+ правки по пользователям (admin, Veronika, Natalia)

andryeyev
1 parent 6ed0a6ee
Showing 2 changed files with 955 additions and 963 deletions Show diff stats
account/admin/orders.php
templates/admin/admin.tpl
@@ -10,81 +10,81 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
 // ============ Îáðàáîòêà ===============
 // ======================================
 // ======================================
-    
+
     if ($_GET['test'] == "1")
-    { 
+    {
         // eMailing('order-new',"5172", "11181");
     }
-    
+
     if (isset ($_GET['orderID']) && isset ($_GET['paid']))
     {
         $sql = sprintf ("UPDATE catalogs_orders SET paid=%d WHERE id=%d", $_GET['paid'], $_GET['orderID']);
-        
+
         mysql_query ($sql);
     }
     elseif (isset ($_GET['label']))
-    { 
+    {
         $sql = sprintf ("UPDATE catalogs_orders SET label=%d WHERE id=%d", $_GET['label'], $_GET['orderID']);
-        
+
         mysql_query ($sql);
-        
+
         GoBack (1);
     }
-    
+
 // =================
 // ==== status =====
 // =================
-     
+
     if ((isset ($_POST['action']) && $_POST['action'] == 'status') || trim ($_POST['status']) != '')
     {
-        
+
         $sql = "UPDATE catalogs_orders SET status='" . $_POST['status'] . "' WHERE `id`='" . $_POST['order_id'] . "'";
         $result = mysql_query ($sql) or die (mysql_error ());
         // exit;
     }
-    
+
 // ====================
 // ===== order ========
 // ====================
-    
+
     // ==============
     // ==== edit ====
     // ==============
-    
+
     if (isset ($_POST['sms_send']))
     {
         $sql = "insert into sms_history(order_id,mktime,text,user) values('" . $_POST['order_id'] . "','" . mktime () . "','" . $_POST['sms_msg'] . "','" . $_SESSION['admin']['login'] . "')";
         mysql_query ($sql);
-        
+
         foreach ($_POST['sms_tel'] as $tel)
         {
             sendSMS ($tel, $_POST['sms_msg']);
         }
-    
+
         GoBack (1);
     }
     elseif (isset ($_POST['send']) && $_POST['send'] == 'edit-order')
     {
- 
+
         $error = '';
         $error[] = ValidFormData ($_POST['user']['email'], 'email', 'email');
         $error[] = ValidFormData ($_POST['user']['city'], 'ãîðîä', 'require');
         $error[] = ValidFormData ($_POST['user']['address'], 'àäðåñ', 'require');
         $error[] = ValidFormData ($_POST['user']['tel'], 'ìîá.òåëåôîí', 'mobile');
         $error[] = ValidFormData ($_POST['user']['username'], 'èìÿ', 'require');
-        
+
         $alert = implode ('\r\n', $error);
-        
+
         $mass = array_filter ($error);
         if (empty ($mass))
         {
-            
+
             $summary = 0;
-            
+
             // Ïðîâåðÿåì åñòü ëè óæå â çàêàçàõ
             $sql = "SELECT *, product_id as mod_id from catalogs_orders_products WHERE order_id='" . $_POST['order_id'] . "'";
             $result = mysql_query ($sql) or die (mysql_error ());
-            
+
             if (mysql_affected_rows () != 0)
             {
                 while ($item = mysql_fetch_assoc ($result))
@@ -92,20 +92,20 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                     $ordered[] = $item['mod_id'];
                 }
             }
-            
+
             // ===========================================
             // ======= Ïðîâåðÿåì íà èçìåíåíèå ===========
             // ===========================================
-            
+
             $ChangesOfOrder = ChangesOfMass ($_POST['item']['mod_id'], $ordered);
-            
+
             // ==============
             // ==== same ====
             // ==============
-            
+
             if (isset ($ChangesOfOrder['same']))
             {
-                
+
                 $mass = array_filter ($ChangesOfOrder['same']);
                 if (! empty ($mass))
                 {
@@ -114,23 +114,23 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                         // Óçíàåì key(èíäåêñ) â ìàññèâå
                         $i = array_keys ($_POST['item']['mod_id'], $value);
                         $i = $i[0];
-                        
+
                         // Îáíîâëÿåì êîëè÷åñòâî
                         // print_r($_POST);exit;
                         $sql2 = "UPDATE catalogs_orders_products SET `count`='" . $_POST['item']['quant'][$i] . "',`reservation`='" . $_POST['item']['reservation'][$i] . "',`status`='" . $_POST['item']['status'][$i] . "',`vozvrat`='" . $_POST['item']['vozvrat'][$i] . "' WHERE order_id='" . $_POST['order_id'] . "' AND product_id='" . $_POST['item']['mod_id'][$i] . "'";
                         // print "<br>";
                         $result2 = mysql_query ($sql2) or die (mysql_error ());
-                        
+
                         // Ñóììà âñåãî çàêàçà
                         $summary = $summary + ($_POST['item']['quant'][$i] * $_POST['item']['price'][$i]);
                     }
                 }
             }
-                    
+
             // =============
             // ==== add ====
             // =============
-            
+
             if (isset ($ChangesOfOrder['add']))
             {
                 $mass = array_filter ($ChangesOfOrder['add']);
@@ -141,7 +141,7 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                         // Óçíàåì key(èíäåêñ) â ìàññèâå
                         $i = array_keys ($_POST['item']['mod_id'], $value);
                         $i = $i[0];
-                        
+
                         $r = mysql_query ("select count(*) from catalogs_orders_products where order_id='{$_POST['order_id']}' and product_id='{$_POST['item']['mod_id'][$i]}'");
                         $c = mysql_result ($r, 0);
                         if (! $c)
@@ -149,18 +149,18 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                             // Äîáàâëÿåì òîâàðû
                             $sql2 = sprintf ("INSERT INTO catalogs_orders_products (order_id,product_id,code,product_cine_id,count,reservation) VALUES (%s,%s,%s,%s,%s,%s)", GetSQLValueString ($_POST['order_id'], "text"), GetSQLValueString ($_POST['item']['mod_id'][$i], "text"), GetSQLValueString ($_POST['item']['code'][$i], "text"), GetSQLValueString ($_POST['item']['price'][$i], "text"), GetSQLValueString ($_POST['item']['quant'][$i], "text"), GetSQLValueString ($_POST['item']['reservation'][$i], "text"));
                             $result2 = mysql_query ($sql2) or die (mysql_error ());
-                            
+
                             // Ñóììà âñåãî çàêàçà
                             $summary = $summary + ($_POST['item']['quant'][$i] * $_POST['item']['price'][$i]);
                         }
                     }
                 }
             }
-            
+
             // ==========
             // == del ===
             // ==========
-            
+
             /*
              * if (isset($ChangesOfOrder['del'])) {
              *
@@ -176,19 +176,19 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
              * }
              * }
              */
-            
+
             // ===========
             // == ÂÑÅÃÎ ==
             // ===========
-            
+
             if (isset ($summary))
             {
                 // if(trim($_POST['label'])) $_POST['label'] = 1;
                 // print_r($_POST);
                 // Îáíîâëÿåì äàííûå çàêàçà
                 $sql2 = sprintf ("
-                    UPDATE catalogs_orders 
-                    SET 
+                    UPDATE catalogs_orders
+                    SET
                         cards=%s,
