From 5a935f413dd6dff69df736b437073d343aa8a6ec Mon Sep 17 00:00:00 2001
From: Philip Häusler <msquare@notrademark.de>
Date: Thu, 2 Jun 2011 01:45:46 +0200
Subject: news

---
 includes/pages/user_news.php | 106 +++++++++++++++++++++++++++++++++++++++++
 includes/sys_user.php        | 109 +++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 215 insertions(+)
 create mode 100644 includes/pages/user_news.php
 create mode 100644 includes/sys_user.php

diff --git a/includes/pages/user_news.php b/includes/pages/user_news.php
new file mode 100644
index 00000000..7012bb99
--- /dev/null
+++ b/includes/pages/user_news.php
@@ -0,0 +1,106 @@
+<?php
+function user_news() {
+	return "<a href=\"#Neu\">" . Get_Text(3) . "</a>" . user_news_output();
+}
+
+function user_news_output() {
+	global $DISPLAY_NEWS, $privileges;
+
+	if (isset ($_POST["text"]) && isset ($_POST["betreff"]) && IsSet ($_POST["date"])) {
+		if (!isset ($_POST["treffen"]))
+			$_POST["treffen"] = 0;
+		$SQL = "INSERT INTO `News` (`Datum`, `Betreff`, `Text`, `UID`, `Treffen`) " .
+		"VALUES ('" . sql_escape($_POST["date"]) . "', '" . sql_escape($_POST["betreff"]) . "', '" . sql_escape($_POST["text"]) . "', '" . sql_escape($_SESSION['uid']) .
+		"', '" . sql_escape($_POST["treffen"]) . "');";
+		$Erg = sql_query($SQL);
+		if ($Erg == 1)
+			$html .= Get_Text(4);
+	}
+
+	if (!IsSet ($_GET["news_begin"]))
+		$_GET["news_begin"] = 0;
+
+	if (!IsSet ($_GET["DISPLAY_NEWS"]))
+		$_GET["DISPLAY_NEWS"] = 5;
+
+	$SQL = "SELECT * FROM `News` ORDER BY `ID` DESC LIMIT " . intval($_GET["news_begin"]) . ", " . intval($_GET["DISPLAY_NEWS"]);
+	$Erg = sql_query($SQL);
+
+	// anzahl zeilen
+	$news_rows = mysql_num_rows($Erg);
+
+	for ($n = 0; $n < $news_rows; $n++) {
+
+		if (mysql_result($Erg, $n, "Treffen") == 0)
+			$html .= "<p class='question'>";
+		else
+			$html .= "<p class='engeltreffen'>";
+
+		$html .= "<u>" . ReplaceSmilies(mysql_result($Erg, $n, "Betreff")) . "</u>\n";
+
+		// Schow Admin Page
+		if ($_SESSION['CVS']["admin/news.php"] == "Y")
+			$html .= " <a href=\"./../admin/news.php?action=change&date=" . mysql_result($Erg, $n, "Datum") . "\">[edit]</a><br />\n\t\t";
+
+		$html .= "<br />&nbsp; &nbsp;<font size=1>" . mysql_result($Erg, $n, "Datum") . ", ";
+		$html .= UID2Nick(mysql_result($Erg, $n, "UID")) . "</font>";
+		// avatar anzeigen?
