<?
session_start();
###########################загрузка
require("require/smarty.php"); #подрубаем smarty
require("require/function.php"); #функции
require("require/db_config.php"); #подключение к базе данных
################################


$ip = $_SERVER['REMOTE_ADDR'];
$login = bdInsert($_POST['login']);
$password = bdInsert($_POST['password']);
$q = 1;
if ($_POST['autoriz'] == "go"){

	$rowQueryAutoriz = "select * from $addressList";
	$resQueryAutoriz = mssql_query($rowQueryAutoriz) or die("no ROWS");
	$rowCount = mssql_num_rows($resQueryAutoriz);

	while ($row = mssql_fetch_array($resQueryAutoriz)){
		if ($row['MAILBOX'] != null and $row['PASSWORD'] != null){
			if (validMail($login) and validString($password)){
				if (($login == $row['MAILBOX']) and ($password == $row['PASSWORD'])){
					$uid = session_id();
					$idmail = $row['ADDRESS_INDEX'];
					$mailbox = $row['MAILBOX'];
					$whois = $row['WHO'];
					break;
				}else{
					if ($q == $rowCount){
						$error = boardErrors(5);
					}
				}
			}else{
				$error = boardErrors(8);
			}
		}
	$q++;
	}
}

if (!$whois) $whois = $_POST['whoispeople'];
if (!$uid) $uid = $_POST['uid'];

if ($_POST['uid'] == session_id() and $_POST['editmail'] == "go"){
	if (validMail($_POST['newmail'])){
		
		$mailBoxSend = $_POST['newmail'];
		$idmail = intval($_POST['idmailsend']);
		$queryMail = "update $addressList set MAILBOX = \"$mailBoxSend\" where ADDRESS_INDEX = '$idmail';";
		mssql_query($queryMail) or die(boardErrors(9));
		
		$rowQuery = "select MAILBOX from $addressList where ADDRESS_INDEX = '$idmail'";
		$resQuery = mssql_query($rowQuery) or die("no ROWS");
		$rowCount = mssql_num_rows($resQuery);
		while ($row = mssql_fetch_array($resQuery)){
			$mailbox = $row['MAILBOX'];
		}
	}
}

if (!$mailbox) $mailbox = $_POST['mailbox'];

if ($_POST['uid'] == session_id() and $_POST['edit'] == "go"){
	$idmail = intval($_POST['idmailsend']);

	$idgroupsend[] = $_POST['checkbox'];
	$z = 0;

		$deleteAllRowsMail = "delete from $idadressgroup where ADDRESS_INDEX = '$idmail'";
		@mssql_query($deleteAllRowsMail) or die(boardErrors(7));

	for ($i = 0; $i <= (count($_POST['checkbox']) - 1); $i++){
		$idgroupvar = $idgroupsend[0][$z];
		$idgroupvar = intval($idgroupvar);
		
		$insQueryGroup = "insert into $idadressgroup (GROUP_INDEX, ADDRESS_INDEX) values ($idgroupvar, $idmail);";
		@mssql_query($insQueryGroup) or die(boardErrors(7));
		$z++;
	}
}

if ($uid == session_id() or $_POST['uid'] == session_id()){

	$rowQueryGroup = "select * from $groupList 
						where WEB = 1 
						and WHO = '$whois' 
						and PRKEY in (select PR_KEY from tbl_partners 
						where PR_FULLNAME = 'Агентство ''Путешествуй!''')";
	
	$resQueryGroup = mssql_query($rowQueryGroup) or die("Ошибка");
	$numRowQueryGroup = mssql_num_rows($resQueryGroup);
		while ($rowgroup = mssql_fetch_array($resQueryGroup)){
			$idGroup[] = $rowgroup['GROUP_INDEX'];
			$nameGroup[] = $rowgroup['GROUP_NAME'];
		}
	
	$rowQueryCheck = "select * from $idadressgroup where ADDRESS_INDEX = '$idmail'";
	$resQueryCheck = mssql_query($rowQueryCheck) or die("Ошибка2");
	$numQueryCheck = mssql_num_rows($resQueryCheck);
		while ($rowcheck = mssql_fetch_array($resQueryCheck)){
			$idGroupCheck[] = $rowcheck['GROUP_INDEX'];
		}
	
	$idGroupCheck = array_intersect($idGroup, $idGroupCheck);
	
	#$h = 0;
	#for ($y = 1; $y <= count($idGroup); $y++){
	#	if (in_array($idGroupCheck[$h], $idGroup)){
	#		$checkedForm[] = true;
	#	}else{
	#		$checkedForm[] = false;
	#	}
	#$h++;
	#}
	
}


if ($_POST['edit'] == "go" and $_POST['uid'] == session_id()){

$rowSaveSend[] = $_POST['checkbox'];

	for ($i = 0; $i <= count($_POST['checkbox']); $i++){
			$oneIdGroup = $rowSaveSend[0][$i];
			$sqlMailBox = "select GROUP_NAME from $groupList where GROUP_INDEX = '$oneIdGroup'";
			$resSqlMailBox = mssql_query($sqlMailBox) or die("2");
			while ($rownamegroup = mssql_fetch_array($resSqlMailBox)){
				$MailGroup[] = $rownamegroup['GROUP_NAME'];
			}
	}
	$queryForPass = "select PASSWORD from $addressList where ADDRESS_INDEX = '$idmail'";
	$resQueryPass = mssql_query($queryForPass) or die("Ошибка");
	
	while ($rowpassword = mssql_fetch_array($resQueryPass)){
		$mailpassword = $rowpassword['PASSWORD'];
	}
	

if ($numQueryCheck > 0){
		$message = "
					<html> 
					    <head> 
					        <title>Здравствуйте</title> 
					    </head> 
					    <body> 
					        <p>Вы получили письмо сформированное автоматически, пожалуйста не отвечайте на него.</p>
					        <p>Изменения были сделаны с IP адреса: <b>$ip</b></p>
							<p>
							 Вы подписались на следующие рассылки:<br>";
	for ($i = 0; $i <= count($MailGroup); $i++){
	$message .= $MailGroup[$i]."<br>";
	}
	$message .= " 			</p> 
							<p>Напоминаем ваш пароль: $mailpassword</p>
					    </body>
					</html>";
	}else{
	$message = "
					<html> 
					    <head> 
					        <title>Здравствуйте</title> 
					    </head> 
					    <body> 
					        <p>Вы получили письмо сформированное автоматически, пожалуйста не отвечайте на него.</p>
					        <p>Изменения были сделаны с IP адреса: <b>$ip</b></p>
							<p>
							 Вы удалили все рассылки.
							 </p> 
							<p>Напоминаем ваш пароль: $mailpassword</p>
					    </body>
					</html>";
	}
	
	$headers  = "Content-type: text/html; charset=windows-1251 \r\n";
	$headers .= "From: <$from> \r\n";

	if (mail($_POST['mailbox'], $subject, $message, $headers)) {
		$sendMail = 1;
	} else {
		$error =  boardErrors(3);
	}#mail
}

$smarty->assign('error', $error);
$smarty->assign('id', session_id());
$smarty->assign('uid', "$uid");
$smarty->assign('idmail', $idmail);

$smarty->assign('idGroupCheck', $idGroupCheck);

$smarty->assign('mailbox', $mailbox);
$smarty->assign('numRowQueryGroup', $numRowQueryGroup);

$smarty->assign('idGroup', $idGroup);
$smarty->assign('nameGroup', $nameGroup);

$smarty->assign('whois', $whois);
#отладочная консоль
$smarty->debugging = false;
$smarty->display('cabinet_seller.tpl');
mssql_close();
?>