<?
session_start();

require("tenyoksforum.conf.php");

$db = mysql_connect("$dbserver", "$dbuser", "$dbpass"); 
mysql_select_db("$dbbase",$db);

if ($cat == 'post' and $titre and $message and $auteur and $email)
 {if (verif_ip("$ip", "$chaine_ip"))
   {$titre     = htmlspecialchars($titre);
    $message   = htmlspecialchars($message);
    $auteur    = htmlspecialchars($auteur);
    $email     = htmlspecialchars($email);
    $avatar    = htmlspecialchars($avatar);
    $titre     = addslashes($titre);
    $message   = addslashes($message);
    $auteur    = addslashes($auteur);
    $email     = addslashes($email);
    $avatar    = addslashes($avatar);
    $date_post = date("Y-m-d H:i:s");
    setcookie("tenyoksforum_auteur","$auteur",time()+86400);
    setcookie("tenyoksforum_email","$email",time()+86400);
    setcookie("tenyoksforum_avatar","$avatar",time()+86400);
    if ($reponse == '') {$reponse = "non";} else {$reponse;}
    if (!$id_post) {$id_post = "0";} else {}
    $sql = "INSERT INTO `tenyoksforum_post` (`id_post` , `titre` , `message` , `auteur` , `email` , `date` , `date2` , `avatar` , `vus` , `id_forum` , `reponse` , `ip` ) VALUES('$id_post','$titre','$message','$auteur','$email','$date_post','$date_post','$avatar','0','$id_forum','$reponse', '$ip')"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
    $sql = "UPDATE tenyoksforum_post SET date2='$date_post' where id_forum=$id_forum and id_post=0 and id=$id_post"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
    envoi_mail($id_forum, $id_post, $pg, $titre_site, $adresse, $email, $email_administrateur, $nom_de_page);
    $total = mini_retour($id_forum, $id_post, $pp, "");
    header("Location: $adresse/$nom_de_page?cat=reponse&id_forum=$id_forum&id_post=$id_post&pg=$total#bas");
   }
  else
   {}
 }
elseif ($cat == admin)
 {if ($range == post and $_SESSION[login] == $login_admin)
   {$titre     = htmlspecialchars($titre);
    $message   = htmlspecialchars($message);
    $auteur    = htmlspecialchars($auteur);
    $email     = htmlspecialchars($email);
    $avatar    = htmlspecialchars($avatar);
    $titre     = addslashes($titre);
    $message   = addslashes($message);
    $auteur    = addslashes($auteur);
    $email     = addslashes($email);
    $avatar    = addslashes($avatar);
    if ($reponse == '') {$reponse = "non";} else {$reponse;}
    $sql = "UPDATE tenyoksforum_post SET auteur='$auteur', email='$email', titre='$titre', message='$message', avatar='$avatar', reponse='$reponse' where id=$id"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
    $req_scroll_id = mysql_query("SELECT id FROM tenyoksforum_post where id_forum=$id_forum and id_post=$id_post");
    $res_scroll_id = mysql_numrows($req_scroll_id);
    while ($i < $res_scroll_id and $scroll_id != $id)
     {$scroll_id = mysql_result($req_scroll_id,$i,"id");
      $i++;
     }
    $i++;
    while ($j < $i)
     {$total++; $j=$j+$pp;
     }
    header("Location: $adresse/$nom_de_page?cat=reponse&id_forum=$id_forum&id_post=$id_post&pg=$total#$id");
   }
  elseif ($t == supprimer and $_SESSION[login] == $login_admin)
   {$sql = "delete from tenyoksforum_post where id=$id"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
    $total = mini_retour($id_forum, $id_post, $pp, "");
    if ($total > $pg) {} else {$pg=$total;}
    header("Location: $adresse/$nom_de_page?cat=reponse&id_forum=$id_forum&id_post=$id_post&pg=$pg#bas");
   }
  elseif ($login and $password)
   {$login    = trim($_POST['login']);
    $password = trim($_POST['password']);
    if ($login == $login_admin && $password == $password_admin)
     {$login = "$login_admin";
      session_register("login");
      header("Location: $adresse/$nom_de_page?id_forum=0");
     }
    else
     {header("Location: $adresse/$nom_de_page?cat=admin");}
   }
  else
   {}
 }
else {}
   

include "header.php";

echo "<br><center>";

if (!$pg) {$pg="1";} else {}
if (!$id_forum) {$id_forum="0";} else {}

echo "