                         insurance=%s,
                         warehouse=%s,
@@ -211,42 +211,42 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                         dedline=%s,
                         sumn=%s,
                         sends=%s,
-                        work_user=%s 
-                    WHERE 
-                        id='" . $_POST['order_id'] . "'", 
-                        GetSQLValueString ($_POST['user']['cards'], "text"), 
-                        GetSQLValueString ($_POST['user']['insurance'], "text"), 
-                        GetSQLValueString ($_POST['user']['warehouse'], "text"), 
-                        GetSQLValueString ($_POST['user']['nakladnaya'], "text"), 
-                        GetSQLValueString ($_POST['cost_delivery'], "text"), 
-                        $_POST['paid'], 
-                        $_POST['cause'], 
-                        $_POST['label'], 
-                        $_POST['user']['delivery'], 
-                        GetSQLValueString ($_POST['user']['declaration'], "text"), 
-                        GetSQLValueString ($_POST['user']['payment'], "text"), 
-                        GetSQLValueString ($_POST['user']['city'], "text"), 
-                        GetSQLValueString ($_POST['user']['address'], "text"), 
-                        GetSQLValueString ($_POST['user']['comment'], "text"), 
-                        GetSQLValueString ($_POST['user']['mcomment'], "text"), 
-                        GetSQLValueString ($summary, "text"), 
-                        (int)$_POST['meneger'], 
-                        GetSQLValueString ($_POST['user']['check'], "text"), 
-                        GetSQLValueString ($_POST['user']['smst'], "text"), 
-                        GetSQLValueString ($_POST['user']['dedline'], "text"), 
-                        GetSQLValueString ($_POST['user']['sumn'], "text"), 
-                        GetSQLValueString ($_POST['user']['sends'], "text"), 
+                        work_user=%s
+                    WHERE
+                        id='" . $_POST['order_id'] . "'",
+                        GetSQLValueString ($_POST['user']['cards'], "text"),
+                        GetSQLValueString ($_POST['user']['insurance'], "text"),
+                        GetSQLValueString ($_POST['user']['warehouse'], "text"),
+                        GetSQLValueString ($_POST['user']['nakladnaya'], "text"),
+                        GetSQLValueString ($_POST['cost_delivery'], "text"),
+                        $_POST['paid'],
+                        $_POST['cause'],
+                        $_POST['label'],
+                        $_POST['user']['delivery'],
+                        GetSQLValueString ($_POST['user']['declaration'], "text"),
+                        GetSQLValueString ($_POST['user']['payment'], "text"),
+                        GetSQLValueString ($_POST['user']['city'], "text"),
+                        GetSQLValueString ($_POST['user']['address'], "text"),
+                        GetSQLValueString ($_POST['user']['comment'], "text"),
+                        GetSQLValueString ($_POST['user']['mcomment'], "text"),
+                        GetSQLValueString ($summary, "text"),
+                        (int)$_POST['meneger'],
+                        GetSQLValueString ($_POST['user']['check'], "text"),
+                        GetSQLValueString ($_POST['user']['smst'], "text"),
+                        GetSQLValueString ($_POST['user']['dedline'], "text"),
+                        GetSQLValueString ($_POST['user']['sumn'], "text"),
+                        GetSQLValueString ($_POST['user']['sends'], "text"),
                         GetSQLValueString ('0', "text")
                 );
-                
+
                 $result2 = mysql_query ($sql2) or die (mysql_error ());
-                
+
                 eMailing ('xml', $_POST['user_id'], $_POST['order_id']);
-                
+
                 $sql = sprintf ("INSERT INTO catalogs_orders_git (order_id,user_id,cost_delivery,cards,insurance,warehouse,paid,label,delivery,declaration,payment,name,email,city,adress,phone,phonemob,comment,mcomment,mktime,total,sumn,sends,status,work_user) VALUES (%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,1,%s)", $_POST['order_id'], GetSQLValueString ($_POST['user']['id'], "text"), GetSQLValueString ($_POST['cost_delivery'], "text"), GetSQLValueString ($_POST['user']['cards'], "text"), GetSQLValueString ($_POST['user']['insurance'], "text"), GetSQLValueString ($_POST['user']['warehouse'], "text"), GetSQLValueString ($_POST['paid'], "text"), GetSQLValueString ($_POST['label'], "text"), GetSQLValueString ($_POST['user']['delivery'], "text"), GetSQLValueString ($_POST['user']['declaration'], "text"), GetSQLValueString ($_POST['user']['payment'], "text"), GetSQLValueString ($_POST['user']['username'], "text"), GetSQLValueString ($_POST['user']['email'], "text"), GetSQLValueString ($_POST['user']['city'], "text"), GetSQLValueString ($_POST['user']['address'], "text"), GetSQLValueString ($_POST['user']['tel'], "text"), GetSQLValueString ($_POST['user']['tel2'], "text"), GetSQLValueString ($_POST['user']['comment'], "text"), GetSQLValueString ($_POST['user']['mcomment'], "text"), GetSQLValueString (mktime (), "text"), GetSQLValueString ($_POST['summary'], "text"), GetSQLValueString ($_POST['user']['sumn'], "text"), GetSQLValueString ($_POST['user']['sends'], "text"), $_SESSION['admin']['id']);
                 $resultg = mysql_query ($sql) or die (mysql_error ());
                 $id_order_git = mysql_insert_id ();
-                
+
                 for ($i = 0; $i <= count ($_POST['item']); $i ++)
                 {
                     if (! empty ($_POST['item']['mod_id'][$i]))
@@ -255,22 +255,22 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                         $result2 = mysql_query ($sql2) or die (mysql_error ());
                     }
                 }
-                
+
                 // header("location:/admin.php/orders/?page=".$_GET['page']);
             }
             else
             {
-                
+
                 // $sql2="DELETE FROM catalogs_orders WHERE id='".$_POST['order_id']."'";
                 // $result2 = mysql_query($sql2) or die(mysql_error());
             }
-            
+
             // GoBack(1);
             // echo"<script language=\"JavaScript\">document.location='/admin.php/orders/?page=".$_GET['page']."&n=1';</script>";
         }
         else
         {
-            
+
             echo "<script language=\"JavaScript\">alert('$alert')</script>";
         }
     }
@@ -279,32 +279,32 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
         if (! empty ($_GET['exit_order_id']))
         {
             $sql = sprintf ("UPDATE catalogs_orders SET work_user=0 WHERE id=%d", $_GET['exit_order_id']);
-            
+
             mysql_query ($sql);
         }
-        
+
         if (empty ($_SESSION['up']))
         {
             $_SESSION['up'] = 2;
         }
-        
+
         if (! empty ($_GET['order_ID']))
         {
             $sql = sprintf ("UPDATE catalogs_orders SET work_user=%d WHERE id=%d AND work_user=0", $_SESSION['admin']['id'], $_GET['order_ID']);
-            
+
             mysql_query ($sql);
         }
     }
-    
+
     // ==============
     // ==== add =====
     // ==============
-    
+
     if (isset ($_POST['send']) && $_POST['send'] == 'add-order')
-    { 
+    {
         // Ïðîâåðÿåì äûáèë ëè àäìèí
         $debil == false;
-        
+
         for ($i = 1; $i <= count ($_POST['item']); $i ++)
         {
