 175;
$handle->image_y = 200;
$handle->image_convert = 'png';
$handle->process('files/board/');
$handle->file_new_name_body = $fname;
$handle->file_overwrite = true;
$handle->image_resize = true;
$handle->image_x = 75;
$handle->image_y = 75;
$handle->image_convert = 'png';
$handle->process('files/board/small/');
if ($handle->processed)
{
mysql_query("INSERT INTO `board_ads` SET
`cat_id` = " . ($id ? $id : abs($_POST['cat_id'])) . ",
`user_id` = $user_id,
`img` = '1',
`name` = '" . mysql_real_escape_string($name) . "',
`davlat` = '" . mysql_real_escape_string($davlat) . "',
`shahar` = '" . mysql_real_escape_string($shahar) . "',
`tuman` = '" . mysql_real_escape_string($tuman) . "',
`narx` = '" . mysql_real_escape_string($narx) . "',
`kvulitsa` = '" . mysql_real_escape_string($kvulitsa) . "',
`kvdom` = '" . mysql_real_escape_string($kvdom) . "',
`pulbirligi` = '" . mysql_real_escape_string($pulbirligi) . "',
`kvkomvk` = '" . mysql_real_escape_string($kvkomvk) . "',
`kvetaj` = '" . mysql_real_escape_string($kvetaj) . "',
`kvjamimay` = '" . mysql_real_escape_string($kvjamimay) . "',
`kvetajz` = '" . mysql_real_escape_string($kvetajz) . "',
`kvymaydon` = '" . mysql_real_escape_string($kvymaydon) . "',
`kvkmaydon` = '" . mysql_real_escape_string($kvkmaydon) . "',
`kvsanuzel` = '" . mysql_real_escape_string($kvsanuzel) . "',
`kvtelephone` = '" . mysql_real_escape_string($kvtelephone) . "',
`kvinternet` = '" . mysql_real_escape_string($kvinternet) . "',
`kvbalkon` = '" . mysql_real_escape_string($kvbalkon) . "',
`desc` = '" . mysql_real_escape_string($desc) . "',
`telefon` = $telefon,
`email` = '" . mysql_real_escape_string($email) . "',
`end` = $end,
`time` = " . time() . ",
`status` = $status");
mysql_query("INSERT INTO `board_images` SET
`ad_id` = " . mysql_insert_id() . ",
`name` = '" . $fname . "'");
}
else
{
echo functions::display_error($handle->error);
}
$handle->clean();
}
else
{
mysql_query("INSERT INTO `board_ads` SET
`cat_id` = " . ($id ? $id : abs($_POST['cat_id'])) . ",
`user_id` = $user_id,
`name` = '" . mysql_real_escape_string($name) . "',
`davlat` = '" . mysql_real_escape_string($davlat) . "',
`shahar` = '" . mysql_real_escape_string($shahar) . "',
`tuman` = '" . mysql_real_escape_string($tuman) . "',
`narx` = '" . mysql_real_escape_string($narx) . "',
`narx2` = '" . mysql_real_escape_string($narx2) . "',
`kvulitsa` = '" . mysql_real_escape_string($kvulitsa) . "',
`kvdom` = '" . mysql_real_escape_string($kvdom) . "',
`pulbirligi` = '" . mysql_real_escape_string($pulbirligi) . "',
`kvkomvk` = '" . mysql_real_escape_string($kvkomvk) . "',
`kvetaj` = '" . mysql_real_escape_string($kvetaj) . "',
`kvjamimay` = '" . mysql_real_escape_string($kvjamimay) . "',
`kvetajz` = '" . mysql_real_escape_string($kvetajz) . "',
`kvymaydon` = '" . mysql_real_escape_string($kvymaydon) . "',
`kvkmaydon` = '" . mysql_real_escape_string($kvkmaydon) . "',
`kvsanuzel` = '" . mysql_real_escape_string($kvsanuzel) . "',
`kvtelephone` = '" . mysql_real_escape_string($kvtelephone) . "',
`kvinternet` = '" . mysql_real_escape_string($kvinternet) . "',
`kvbalkon` = '" . mysql_real_escape_string($kvbalkon) . "',
`desc` = '" . mysql_real_escape_string($desc) . "',
`telefon` = $telefon,
`email` = '" . mysql_real_escape_string($email) . "',
`end` = $end,
`time` = " . time() . ",
`status` = $status");
}
if ($set_board['pay'] == 1)
{
$price = ($days - $set_board['free_days']) * $set_board['price'];
mysql_query("UPDATE `users` SET `balans` = `balans` - $price WHERE `id` = $user_id");
}
header('location: ?act=list&id=' . ($id ? $id : abs($_POST['cat_id'])));
}
else
{
echo functions::display_error($error, '<a href="' . $_SERVER['HTTP_REFERER'] . '">' . $lng['qaytarish'] . '</a>');
}
}
else
{
echo '<div class="gmenu"><form action="?do=add_ad' . ($id ? '&id=' . $id : null) . '" method="post" name="form" enctype="multipart/form-data">'
. '<div>' . $lng['elon_nomi'] . '</div>'
. '<input type="text" name="name" value="">';
echo'<select name="davlat" style="display:none;">' .