<! ------ arborescence ------><table cellpadding=2 cellspacing=0 border=0 width=$lg_forum><tr><td align=left><font class=t1><a href=\"$nom_de_page?cat=post&id_forum=$id_forum\"><font class=gt><font color=$color_lien>Ajouter un message</font></font></a> | <a href=\"$nom_de_page?id_forum=$id_forum\"><font class=gt><font color=$color_lien>Index</font></font></a> > "; remplace_id_post($id_forum, $id_post, $color_lien, $nom_de_page); if (($cat == post or $cat == reponse) and $id_post) {echo " > <a href=\"$nom_de_page?cat=post&id_forum=$id_forum&id_post=$id_post\"><font class=gt><font color=$color_lien>Répondre</font></font></a>";} else {} echo "</td></tr></table><! ------ arborescence ------>

<br>

<table cellpadding=0 cellspacing=1 border=0 bgcolor=$cl1 width=$lg_forum>
 <tr>
  <td align=center>
<! --------- forum --------->
<table cellpadding=0 cellspacing=0 border=0 width=$lg_forum bgcolor=$cl2>
 <tr>
  <td align=center bgcolor=$cl2>
   <table cellpadding=2 cellspacing=1 border=0 width=100%>
           
<! ------ milieu ------>";

if ($cat == admin)
 {echo "
   <form action=$nom_de_page?cat=admin method=post>
    <tr><td align=center bgcolor=$cl3 colspan=2 class=tn>&nbsp;<b>Zone membre</td></tr>
    <tr><td align=left bgcolor=$cl4_1 class=t1><b>Login: </td><td align=left bgcolor=$cl4_2><input type=text name=login size=25 class=form></td></tr>
    <tr><td align=left bgcolor=$cl5_1 class=t1><b>Mot de passe: </td><td align=left bgcolor=$cl5_2><input type=password name=password size=25 class=form></td></tr>
    <tr><td align=center bgcolor=$cl4_1 colspan=2><input type=submit value=\"Envoyer\" name=admin class=form2></td></tr>
   </form>
  ";
 }
elseif ($cat == reponse)
 {$sql = "UPDATE tenyoksforum_post SET vus=vus+1 where id=$id_post"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
  $req_forum_reponse = mysql_query("SELECT id, titre, message, auteur, email, date, avatar FROM tenyoksforum_post where id=$id_post or id_post=$id_post order by date");
  $res_forum_reponse = mysql_numrows($req_forum_reponse);
  echo "<tr height=20><td align=left bgcolor=$cl3 width=135 class=tn><b>Auteur</td><td align=left bgcolor=$cl3 class=tn><b>Message</td></tr>";
  reponse($id_post, $req_forum_reponse, $res_forum_reponse, $pg, $pp, "$_SESSION[login]", $login_admin, $id_forum, $nom_de_page, $color_lien, $lg_avatar, $cl4_1, $cl4_2, $cl5_1, $cl5_2, $lg_txt, $pg);
 }
elseif ($cat == post)
 {if ($t == off)
   {$sql = "UPDATE tenyoksforum_post SET reponse='non' where id=$id"; mysql_query($sql) or die('Erreur SQL !'.$sql.'<br>'.mysql_error());
    echo "<tr><td align=center bgcolor=$cl3>&nbsp;<font class=tn><b>Vous ne surveillez plus ce sujet !</td></tr>";
   }
  elseif ($t == 'modifier')
   {$req_forum_id = mysql_query("SELECT * FROM tenyoksforum_post where id=$id");
    $res_forum_id = mysql_numrows($req_forum_id);
    $auteur      = mysql_result($req_forum_id,0,"auteur");
    $email       = mysql_result($req_forum_id,0,"email");
    $titre       = mysql_result($req_forum_id,0,"titre");
    $message     = mysql_result($req_forum_id,0,"message");
    $avatar      = mysql_result($req_forum_id,0,"avatar");
    $date        = mysql_result($req_forum_id,0,"date");
    $id          = mysql_result($req_forum_id,0,"id");
    $id_forum    = mysql_result($req_forum_id,0,"id_forum");
    form("admin&range=post", $auteur, $email, $titre, $message, $avatar, $date, $id, $id_forum, $id_post, $cl4_1, $cl4_2, $cl5_1, $cl5_2, $cl3, "$REMOTE_ADDR", $nom_de_page);
   }
  else
   {if (verif_ip("$REMOTE_ADDR", "$chaine_ip")) {} else {echo "<font class=gt><br><b>Désolé vous avez été banni du forum pour le moment.<br>Si c'est une erreur, veuillez nous-contacter.</b></font>";}
    if ($id_post)
     {$req_forum_reponse = mysql_query("SELECT id, titre, message, auteur, email, date, avatar FROM tenyoksforum_post where id='$id_post' or id_post='$id_post' order by id desc limit 0,1");
      $res_forum_reponse = mysql_numrows($req_forum_reponse);
      echo "<tr height=20><td align=left bgcolor=$cl3 width=135 class=tn><b>Auteur</td><td align=left bgcolor=$cl3 class=tn><b>Dernier Message</td></tr>";
      reponse($id_post, $req_forum_reponse, $res_forum_reponse, $pg, $pp, "$_SESSION[login]", $login_admin, $id_forum, $nom_de_page, $color_lien, $lg_avatar, $cl4_1, $cl4_2, $cl5_1, $cl5_2, $lg_txt, $pg);
      echo "<tr><td><br></td></tr>";
     }
    else {}