             if (isset ($_POST['item']['mod_id'][$i]) && $_POST['item']['mod_id'][$i] == '')
@@ -312,36 +312,36 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                 $debil = true;
             }
         }
-        
+
         if ($debil == false)
         {
-            
+
             // $error='';
             // $error[] = ValidFormData($_POST['user']['email'],'email','email');
             // $error[] = ValidFormData($_POST['user']['city'],'ãîðîä','require');
             // $error[] = ValidFormData($_POST['user']['address'],'àäðåñ','require');
             // $error[] = ValidFormData($_POST['user']['tel'],'ìîá.òåëåôîí','mobile');
             // $error[] = ValidFormData($_POST['user']['username'],'èìÿ','require');
-            
+
             // $alert=implode('\r\n',$error);
-            
+
             // $mass=array_filter($error);
             // if (empty($mass)) {
-            
+
             // Ïðîâåðÿåì ñóùåñòâóåò ëè ïîëüçîâàòåëü
             // $sql="SELECT * FROM zlo_users WHERE email='".$_POST['user']['email']."' ";
             // $result = mysql_query($sql) or die(mysql_error());
             // if (mysql_affected_rows()!=0) {
-            
+
             // }
-            
+
             $time = mktime ();
             $date = date ('Y-m-d H:i:s', $time);
-            
+
             // Åñëè ñîçäàåì íîâîãî ïîëüçîâàòåëü
             if ($_POST['user']['user_id'] == '' || $_POST['user']['user_id'] == 0 || $_POST['user']['user_id'] == '0')
             {
-                
+
                 if (strpos ($_POST['user']['email'], "@user.com"))
                 {
                     $_POST['user']['group'] = 1;
@@ -350,25 +350,25 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                 {
                     $_POST['user']['group'] = 2;
                 }
-                
+
                 // Äîáàâëÿåì ïîëüçîâàòåëÿ
                 $pass = generate_password (6);
                 $sql = sprintf ("INSERT INTO zlo_users (pass, email, city, address, tel, registered, username, tel2, `group`) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s)", GetSQLValueString ($pass, "text"), GetSQLValueString ($_POST['user']['email'], "text"), GetSQLValueString ($_POST['user']['city'], "text"), GetSQLValueString ($_POST['user']['address'], "text"), GetSQLValueString ($_POST['user']['tel'], "text"), GetSQLValueString ($date, "text"), GetSQLValueString ($_POST['user']['username'], "text"), GetSQLValueString ($_POST['user']['tel2'], "text"), GetSQLValueString ($_POST['user']['group'], "int"));
                 $result = mysql_query ($sql) or die (mysql_error ());
-                
+
                 // Óçíàåì ID ïîëüçîâàòåëÿ
                 $sql = "SELECT id FROM zlo_users WHERE registered='$date' AND tel='" . $_POST['user']['tel'] . "'";
                 $result = mysql_query ($sql) or die (mysql_error ());
                 if (mysql_affected_rows () != 0)
                 {
                     $user = mysql_fetch_assoc ($result);
-                    
+
                     // Øëåì ïèñüìà
                     if ($user['group'] != 1)
                     {
                         eMailing ('reg', $user['id']);
                     }
-                    
+
                     $_POST['user']['user_id'] = $user['id'];
                 }
                 else
@@ -376,11 +376,11 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                     echo "íåò ïîëüçîâàòåëÿ";
                 }
             }
-            
+
             // Äîáàâëÿåì çàêàç
             $sql = sprintf ("INSERT INTO catalogs_orders (cost_delivery,cards,insurance,warehouse,paid,label,delivery,declaration,payment,user_id,name,email,city,adress,phone,phonemob,comment,mcomment,mktime,total,sumn,sends,status) VALUES (%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,1)", GetSQLValueString ($_POST['cost_delivery'], "text"), GetSQLValueString ($_POST['user']['cards'], "text"), GetSQLValueString ($_POST['user']['insurance'], "text"), GetSQLValueString ($_POST['user']['warehouse'], "text"), GetSQLValueString ($_POST['paid'], "text"), GetSQLValueString ($_POST['label'], "text"), GetSQLValueString ($_POST['user']['delivery'], "text"), GetSQLValueString ($_POST['user']['declaration'], "text"), GetSQLValueString ($_POST['user']['payment'], "text"), GetSQLValueString ($_POST['user']['user_id'], "text"), GetSQLValueString ($_POST['user']['username'], "text"), GetSQLValueString ($_POST['user']['email'], "text"), GetSQLValueString ($_POST['user']['city'], "text"), GetSQLValueString ($_POST['user']['address'], "text"), GetSQLValueString ($_POST['user']['tel'], "text"), GetSQLValueString ($_POST['user']['tel2'], "text"), GetSQLValueString ($_POST['user']['comment'], "text"), GetSQLValueString ($_POST['user']['mcomment'], "text"), GetSQLValueString ($time, "text"), GetSQLValueString ($_POST['summary'], "text"), GetSQLValueString ($_POST['user']['sumn'], "text"), GetSQLValueString ($_POST['user']['sends'], "text"));
             $result = mysql_query ($sql) or die (mysql_error ());
-            
+
             // Óçíàåì íîìåð çàêàçà
             $sql = "SELECT id FROM catalogs_orders WHERE mktime='$time' AND user_id='" . $_POST['user']['user_id'] . "'";
             $result = mysql_query ($sql) or die (mysql_error ());
@@ -392,7 +392,7 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
             {
                 echo "Îøèáêà";
             }
-            
+
             // Äîáàâëÿåì òîâàðû
             for ($i = 0; $i <= count ($_POST['item']); $i ++)
             {
@@ -408,26 +408,26 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                     }
                 }
             }
-    
+
             mysql_query ("update catalogs_orders set total='$summary' where id='{$order['id']}'");
-    
+
             // Øëåì ïèñüìà
             if ($user['group'] != 1)
             {
                 eMailing ('order-new', $_POST['user']['user_id'], $order['id']);
             }
-            
+
             echo "<script language=\"JavaScript\">{ location.href=\"/admin.php/orders/\"; self.focus(); } </script>";
-            
+
             // } else {
-            
+
             // echo"<script language=\"JavaScript\">alert('$alert')</script>";
-            
+
             // }
         }
         else
         {
-            
+
             echo "<script language=\"JavaScript\">alert('Íåò òîâàpà - íåò çàêàçà')</script>";
         }
     }
@@ -435,9 +435,9 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
     // =============
     // ==== Del ====
     // =============
-    
+
     if (isset ($_GET['del_order']) && $_GET['del_order'] == 1)
-    { 
+    {
         function delOrder (array $orders_id, $del_user = false)
         {
             foreach ($orders_id as $order_id)
@@ -446,12 +446,12 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                 if ($del_user)
                 {
                     mysql_query ('
-                        DELETE `zlo_users` FROM `zlo_users` 
+                        DELETE `zlo_users` FROM `zlo_users`
                             INNER JOIN `catalogs_orders` as `order` ON `order`.user_id = `zlo_users`.id
                                 AND `order`.id = '.(int)$order_id
                     ) or die (mysql_error ());
                 }
-                
+
                 // ïðîäóêòû
                 mysql_query ('
                     DELETE `catalogs_orders_products` FROM `catalogs_orders_products`
@@ -461,21 +461,21 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
                 // çàêàçû
                 mysql_query ('
-                    DELETE FROM `catalogs_orders` 