+		$html .= DisplayAvatar(mysql_result($Erg, $n, "UID"));
+		$html .= "</p>\n";
+		$html .= "<p class='answer'>" . ReplaceSmilies(nl2br(mysql_result($Erg, $n, "Text"))) . "</p>\n";
+		$RefID = mysql_result($Erg, $n, "ID");
+		$countSQL = "SELECT COUNT(*) FROM `news_comments` WHERE `Refid`='$RefID'";
+		$countErg = sql_query($countSQL);
+		$countcom = mysql_result($countErg, 0, "COUNT(*)");
+		$html .= "<p class='comment' align='right'><a href=\"./news_comments.php?nid=$RefID\">$countcom comments</a></p>\n\n";
+	}
+
+	$html .= "<div align=\"center\">\n\n";
+	$rowerg = sql_query("SELECT * FROM `News`");
+	$rows = mysql_num_rows($rowerg);
+	$dis_rows = round(($rows / $DISPLAY_NEWS) + 0.5);
+
+	$html .= Get_Text(5);
+
+	for ($i = 1; $i <= $dis_rows; $i++) {
+		if (!((($i * $DISPLAY_NEWS) - $_GET["news_begin"]) == $DISPLAY_NEWS)) {
+			$html .= "<a href=\"./news.php?news_begin=" . (($i * $DISPLAY_NEWS) - $DISPLAY_NEWS -1) . "\">$i</a>&nbsp; ";
+		} else {
+			$html .= "$i&nbsp; ";
+		}
+	}
+	$html .= '</div>
+			<br /><hr />
+			<h2>' . Get_Text(6) . '</h2>
+			<a name="Neu">&nbsp;</a>
+			
+			<form action="" method="post">
+			<?PHP
+			
+				// Datum mit uebergeben, um doppelte Eintraege zu verhindern 
+				// (Reload nach dem Eintragen!)
+			?>
+			<input type="hidden" name="date" value="' . date("Y-m-d H:i:s") . '">
+			<table>
+			 <tr>
+			  <td align="right">' . Get_Text(7) . '</td>
+			  <td><input type="text" name="betreff" size="60"></td>
+			 </tr>
+			 <tr>
+			  <td align="right">' . Get_Text(8) . '</td>
+			  <td><textarea name="text" cols="50" rows="10"></textarea></td>
+			 </tr>';
+	if (in_array('news_add_meeting', $privileges)) {
+		$html .= ' <tr>
+						  <td align="right">' . Get_Text(9) . '</td>
+						  <td><input type="checkbox" name="treffen" size="1" value="1"></td>
+						 </tr>';
+
+	}
+	$html .= '</table>
+			<br />
+			<input type="submit" value="' . Get_Text("save") . '">
+			</form>';
+	return $html;
+}
+?>
\ No newline at end of file
diff --git a/includes/sys_user.php b/includes/sys_user.php
new file mode 100644
index 00000000..6274003d
--- /dev/null
+++ b/includes/sys_user.php
@@ -0,0 +1,109 @@
+<?php
+function UID2Nick($UID) {
+	if ($UID > 0)
+		$SQL = "SELECT Nick FROM `User` WHERE UID='$UID'";
+	else
+		$SQL = "SELECT Name FROM `Groups` WHERE UID='$UID'";
+
+	$Erg = sql_select($SQL);
+
+	if (count($Erg) > 0) {
+		if ($UID > 0)
+			return $Erg[0]['Nick'];
+		else
+			return "Group-" . $Erg[0]['Name'];
+	} else {
+		if ($UID == -1)
+			return "Guest";
+		else
+			return "UserID $UID not found";
+	}
+}
+
+function TID2Type($TID) {
+	global $con;
+
+	$SQL = "SELECT Name FROM `EngelType` WHERE TID='$TID'";
+	$Erg = mysql_query($SQL, $con);
+
+	if (mysql_num_rows($Erg))
+		return mysql_result($Erg, 0);
+	else
+		return "";
+}
+
+function ReplaceSmilies($neueckig) {
+	global $url, $ENGEL_ROOT;
+
+	$neueckig = str_replace(";o))", "<img src=\"pic/smiles/icon_redface.gif\">", $neueckig);