    form("post", "$_COOKIE[tenyoksforum_auteur]", "$_COOKIE[tenyoksforum_email]", "", "", "$_COOKIE[tenyoksforum_avatar]", "", $id, $id_forum, $id_post, $cl4_1, $cl4_2, $cl5_1, $cl5_2, $cl3, "$REMOTE_ADDR", $nom_de_page);
   }
 }
else
 {echo "<tr height=20><td align=left bgcolor=$cl3 class=tn><b>Sujet</td><td align=center bgcolor=$cl3 width=20 class=tn><b>Nb</td><td align=center bgcolor=$cl3 class=tn><b>Auteur</td><td align=center bgcolor=$cl3 width=20 class=tn><b>Vus</td><td align=center bgcolor=$cl3 width=120 class=tn><b>Dernier message</td></tr>";
  $req_forum_post = mysql_query("SELECT * FROM tenyoksforum_post where id_forum='$id_forum' and id_post=0 order by date2 desc");
  $res_forum_post = mysql_numrows($req_forum_post);
  if ($res_forum_post != 0) {} else {echo "<tr><td colspan=5 align=center class=t1><i>Pas de sujet ici !</i></font></td></tr>";}
  $cl=0;
  $p1=$pg*$pp;
  $p1=$p1-$pp;
  $p2=$pg*$pp;
  if ($p2 > $res_forum_post) {$p2=$res_forum_post;} else {$p2;}
  while ($p1 < $p2)
   {$id_post     = mysql_result($req_forum_post,$p1,"id");
    $id_forum    = mysql_result($req_forum_post,$p1,"id_forum");
    $req_dernier = mysql_query("SELECT date, auteur, email FROM tenyoksforum_post where id_forum=$id_forum and id_post=$id_post order by date desc");
    $res_dernier = mysql_numrows($req_dernier);
    if ($res_dernier > 0)
     {$auteur_der  = mysql_result($req_dernier,0,"auteur");
      $auteur_der  = stripslashes($auteur_der);
      $auteur_der  = resume($auteur_der, $lg_txt);
      $email_der   = mysql_result($req_dernier,0,"email");
      $email_der   = stripslashes($email_der);
      $date        = mysql_result($req_dernier,0,"date");
      $date        = transform_date($date);
     }
    else
     {$auteur_der  = mysql_result($req_forum_post,$p1,"auteur");
      $auteur_der  = stripslashes($auteur_der);
      $auteur_der  = resume($auteur_der, $lg_txt);
      $email_der   = mysql_result($req_forum_post,$p1,"email");
      $email_der   = stripslashes($email_der);
      $date        = mysql_result($req_forum_post,$p1,"date2");
      $date        = transform_date($date);
     }
    $req_nb_post = mysql_query("SELECT count(*) as nb_post FROM tenyoksforum_post where id_forum=$id_forum and id_post=$id_post order by date desc");
    $nb_post     = mysql_result($req_nb_post,0,"nb_post");
    $titre       = mysql_result($req_forum_post,$p1,"titre");
    $titre       = stripslashes($titre);
    $vus         = mysql_result($req_forum_post,$p1,"vus");
    $auteur_post = mysql_result($req_forum_post,$p1,"auteur");
    $auteur_post = stripslashes($auteur_post);
    $auteur_post = resume($auteur_post, $lg_txt);
    $email_post  = mysql_result($req_forum_post,$p1,"email");
    $email_post  = stripslashes($email_post);
    if ($cl == 0) {$color1="$cl4_1"; $color2="$cl4_2"; $cl++;} else {$color1="$cl5_1"; $color2="$cl5_2"; $cl=0;}
    if ($email_post) {$auteur_post="<a href=\"mailto:$email_post\"><font color=$color_txt_1>$auteur_post</font></a>";} else {$auteur_post="$auteur_post";}
    if ($email_der) {$auteur_der="<a href=\"mailto:$email_der\"><font class=ta><font color=$color_txt_1>$auteur_der</font></font></a>";} else {$auteur_der="$auteur_der";}
    echo "
     <tr>
      <td align=left   bgcolor=$color1 onMouseOut=\"javascript:this.style.background='$color1'\" onMouseOver=\"javascript:this.style.background='$color_java'\" class=t1><a href=\"$nom_de_page?cat=reponse&id_forum=$id_forum&id_post=$id_post&pg=1\"><font color=$color_txt_1>$titre</font></a> ("; mini_page($nom_de_page,$id_forum,$id_post,$pp,$color_txt_1,$nb_post); echo ") </td>
      <td align=center bgcolor=$color2 onMouseOut=\"javascript:this.style.background='$color2'\" onMouseOver=\"javascript:this.style.background='$color_java'\" class=t1><font color=$color_txt_1>$nb_post</td>
      <td align=center bgcolor=$color1 onMouseOut=\"javascript:this.style.background='$color1'\" onMouseOver=\"javascript:this.style.background='$color_java'\" class=t1><font color=$color_txt_1>$auteur_post</td>
      <td align=center bgcolor=$color2 onMouseOut=\"javascript:this.style.background='$color2'\" onMouseOver=\"javascript:this.style.background='$color_java'\" class=t1><font color=$color_txt_1>$vus</td>
      <td align=center bgcolor=$color1 onMouseOut=\"javascript:this.style.background='$color1'\" onMouseOver=\"javascript:this.style.background='$color_java'\" class=t2><font color=$color_txt_1>$date<br>de $auteur_der</td>
     </tr>
    ";
    $p1++;
   }
  $id_post = "";
 }
 