+                    DELETE FROM `catalogs_orders`
                     WHERE `id` = '.(int)$order_id
-                ) or die (mysql_error ());  
+                ) or die (mysql_error ());
             }
         }
-        
+
         if ($_SESSION['admin']['group'] == 1) // òîëüêî àäìèí
         {
             delOrder (array (
                 'order_id' => $_GET['order_id'])
             );
-    
+
             echo "<script language=\"JavaScript\">alert('Çàêàç óñïåøíî óäàëåí')</script>";
         }
-        else 
+        else
         {
             echo "<script language=\"JavaScript\">alert('Óäàëÿòü ìîæåò òîëüêî àäìèí!')</script>";
         }
@@ -484,16 +484,16 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
 // =================
 // ==== NOTIFY =====
 // =================
-    
+
         // ==================
         // ==== changed =====
         // ==================
-    
+
         if (isset ($_GET['notify']) && $_GET['notify'] == 'order-changed')
         {
-            
+
             eMailing ('order-changed', $_GET['user'], $_GET['order']);
-            
+
             echo "<script language=\"JavaScript\">{ location.href=\"/admin.php/orders/\"; self.focus(); } </script>";
         }
@@ -502,26 +502,26 @@ include_once ($_SERVER[&#39;DOCUMENT_ROOT&#39;] . &quot;/account/func/func.php&quot;);
 // ============== Âûâîä =================
 // ======================================
 // ======================================
- 
-    // ===== javascript ==== 
-     
+
+    // ===== javascript ====
+
     echo "
     <script src='http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js' type='text/javascript'></script>
     <script src='/js/JsHttpRequest.js'></script>
     <script src='/js/OrderContol.js' type='text/javascript'></script>
     <script src='/js/msg.js'></script>
     <script src='/js/msg2.js'></script>";
-    
+
     // modal
     echo "
     <script src='/js/modalBox/modalBox.js'></script>
     <script src='/js/bpopup/jquery.bpopup.min.js'></script>
     <link  href='/js/bpopup/bpopup.min.css' type='text/css' rel='stylesheet'/>";
-    
+
     // validator
     echo "
     <link rel='stylesheet' href='/js/validator/validationEngine.jquery.css' type='text/css'/>
-    <link rel='stylesheet' href='/js/validator/template.css' type='text/css'/> 
+    <link rel='stylesheet' href='/js/validator/template.css' type='text/css'/>
     <script src='/js/validator/languages/jquery.validationEngine-ru.js' type='text/javascript' charset='utf-8'></script>
     <script src='/js/validator/jquery.validationEngine.js' type='text/javascript' charset='utf-8'></script>";
@@ -539,13 +539,15 @@ if (! isset ($_GET[&#39;action&#39;]))
         echo "<a href='/admin.php/orders/?action=add' class='button-save'>Äîáàâèòü</a>";
     }
     // ***********************
-    
+
     // ==============
     // === report ===
     // ==============
-    
+
     $time = '';
+
     $time['day'] = "o.`mktime` >= " . mktime (0, 0, 0, date ('n'), date ('j'), date ('Y'));
+
     if (date ('w') == 1)
     {
         $time['week'] = " o.`mktime` >=" . mktime (0, 0, 0, date ('n'), date ('j'), date ('Y')) . " ";
@@ -554,54 +556,12 @@ if (! isset ($_GET[&#39;action&#39;]))
     {
         $time['week'] = "( o.`mktime` BETWEEN " . strtotime ("last Monday") . " AND  " . mktime (0, 0, 0, date ('n'), date ('j') + 1, date ('Y')) . ") ";
     }
+
     $time['month'] = "o.`mktime` >= " . mktime (0, 0, 0, date ('n'), 1, date ('Y'));
-    
+
     Report::put_time ($time);
     Report::make ();
-    /*
-     * echo"<div class='orders-report' style='display:table; overflow:hidden;'>";
-     *
-     * // === êëèåíòû ===
-     *
-     * echo"<div style='background: url(\"http://".$_SERVER['SERVER_NAME']."/img/bg_report.jpg\"); background-repeat:no-repeat; border:1px solid #B9B9B9; padding:0 15px 5px;'>";
-     *
-     * echo"<span style='padding:5px 0; display:block;'>ÒÎÏ êëèåíòîâ çà ïåðèîä: </span>";
-     * echo Report::html_report(Report::get_mass_client());
-     * echo"</div>";
-     *
-     * echo"<div style='height:20px;display:block;'></div>";
-     *
-     * // === ïðîäàæè ===
-     *
-     * echo"<div style='background: url(\"http://".$_SERVER['SERVER_NAME']."/img/bg_report.jpg\"); background-repeat:no-repeat; border:1px solid #B9B9B9; padding:0 15px 5px;'>";
-     *
-     * echo"<span style='padding:5px 0; display:block;'>Ïðîäàæè çà ïåðèîä: </span>";
-     * echo Report::html_report(Report::get_mass_order());
-     * echo"</div>";
-     *
-     * echo"<div style='height:20px;display:block;'> </div>";
-     *
-     * // === ãðàôèê ===
-     *
-     * echo"<div style='background: url(\"http://".$_SERVER['SERVER_NAME']."/img/bg_report.jpg\"); background-repeat:no-repeat; border:1px solid #B9B9B9; padding:0 15px 5px;'>";
-     *
-     * echo"<span style='padding:5px 0; display:block;'>Ãðàôèê: </span>";
-     * echo"<a href='http://".$_SERVER['SERVER_NAME']."/xml/".date('Y')."/".date('m')."/grafic_report_".date('Y-m')."-".(date('d')-1).".png' ><img src='http://".$_SERVER['SERVER_NAME']."/xml/".date('Y')."/".date('m')."/grafic_report_".date('Y-m')."-".(date('d')-1).".png' width='340px' ></a>";
-     *
-     * // ëåãåíäà
-     * echo"<div class='legend' style='display:table;text-align:center;'>";
-     * echo"<div style='width:15px; height:15px; background:#00A652; float:left;'></div><span style='float:left; padding:0 5px;'>íîâûé</span>";
-     * echo"<div style='width:15px; height:15px; background:#0072BB; float:left;'></div><span style='float:left; padding:0 5px;'>ïîäòâåðæäåí</span>";
-     * echo"<div style='width:15px; height:15px; background:#F36523; float:left;'></div><span style='float:left; padding:0 5px;'>îòìåíåí</span>";
-     * echo"<div style='width:15px; height:15px; background:#ED1B24; float:left;'></div><span style='float:left; padding:0 5px;'>âûïîëíåí</span>";
-     * echo"<div style='clear:both;'></div>";
-     * echo"</div>";
-     *
-     * echo"</div>";
-     *
-     * echo"</div>";
-     */
-    
+
     if (! isset ($_GET['status']))
     {
         $_GET['status'] = "1";
@@ -610,20 +570,19 @@ if (! isset ($_GET[&#39;action&#39;]))
     {
         $_GET['page'] = "1";
     }
-    
+
+    $WHERE = array();
+    $WHERE_DATE = '';
+
     if (isset ($_GET['user']))
     {
-        $AND = "AND u.id=" . $_GET['user'];
-    }
-    else
-    {
-        $AND = '';
+        $WHERE[] = "u.id=" . $_GET['user'];
     }
-    
+
     // =============
     // === Ïîèñê ===
     // =============
-    
+
     $th = array (
         "id" => "íîìåð çêàçà",
         "username" => "êëèåíò",
@@ -632,9 +591,9 @@ if (! isset ($_GET[&#39;action&#39;]))
         "declaration" => "Äåêëàðàöèÿ ¹",
         "nakladnaya" => "¹ íàêëàäíîé",
         "code" => "øòðèõêîä",
-        "mcomment" => "Êîìåíòàðèé" 
+        "mcomment" => "Êîìåíòàðèé"
     );
-    
+
     // Åñëè ñóùåñòâóåò Ïîèñê
     if (isset ($_REQUEST['search']))
     {
@@ -670,239 +629,203 @@ if (! isset ($_GET[&#39;action&#39;]))
         {
             $pre = "o";
         }
-        $AND = '';
+
         if (trim ($_REQUEST['look']) != '')
         {
             if ($_REQUEST['field'] == "id")
-                $AND .= "AND $pre.`" . $_REQUEST['field'] . "` LIKE '" . trim ($_REQUEST['look']) . "' ";
+                $WHERE[] = "$pre.`" . $_REQUEST['field'] . "` LIKE '" . trim ($_REQUEST['look']) . "' ";
             else
-                $AND .= "AND $pre.`" . $_REQUEST['field'] . "` LIKE '%" . trim ($_REQUEST['look']) . "%' ";
+                $WHERE[] = "$pre.`" . $_REQUEST['field'] . "` LIKE '%" . trim ($_REQUEST['look']) . "%' ";
         }
+