+	$neueckig = str_replace(":-))", "<img src=\"pic/smiles/icon_redface.gif\">", $neueckig);
+	$neueckig = str_replace(";o)", "<img src=\"pic/smiles/icon_wind.gif\">", $neueckig);
+	$neueckig = str_replace(":)", "<img src=\"pic/smiles/icon_smile.gif\">", $neueckig);
+	$neueckig = str_replace(":-)", "<img src=\"pic/smiles/icon_smile.gif\">", $neueckig);
+	$neueckig = str_replace(":(", "<img src=\"pic/smiles/icon_sad.gif\">", $neueckig);
+	$neueckig = str_replace(":-(", "<img src=\"pic/smiles/icon_sad.gif\">", $neueckig);
+	$neueckig = str_replace(":o(", "<img src=\"pic/smiles/icon_sad.gif\">", $neueckig);
+	$neueckig = str_replace(":o)", "<img src=\"pic/smiles/icon_lol.gif\">", $neueckig);
+	$neueckig = str_replace(";o(", "<img src=\"pic/smiles/icon_cry.gif\">", $neueckig);
+	$neueckig = str_replace(";(", "<img src=\"pic/smiles/icon_cry.gif\">", $neueckig);
+	$neueckig = str_replace(";-(", "<img src=\"pic/smiles/icon_cry.gif\">", $neueckig);
+	$neueckig = str_replace("8)", "<img src=\"pic/smiles/icon_rolleyes.gif\">", $neueckig);
+	$neueckig = str_replace("8o)", "<img src=\"pic/smiles/icon_rolleyes.gif\">", $neueckig);
+	$neueckig = str_replace(":P", "<img src=\"pic/smiles/icon_evil.gif\">", $neueckig);
+	$neueckig = str_replace(":-P", "<img src=\"pic/smiles/icon_evil.gif\">", $neueckig);
+	$neueckig = str_replace(":oP", "<img src=\"pic/smiles/icon_evil.gif\">", $neueckig);
+	$neueckig = str_replace(";P", "<img src=\"pic/smiles/icon_mad.gif\">", $neueckig);
+	$neueckig = str_replace(";oP", "<img src=\"pic/smiles/icon_mad.gif\">", $neueckig);
+	$neueckig = str_replace("?)", "<img src=\"pic/smiles/icon_question.gif\">", $neueckig);
+
+	return $neueckig;
+}
+
+function GetPicturShow($UID) {
+	global $con;
+
+	$SQL = "SELECT `show` FROM `UserPicture` WHERE `UID`='$UID'";
+	$res = mysql_query($SQL, $con);
+
+	if (mysql_num_rows($res) == 1)
+		return mysql_result($res, 0, 0);
+	else
+		return "";
+}
+
+function displayPictur($UID, $height = "30") {
+	global $url, $ENGEL_ROOT;
+
+	if ($height > 0)
+		return ("<img src=\"" . $url . $ENGEL_ROOT . "ShowUserPicture.php?UID=$UID\" height=\"$height\" alt=\"picture of USER$UID\" class=\"photo\">");
+	else
+		return ("<img src=\"" . $url . $ENGEL_ROOT . "ShowUserPicture.php?UID=$UID\" alt=\"picture of USER$UID\">");
+}
+
+function displayavatar($UID, $height = "30") {
+	global $con, $url, $ENGEL_ROOT;
+
+	if (GetPicturShow($UID) == 'Y')
+		return "&nbsp;" . displayPictur($UID, $height);
+
+	// show avator
+	$asql = "select * from User where UID = $UID";
+	$aerg = mysql_query($asql, $con);
+
+	if (mysql_num_rows($aerg))
+		if (mysql_result($aerg, 0, "Avatar") > 0)
+			return ("&nbsp;<img src=\"" . $url . $ENGEL_ROOT . "pic/avatar/avatar" . mysql_result($aerg, 0, "Avatar") . ".gif\">");
+}
+
+function UIDgekommen($UID) {
+	global $con;
+
+	$SQL = "SELECT `Gekommen` FROM `User` WHERE UID='$UID'";
+	$Erg = mysql_query($SQL, $con);
+
+	if (mysql_num_rows($Erg))
+		return mysql_result($Erg, 0);
+	else
+		return "0";
+}
+?>
-- 
cgit v1.2.3-54-g00ecf