'<option value="uzb" >O`zbekiston</option>' .
'<option value="rus" >Rossiya</option>' .
'<option value="taj" >Tojikiston</option>' .
'<option value="kaz" >Qozog\'iston</option>' .
'<option value="qir" >Qirg\'iziston</option>' .
'</select>';
echo'<div>* Шахар:</div>';
echo'<input type="text" name="shahar" value="">';
echo'<div>* Улица:</div>';
echo'<input type="text" name="kvulitsa">';
echo'<div>* Дом:</div>';
echo'<input type="text" name="kvdom">';
echo'<div>* Район:</div>';
echo'<input type="text" name="tuman" value="">';
echo'<div>* Цена:</div>';
echo'<input type="text" name="narx"> ';
echo' <select name="pulbirligi">' .
'<option value="uzs" >Сум</option>' .
'<option value="uye" >у.е.</option>' .
'</select>';
echo'<div>* Комнат в квартире:</div>';
echo'<input type="text" name="kvkomvk">';
echo'<div>* Этаж:</div>';
echo'<input type="text" name="kvetaj">';
echo'<div>* Общая площадь, кв.м:</div>';
echo'<input type="text" name="kvjamimay">';
echo'<div>Этажей в здании:</div>';
echo'<input type="text" name="kvetajz">';
echo '<div class="phdr"><p>Чем больше полей вы заполните, тем быстрее люди найдут ваше объявление!</p></div>';
echo '<p><h3 title="Жилая площадь, Площадь кухни, Ремонт, Санузел, Телефон, Интернет, Балкон/Лоджия">Подробнее о квартире</h3></p>';
echo'<div>Жилая площадь, кв.м:</div>';
echo'<input type="text" name="kvymaydon">';
echo'<div>Площадь кухни, кв.м:</div>';
echo'<input type="text" name="kvkmaydon">';
echo'<select name="kvsanuzel">' .
'<option value="0" >Санузел</option>' .
'<option value="1" >совмещённый</option>' .
'<option value="2" >раздельный</option>' .
'<option value="3" >2 и более</option>' .
'</select><br>';
echo'<input type="checkbox" name="kvtelephone" autocomplete="off"> Телефон<br>';
echo'<input type="checkbox" name="kvinternet" autocomplete="off"> Интернет<br>';
echo'<input type="checkbox" name="kvbalkon" autocomplete="off"> Балкон/Лоджия';
echo '<p>' . $lng['elon_tafsini'] . '<br>';
echo bbcode::auto_bb('form', 'desc');
echo '<textarea rows="' . $set_user['field_h'] . '" name="desc" placeholder="* Напишите сюда текст вашего объявления"></textarea></p>'
. '<p>' . $lng['elon_nomer'] . '</p>'
. '<input type="text" name="telefon">'
. '<p>' . $lng['elon_email'] . '</p>'
. '<input type="text" name="email">'
. '<p>' . $lng['elon_rasm'] . '</p>'
. '<input type="file" name="img">';
if ($set_board['pay'] == 1)
{
echo '<p>' . $lng['elon_qancha_vaqt'] . ' ' . $set_board['price'] . ' ' . $lng['elon_ball_kun'] . ' ' . $set_board['free_days'] . ' ' . $lng['elon_bepul_kunlar'] . '</li></p>'
. '<input type="text" size="2" name="days" value="' . $set_board['free_days'] . '">';
}
else
{
echo '<p><li>' . $lng['elon_30_kunga_tolov'] . '</li></p>';
}
if (!$id)
{
$req = mysql_query("SELECT `id`, `name` FROM `board_categories` WHERE `type` = 'ads'");
if (mysql_num_rows($req))
{
echo '<p>' . $lng['elon_bolim'] . '<select name="cat_id">';
while ($res = mysql_fetch_assoc($req))
{
echo '<option value="' . $res['id'] . '">' . functions::checkout($res['name']) . '</option>';
}
echo '</select></p>';
}
else
{
echo '<p>' . $lng['elon_bolim_yoq'] . '</p>';
}
}
echo '<p>' . $lng['elon_tekshiruv'] . ' ' . ($set_board['moderation'] == 0 ? '<span class="red">' . $lng['elon_ochirilgan'] . '</span>' : '<span class="green">' . $lng['elon_yoqilgan'] . '</span>') . '</p>'
. '<p><input type="submit" name="submit" value="' . $lng['elon_qoshish'] . '"></p>'
. '</form></div>';
}
}
else
{
header('location: ./');
}