         if (($_REQUEST['form']['date_start'] != '') && ($_REQUEST['form']['date_end'] != ''))
         {
-            
             $dateStart = $_REQUEST['form']['date_start'];
-            $dateEnd = $_REQUEST['form']['date_end'];
-            
+            $dateEnd   = $_REQUEST['form']['date_end'];
+
             $mkdate = ExtractDate ($_REQUEST['form']['date_start']);
             $_REQUEST['form']['date_start'] = mktime (0, 0, 0, $mkdate[1], $mkdate[2], $mkdate[0]);
-            
+
             $mkdate = ExtractDate ($_REQUEST['form']['date_end']);
             $_REQUEST['form']['date_end'] = mktime (0, 0, 0, $mkdate[1], $mkdate[2], $mkdate[0]);
-            
-            $AND .= " AND (o.`mktime` BETWEEN '" . $_REQUEST['form']['date_start'] . "' AND '" . $_REQUEST['form']['date_end'] . "') ";
+
+            $WHERE_DATE = "(o.`mktime` BETWEEN '" . $_REQUEST['form']['date_start'] . "' AND '" . $_REQUEST['form']['date_end'] . "') ";
+
+            $WHERE[] = $WHERE_DATE;
         }
     }
-    // =============
-    // === Äàòà ====
-    // =============
-    
-    echo "
-    <div class='grid-search'>
-        <form action='" . GetFormUrl () . "' name='search' method='GET'>
-            <div class='search'>
-                <input type='text' name='look' id='grid-search' value='" . $_REQUEST['look'] . "'>
-                    <select name='field'>";
+ 
+    // ***** Àäìèí ðåæèì *****
+    if (in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+    {
+        // =============
+        // === Äàòà ====
+        // =============
-                    foreach ($th as $key => $value)
-                    {
-                        if ($_REQUEST['field'] == $key)
-                        {
-                            $selected = 'selected="selected"';
-                        }
-                        else
+        echo "
+        <div class='grid-search'>
+            <form action='" . GetFormUrl () . "' name='search' method='GET'>
+                <div class='search'>
+                    <input type='text' name='look' id='grid-search' value='" . $_REQUEST['look'] . "'>
+                        <select name='field'>";
+
+                        foreach ($th as $key => $value)
                         {
-                            $selected = '';
+                            $selected = $_REQUEST['field'] == $key ? 'selected="selected"' : '';
+
+                            echo "<option value='$key' $selected>$value</option>";
                         }
-                        echo "<option value='$key' $selected>$value</option>";
+
+                    echo "</select>
+                    <input type='submit' value='ïîèñê'>
+                    <input type='hidden' name='status' value='" . $_GET['status'] . "'>
+                </div>";
+
+                echo "
+                <div class='dates'>
+                    <div class='row'>
+                        <input type='text' name='form[date_start]' id='date_start_input' value='" . $dateStart . "'>
+                        <img src='/img/calendar.gif' id='date_start'>
+                    </div>
+                    <div class='row'>
+                        <input type='text' name='form[date_end]' id='date_end_input' value='" . $dateEnd . "'>
+                        <img src='/img/calendar.gif' id='date_end'>
+                    </div>
+                </div>";
+
+                echo '
+                <script type="text/javascript">
+                  Calendar.setup(
+                    {
+                      inputField  : "date_start_input",
+                      ifFormat    : "%Y-%m-%d",
+                      button      : "date_start"
                     }
+                  );
+                </script>';
+
+                echo '
+                <script type="text/javascript">
+                  Calendar.setup(
+                    {
+                      inputField  : "date_end_input",
+                      ifFormat    : "%Y-%m-%d",
+                      button      : "date_end"
+                    }
+                  );
+                </script>';
-                echo "</select>
-                <input type='submit' value='ïîèñê'>
-                <input type='hidden' name='status' value='" . $_GET['status'] . "'>
-            </div>";
-    
             echo "
-            <div class='dates'>
-                <div class='row'>
-                    <input type='text' name='form[date_start]' id='date_start_input' value='" . $dateStart . "'>
-                    <img src='/img/calendar.gif' id='date_start'>
-                </div>
-                <div class='row'>
-                    <input type='text' name='form[date_end]' id='date_end_input' value='" . $dateEnd . "'>
-                    <img src='/img/calendar.gif' id='date_end'>
-                </div>
-            </div>";
-        
-            echo '
-            <script type="text/javascript">
-              Calendar.setup(
-                {
-                  inputField  : "date_start_input",
-                  ifFormat    : "%Y-%m-%d",
-                  button      : "date_start"
-                }
-              );
-            </script>';
-            
-            echo '
-            <script type="text/javascript">
-              Calendar.setup(
-                {
-                  inputField  : "date_end_input",
-                  ifFormat    : "%Y-%m-%d",
-                  button      : "date_end"
-                }
-              );
-            </script>';
-    
-        echo "
-        <input type='hidden' name='search' value='ok'> 
-        </form>
-    </div>";
-    
+            <input type='hidden' name='search' value='ok'>
+            </form>
+        </div>";
+
+    }
     // =========== Ãåíåðèì òàáëèöó ===========
-    
-    $eshka = "";
-    $eshka2 = "";
-    $eshka3 = "";
+
     $lll = "";
-    /*
-     * if(trim(@$_REQUEST['da'])=='1'){
-     * $eshka = "o.mktime<'1341090000' AND ";
-     * $eshka2 = "o.mktime<'1341090000' AND ";
-     * $lll = "font-weight:bold;";
-     * }else{
-     * $eshka = "o.mktime>'1341090000' AND ";
-     * $eshka2 = "o.mktime>'1341090000' AND ";
-     * $lll = "";
-     * }
-     */
-    
+
     if (trim (@$_REQUEST['pr']) == '1')
     {
         $tim = (time () - 86400);
-        $eshka3 = "o.upd<'" . date ("Y-m-d H:i:s", $tim) . "' AND ";
-    }
-    else
-    {
-        $eshka3 = "";
+        $WHERE[] = "o.upd<'" . date ("Y-m-d H:i:s", $tim) . "'";
     }
-    
+
     if (trim (@$_REQUEST['prs']) == '1')
     {
         $tim = (time () - 172800);
-        $eshka4 = "o.upd<'" . date ("Y-m-d H:i:s", $tim) . "' AND ";
-    }
-    else
-    {
-        $eshka4 = "";
+        $WHERE[] = "o.upd<'" . date ("Y-m-d H:i:s", $tim) . "'";
     }
-    
+
     $order = ((isset ($_GET['order'])) ? $_GET['order'] : 'mktime');
     $type = ((isset ($_GET['type'])) ? $_GET['type'] : 'DESC');
-    
+
+    // ïåðèîä
     if (isset ($_GET['stat']) && $_GET['stat'] == 1)
     {
-        $AND .= " AND o.status IN(4,5) AND o.mktime<'" . mktime (0, 0, 0, "01", "01", "2013") . "' ";
+        //$WHERE[] = "o.status IN(4,5)";
+        $WHERE[] = "o.mktime<'" . mktime (0, 0, 0, "01", "01", "2013") . "' ";
     }
     else
     {
-        // $mk_and = $AND = "AND o.mktime>='".mktime(0, 0, 0, date("m"), date("d"), date("Y"))."' and o.mktime<='".mktime(0, 0, 0, date("m"), date("d")+1, date("Y"))."' ";
-        $AND .= "  AND o.status IN(1,2)  AND o.mktime>='" . mktime (0, 0, 0, "01", "01", "2013") . "' ";
-        $mk_and = "  AND o.status IN(1,2)  AND o.mktime>='" . mktime (0, 0, 0, "01", "01", "2013") . "' ";