echo "</table>
<! ------ milieu ------>
  </td>
 </tr>
</table>
<! --------- forum --------->
  </td>
 </tr>
</table>

<! ------ page ------>
<table cellpadding=0 cellspacing=0 border=0 width=$lg_forum>
<tr>
<td align=right>";

if ($cat == reponse)
 {$resultat  = "$res_forum_reponse";
  $lien_page = "?cat=reponse&id_forum=$id_forum&id_post=$id_post&pg=";
 }
else
 {$resultat  = "$res_forum_post";
  $lien_page = "$adresse/$nom_de_page"."?cat=sujet&id_forum=$id_forum&pg=";
 }

echo "<table cellpadding=0 cellspacing=0 border=0 width=100%>";
if ($resultat > 0)
 {$i=0;
  while ($i < $resultat)
   {$total=$total+1;
    $i=$i+$pp;}
  if ($pg < 4) {$depart=1; $arrivee=5;}
  else
   {if (($total-$pg) < 2)
     {$depart=$pg-3; $arrivee=$pg+1;}
    else
     {$depart=$pg-2; $arrivee=$pg+2;}
   }
  if ($pg > 1) {$p=$pg-1;} else {$p=$pg;}
  echo "<tr><td align=left><a href=\"$lien_page"."$p\"><font class=gt><font color=$color_lien><u><b>Précedente</b></u></font></font></a></td><td align=center class=gt>";
  $i=1;
  while ($j < $resultat)
   {if ($i != $pg) {$k="<u>$i</u>";} else {$k="$i";}
    if ($i >= $depart and $i <= $arrivee) {echo " <a href=\"$lien_page"."$i\"><font class=gt><font color=$color_lien><u><b>$k</b></u></font></font></a> ";} else {}
    $j=$j+$pp;
    $i++;
   }
  $i=$i-1;
  echo "<font class=gt>... sur <a href=\"$lien_page"."$i\"><font class=gt><font color=$color_lien><u><b>$k</b></u></font></font></a> ";
  if ($pg < $i) {$p=$pg+1;} else {$p=$i;}
  echo "</td><td align=right><a href=\"$lien_page"."$p\"><font class=gt><font color=$color_lien><u><b>Suivante</b></u></font></font></a></td></tr>";
 }
else {}
echo "</table><br>";

echo"
</td></tr>
</table>
<! ------ page ------>

<! ------ arborescence ------><table cellpadding=2 cellspacing=0 border=0 width=$lg_forum><tr><td align=left><font class=t1><a href=\"$nom_de_page?cat=post&id_forum=$id_forum\"><font class=gt><font color=$color_lien>Ajouter un message</font></font></a> | <a href=\"$nom_de_page?id_forum=$id_forum\"><font class=gt><font color=$color_lien>Index</font></font></a> > "; remplace_id_post($id_forum, $id_post, $color_lien, $nom_de_page); if (($cat == post or $cat == reponse) and $id_post) {echo " > <a href=\"$nom_de_page?cat=post&id_forum=$id_forum&id_post=$id_post\"><font class=gt><font color=$color_lien>Répondre</font></font></a>";} else {} echo "</td></tr></table><! ------ arborescence ------>

<a href=\"http://www.siteduzero.com\" target=blank><font class=gt>TEnyoks Forum v1.0</font></center></a><br>

";

mysql_close($db);

include "footer.php";

?>

</body>
</html>
 

  else
   {}
 }
else {}