+        //$WHERE[] = "o.status IN(1,2)";
+        $WHERE[] = "o.mktime>='" . mktime (0, 0, 0, "01", "01", "2013") . "' ";
     }
-    
+
     if (isset ($_GET['sort_label']) && $_GET['sort_label'] != '')
     {
-        $AND .= " AND o.label='" . $_GET['sort_label'] . "' ";
+        $WHERE[] = "o.label = '" . $_GET['sort_label'] . "' ";
     }
     if (isset ($_GET['lab']))
     {
-        $AND .= " AND o.label IN(" . implode (',', $_GET['lab']) . ")";
+        $WHERE[] = "o.`label` IN (" . implode (',', $_GET['lab']) . ")";
     }
     if (isset ($_GET['delivery']))
     {
-        $AND .= " AND o.delivery IN(" . implode (',', $_GET['delivery']) . ")";
+        $WHERE[] = "o.delivery IN (" . implode (',', $_GET['delivery']) . ")";
     }
     if (isset ($_GET['meneger']) && $_GET['meneger'] > 0)
     {
-        $AND .= " AND o.meneger='" . $_GET['meneger'] . "'";
+        $WHERE[] = "o.meneger='" . $_GET['meneger'] . "'";
     }
-    
-    $sql = "SELECT o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, o.`mktime` as order_date, u.group, o.id as order_id, m.*, m.product_id as mod_id, op.* , p.*, g.color as group_color,za.username as meneger_name
-                FROM catalogs_orders as o
-                LEFT JOIN catalogs_orders_products as op ON op.order_id=o.id
-                LEFT JOIN catalogs_modifications AS m ON m.id = op.product_id 
-                LEFT JOIN catalogs_products AS p ON p.id = m.product_id 
-                LEFT JOIN zlo_users as u ON u.id=o.user_id
-                LEFT JOIN zlo_users_group as g ON g.id=u.group
-				LEFT JOIN zlo_admin as za ON za.id=o.meneger
-                WHERE " . $eshka3 . $eshka4 . $eshka./*((!isset($_GET['search']))?"o.status='".$_GET['status']."'":"o.status>'0'").*/"1=1 $AND GROUP BY o.id ORDER BY o.$order $type  ";
-    
+
+    // ***** Àäìèí ðåæèì *****
+    if (! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+    {
+        $WHERE[] = "o.`label` NOT IN (9,10)";
+    }
+
+     $sql = "
+        SELECT
+            o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, o.`mktime` as order_date,
+            u.group, o.id as order_id,
+            m.product_id as mod_id,
+            op.* ,
+            g.color as group_color,
+            za.username as meneger_name
+        FROM catalogs_orders as o
+            LEFT JOIN catalogs_orders_products as op ON op.order_id=o.id
+            LEFT JOIN catalogs_modifications AS m ON m.id = op.product_id
+            LEFT JOIN catalogs_products AS p ON p.id = m.product_id
+            LEFT JOIN zlo_users as u ON u.id=o.user_id
+            LEFT JOIN zlo_users_group as g ON g.id=u.group
+            LEFT JOIN zlo_admin as za ON za.id=o.meneger
+        WHERE ".(! empty ($WHERE) ? implode (' AND ', $WHERE) : ''). "
+        GROUP BY o.id
+        ORDER BY o.$order $type
+    ";
+
     $pager['sql'] = $sql;
     // echo $pager['sql'];
     $pager = pagerGetRun ($pager, 50, 15);
+
     $result = mysql_query ($pager['sql']) or die (mysql_error ());
-    if (mysql_affected_rows () != 90800)
+    if (mysql_affected_rows () != 0)
     {
-        
         // =============
         // === Òàáñ ====
         // =============
-        
+
         echo "<div class='clear'></div>";
         echo "<div class='order-tabs'>";
-        // ////$eshka2.$eshka
-        $sql0 = "SELECT * FROM zlo_book_status WHERE id IN (1,2,4,5)";
-        $result0 = mysql_query ($sql0) or die (mysql_error ());
-        if (mysql_affected_rows () != 0)
-        {
-            while ($rows = mysql_fetch_assoc ($result0))
-            {
-                
-                // $AND
-                
-                // Ïîäñ÷åò êîëè÷åñòâà çàêàçîâ ïî ñòàòóñó
-                $sql2 = "SELECT count(o.id) AS calc, o . * , m.*, m.product_id as mod_id, op.* , p.*
-                FROM catalogs_orders as o
-                LEFT JOIN catalogs_orders_products as op ON op.order_id=o.id
-                LEFT JOIN catalogs_modifications AS m ON m.id = op.product_id 
-                LEFT JOIN catalogs_products AS p ON p.id = m.product_id 
-                LEFT JOIN zlo_users as u ON u.id=o.user_id
-                LEFT JOIN zlo_users_group as g ON g.id=u.group
-                WHERE " . $eshka2 . "o.status='" . $rows['id'] . "' $AND";
-                
-                // if(trim($_REQUEST['test'])=="1") echo $sql2;
-                
-                /*
-                 * $sql2 = "SELECT count(o.id) AS calc FROM catalogs_orders as o WHERE ".$eshka2."o.status='".$rows['id']."'";
-                 *
-                 *
-                 * $result2 = mysql_query($sql2) or die(mysql_error());
-                 * $row2=mysql_fetch_assoc($result2);
-                 * $yyyyyy = str_replace("prs=1","prs=0",str_replace("pr=1","pr=0",urlQueryChange2('status',$rows['id'])));
-                 * echo"<div class='status-tabs' ".(($_GET['status']==$rows['id'])?"style='border:1px solid red;'":"")." onclick=\"location.href='".$yyyyyy."'\">".$rows['title']."(".$row2['calc'].")</div>";
-                 */
-            }
-        }
-        
+
         $array_label = array (
-            0 => "íîâûå çàêàçû",
-            1 => "îáðàáîòàí",
+            0   => "íîâûå çàêàçû",
+            1   => "îáðàáîòàí",
             110 => "ïåðåìåùàåòñÿ",
-            2 => "äîñòàâèòü",
-            3 => "îòïðàâèòü",
-            4 => "ñàìîâûâîç",
-            5 => "",
-            510 => "",
-            6 => "",
-            610 => "",
-            7 => "âîçâðàò",
-            8 => "",
-            9 => "îòìåíåí",
-            10 => "âûïîëíåí" 
+            2   => "äîñòàâèòü",
+            3   => "îòïðàâèòü",
+            4   => "ñàìîâûâîç",
+            5   => "5",
+            510 => "510",
+            6   => "6",
+            610 => "610",
+            7   => "âîçâðàò",
+            8   => "8",
+            9   => "îòìåíåí",
+            10  => "âûïîëíåí",
         );
+
         print '
         <div style="float:left;padding:10px 0px;">
         <form action="/admin.php/orders/" name="form" method="get">
@@ -914,43 +837,63 @@ if (! isset ($_GET[&#39;action&#39;]))
         <input type="hidden" name="page" value="1">
         <input type="hidden" name="search" value="ok">
         ';
-        for ($i = 0; $i <= 10; $i ++)
-            foreach ($array_label as $i => $v)
+
+        $WHERE = array ();
+
+            foreach ($array_label as $label_id => $label_title)
             {
-                $sql = "select count(*) from catalogs_orders o where o.label='" . $i . "'";
-                if (isset ($_GET['stat']) && $_GET['stat'] == 1)
+                // ***** Àäìèí ðåæèì *****
+                if (in_array ($label_id, array (9, 10)) && ! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
                 {
-                    $sql .= " AND o.status IN(4,5)";
+                    CONTINUE;
                 }
-                else
+
+                $WHERE[] = "o.`label` = " . $label_id;
+
+                if (! empty ($WHERE_DATE))
                 {
-                    $sql .= $mk_and;
+                    $WHERE[] = $WHERE_DATE;
                 }
+
+                // Ïîäñ÷åò êîëè÷åñòâà çàêàçîâ ïî ñòàòóñó
+                $sql = "
+                    SELECT count(*) as count
+                    FROM catalogs_orders o
+                    WHERE " . (! empty ($WHERE) ? implode (' AND ', $WHERE) : '');
+
                 $r = mysql_query ($sql) or die (mysql_error ());
                 $count = mysql_result ($r, 0);
-                print '<input type="checkbox" id="cb' . $i . '" name="lab[]" value="' . $i . '" ';
-                // .(($_GET['label'][$i]==$i)?'checked':'').
-                foreach ($_GET['lab'] as $l)
+                $checked = '';
+
+                foreach ($_GET['lab'] as $id)
                 {
-                    if ($l == $i)
-                        print 'checked';
+                    if ($label_id == $id)
+                    {
+                        $checked = 'checked=checked';
+                        break;
+                    }
                 }
-                $i = ($i == 110) ? 1.1 : $i;
-                $i = ($i == 510) ? 5.1 : $i;
-                $i = ($i == 610) ? 6.1 : $i;
-                print ' onclick="document.form.submit();"/><label for="cb' . $i . '">' . $i . '-' . $array_label[$i] . '(' . $count . ')</label>';
+
+                $label_id = ($label_id == 110) ? 1.1 : $label_id;
+                $label_id = ($label_id == 510) ? 5.1 : $label_id;
+                $label_id = ($label_id == 610) ? 6.1 : $label_id;
+
+                print '<input type="checkbox" id="cb' . $label_id . '" name="lab[]" ' . $checked . ' value="' . $label_id . '" onclick="document.form.submit();"/><label for="cb' . $label_id . '">' . $label_id . '-' . $label_title . '(' . $count . ')</label>';
             }
+
         print "<br /><br /><br />";
-        
-        print "<select name='meneger' onChange='document.form.submit();'>";
-        print "<option value='0'>Ìåíåäæåð</option>";
-        $result_1 = mysql_query ("select * from zlo_admin");
-        while ($row = mysql_fetch_assoc ($result_1))
-        {
-            echo "<option value='" . $row["id"] . "' " . (($_GET['meneger'] == $row["id"]) ? "selected" : "") . ">" . $row["username"] . "</option>";
-        }
-        print "</select>";
-        
+
+            print "<select name='meneger' onChange='document.form.submit();'>";
+
+            print "<option value='0'>Ìåíåäæåð</option>";
+
+            $result_1 = mysql_query ("select * from zlo_admin");
+            while ($row = mysql_fetch_assoc ($result_1))
+            {
+                echo "<option value='" . $row["id"] . "' " . (($_GET['meneger'] == $row["id"]) ? "selected" : "") . ">" . $row["username"] . "</option>";
+            }
+            print "</select>";
+
         $sql = "select * from zlo_book_delivery";
         $r = mysql_query ($sql) or die (mysql_error ());
         $i = 0;
@@ -966,7 +909,7 @@ if (! isset ($_GET[&#39;action&#39;]))
             $i ++;
         }
         print '</form></div>';
-        
+
         $tim = (time () - 86400);
         $sql3 = "
                 SELECT count(*) count FROM catalogs_orders WHERE `status`=1 AND `upd`<'" . date ("Y-m-d H:i:s", $tim) . "';";
@@ -975,7 +918,7 @@ if (! isset ($_GET[&#39;action&#39;]))
         $yyyyyt = "";
         if (trim ($_REQUEST['pr']) == "1")
             $yyyyyt = "font-weight:bold; ";
-        
+
         $tim2 = (time () - 172800);
         $sql4 = "
                 SELECT count(*) count FROM catalogs_orders WHERE `status`=2 AND `upd`<'" . date ("Y-m-d H:i:s", $tim2) . "';";
@@ -984,27 +927,33 @@ if (! isset ($_GET[&#39;action&#39;]))
         $yyyyyt2 = "";
         if (trim ($_REQUEST['prs']) == "1")
             $yyyyyt2 = "font-weight:bold; ";
-        
-        echo "
-		
-		<div class='status-tabs' style=\"" . $lll . "\" onclick=\"location.href='" . urlQueryChange2 ('stat', "1") . "&page=1'\">Êîðçèíà</div>";
+
+        // ***** Àäìèí ðåæèì *****
+        if (in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+        {
+            echo "
+            <div class='status-tabs' style=\"" . $lll . "\" onclick=\"location.href='" . urlQueryChange2 ('stat', "1") . "&page=1'\">Êîðçèíà</div>";
+
+            echo "
+            <div class='status-tabs'>
+                  <a href=\"/order/index.php\" target=\"_blank\" style=\"text-decoration:none; color:#157100\">Ñòàòèñòèêà çàêàçîâ</a>
+            </div>";
+        }
+
         echo "
-       <div class='status-tabs'>
-    		  <a href=\"/order/index.php\" target=\"_blank\" style=\"text-decoration:none; color:#157100\">Ñòàòèñòèêà çàêàçîâ</a>
-        </div>
-    		</div>
+            </div>
             <!--<div class='clear'></div>
-    	<div onclick=\"location.href='?pr=1&status=1&page=1'\" style=\"" . $yyyyyt . "cursor:pointer; float: left; font-family: Arial,Helvetica,sans-serif; font-size: 12px; margin-left:25px;\">
-    	Ïðîñòð. (" . $row3['count'] . ")
-    	</div>
-    
-    	<div onclick=\"location.href='?prs=1&status=2&page=1'\" style=\"" . $yyyyyt2 . "cursor:pointer; float: left; font-family: Arial,Helvetica,sans-serif; font-size: 12px; margin-left:45px;\">
-    	Ïðîñòð. (" . $row4['count'] . ")
-    	</div>-->
+        <div onclick=\"location.href='?pr=1&status=1&page=1'\" style=\"" . $yyyyyt . "cursor:pointer; float: left; font-family: Arial,Helvetica,sans-serif; font-size: 12px; margin-left:25px;\">
+        Ïðîñòð. (" . $row3['count'] . ")
+        </div>
+
+        <div onclick=\"location.href='?prs=1&status=2&page=1'\" style=\"" . $yyyyyt2 . "cursor:pointer; float: left; font-family: Arial,Helvetica,sans-serif; font-size: 12px; margin-left:45px;\">
+        Ïðîñòð. (" . $row4['count'] . ")
+        </div>-->
         <div class='clear'></div>
         <div>&nbsp;</div>
-		";
-        
+        ";
+
         // ===================
         // === ÏÐÎÄÎËÆÅÍÈÅ ===
         // ===================
@@ -1020,40 +969,38 @@ if (! isset ($_GET[&#39;action&#39;]))
         }
         // print $url_l;
         print "<table border='0' width='100%' cellpadding='6' cellspacing='1' bgcolor='#d7decc' style='border-radius:10px;'>
-				<tr style='color:#acd2f6;text-align:center;' bgcolor='#1372c6'>
-				<td width='50' style='border-radius:10px 0px 0px 0px;'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=id&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Íîìåð çàêàçà</a></td>
-				<td width='90'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=mktime&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Äàòà çàêàçà</a></td>
-				<td width='90'>Äåäëàéí</td>
-				<td width='150'>ÔÈÎ</td>
-				<td width='50'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=total&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Îáùàÿ ñóììà</a></td>
-				<td width='50'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=paid&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Îïëà÷åí</a></td>
-				<td>Òåëåôîí</td>
-				<td width='300'>Àäðåñ</td>
-				<td><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=label&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Ìåòêà</a></td>
-				<td>Ñòàòóñ</td>
-				<td width='150'>Êîìåíòàðèé ìåíåäæåðà</td>
-				<td style='border-radius:0px 10px 0px 0px;' width='100'>ÑÌÑ</td>
-				</tr>";
+                <tr style='color:#acd2f6;text-align:center;' bgcolor='#1372c6'>
+                <td width='50' style='border-radius:10px 0px 0px 0px;'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=id&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Íîìåð çàêàçà</a></td>
+                <td width='90'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=mktime&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Äàòà çàêàçà</a></td>
+                <td width='90'>Äåäëàéí</td>
+                <td width='150'>ÔÈÎ</td>
+                <td width='50'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=total&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Îáùàÿ ñóììà</a></td>
+                <td width='50'><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=paid&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Îïëà÷åí</a></td>
+                <td>Òåëåôîí</td>
+                <td width='300'>Àäðåñ</td>
+                <td><a style='color:#acd2f6;' href='" . $url_l . "stat=" . $_GET['stat'] . "&order=label&type=" . (($_GET['type'] == "asc") ? "desc" : "asc") . "'>Ìåòêà</a></td>
+                <td>Ñòàòóñ</td>
+                <td width='150'>Êîìåíòàðèé ìåíåäæåðà</td>
+                <td style='border-radius:0px 10px 0px 0px;' width='100'>ÑÌÑ</td>
+                </tr>";
         $i1 = 0;
         while ($order = mysql_fetch_assoc ($result))
         {
-            // print_r($order);
             if (empty ($order['order_id']))
                 $order['order_id'] = 0;
-            print "	<tr style='text-align:center;' bgcolor='" . ((($i1 % 2) == 0) ? "#fefff5" : "#eff5e7") . "'>
-				<td id='ID{$order['order_id']}'><a href='" . $url_l . (($_GET['order_ID'] != $order['order_id']) ? "order_ID={$order['order_id']}#ID{$order['order_id']}" : "") . "'>{$order['order_id']}</a><br />{$order['meneger_name']}</td>
-				<td width='90'>" . date ('Y-m-d H:i:s', $order['order_date']) . "</td>
-				<td width='90' style='color:" . ($order['dedline'] < date ("Y-m-d") ? 'red' : 'black') . "'>" . $order['dedline'] . "</td>
-				<td width='150' align='left'><!--<a href='/admin.php/users/?action=edit&user=" . $order['user_id'] . "'>-->" . $order['username'] . "<!--</a>--></td>
-				<td width='50'>{$order['total']}</td>
-				<td width='50'>";
-            
+            print "    <tr style='text-align:center;' bgcolor='" . ((($i1 % 2) == 0) ? "#fefff5" : "#eff5e7") . "'>
+                <td id='ID{$order['order_id']}'><a href='" . $url_l . (($_GET['order_ID'] != $order['order_id']) ? "order_ID={$order['order_id']}#ID{$order['order_id']}" : "") . "'>{$order['order_id']}</a><br />{$order['meneger_name']}</td>
+                <td width='90'>" . date ('Y-m-d H:i:s', $order['order_date']) . "</td>
+                <td width='90' style='color:" . ($order['dedline'] < date ("Y-m-d") ? 'red' : 'black') . "'>" . $order['dedline'] . "</td>
+                <td width='150' align='left'><!--<a href='/admin.php/users/?action=edit&user=" . $order['user_id'] . "'>-->" . $order['username'] . "<!--</a>--></td>
+                <td width='50'>{$order['total']}</td>
+                <td width='50'>";
             if ($_SESSION['admin']['group'] == 1 || $_SESSION['admin']['group'] == 4 || $_SESSION['admin']['group'] == 6)
             {
                 echo "<select onChange='document.location=\"" . $url_l . "orderID={$order['order_id']}&paid=\"+this.value;'>
-				<option value='0' " . (($order['paid'] == 0) ? 'selected' : '') . ">íåò</option>
-				<option value='1' " . (($order['paid'] == 1) ? 'selected' : '') . ">äà</option>
-				</select>";
+                <option value='0' " . (($order['paid'] == 0) ? 'selected' : '') . ">íåò</option>
+                <option value='1' " . (($order['paid'] == 1) ? 'selected' : '') . ">äà</option>
+                </select>";
             }
             else
             {
@@ -1062,15 +1009,12 @@ if (! isset ($_GET[&#39;action&#39;]))
                 else
                     print "Íåò";
             }
-            
             echo "
             </td>
-				<td>{$order['tel']}<br/> <a href='/admin.php/sms/?orderID={$order['order_id']}'>Îòïðàâèòü CMC</a></td>
-				<td align='left'>{$order['city']}, {$order['address']}</td>
-			<td>";
-            
+                <td>{$order['tel']}<br/> <a href='/admin.php/sms/?orderID={$order['order_id']}'>Îòïðàâèòü CMC</a></td>
+                <td align='left'>{$order['city']}, {$order['address']}</td>
+            <td>";
             // if($_SESSION['admin']['group']==1 || $_SESSION['admin']['group']==4){
-            
             if ($_SESSION['admin']['group'] == 2 and ($order['label'] == 9 or $order['label'] == 10))
             {
                 print $order['label'];
@@ -1078,9 +1022,14 @@ if (! isset ($_GET[&#39;action&#39;]))
             else
             {
                 echo " <select onChange='if(this.value==9){o=\"&order_ID={$order['order_id']}\"}else{o=\"\";}document.location=\"" . $url_l . "orderID={$order['order_id']}&label=\"+this.value+o;'> ";
-                for ($i = 0; $i <= 10; $i ++)
+                for ($i = 0; $i <= 10; $i++)
                 {
-                    
+                    // ***** Àäìèí ðåæèì *****
+                    if (in_array ($i, array (9, 10)) && ! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+                    {
+                        CONTINUE;
+                    }
+
                     if (($_SESSION['admin']['group'] == 2) && ($i == 9 || $i == 10) && ($_SESSION['admin']['id'] != 17))
                     {
                     }
@@ -1089,6 +1038,8 @@ if (! isset ($_GET[&#39;action&#39;]))
                     }
                     else
                         print '<option value="' . $i . '" ' . (($order['label'] == $i) ? 'selected' : '') . '>' . $i . '</option>';
+
+
                     if ($i == 1)
                     {
                         print '<option value="110" ' . (($order['label'] == 110) ? 'selected' : '') . '>1.1</option>';
@@ -1104,11 +1055,11 @@ if (! isset ($_GET[&#39;action&#39;]))
                 }
                 echo "</select>";
             }
-            
-            // }else{
+
+                // }else{
             // print $order['label'];
             // }
-            
+
             $s = "select * from catalogs_orders_products where order_id=" . $order['order_id'];
             $r = mysql_query ($s) or die (mysql_error ());
             $status = array ();
@@ -1118,18 +1069,18 @@ if (! isset ($_GET[&#39;action&#39;]))
                     $status[] = $op['status'];
             }
             echo "</td>
-				<td>" . implode (', ', $status) . "</td>
-				<td align='left'>";
+                <td>" . implode (', ', $status) . "</td>
+                <td align='left'>";
             if (strlen ($order['mcomment']) > 0)
                 print "<a href='#' rel='msg' title='{$order['mcomment']}'>" . substr ($order['mcomment'], 0, 30) . "...</a>";
             print "</td>
-				";
+                ";
             print "<td>" . $order['smst'] . "</td>";
-             
+
             // ***** Àäìèí ðåæèì *****
             if (isset ($_SESSION['admin']['edit1']))
             {
-                
+
                 // Ñìåíà ñòàòóñà
                 if ($order['status'] != 6)
                 {
@@ -1145,42 +1096,46 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 echo $row4['title'];
                         }
                     }
-                    echo " 
+                    echo "
                          </td><td width='20'>
-						 <div id='records'><a href='/admin.php/orders/?action=edit&user=" . $order['user_id'] . "&order=" . $order['order_id'] . "' class='button-edit2' target='_blank'>Èçìåíèòü</a></div>
+                         <div id='records'><a href='/admin.php/orders/?action=edit&user=" . $order['user_id'] . "&order=" . $order['order_id'] . "' class='button-edit2' target='_blank'>Èçìåíèòü</a></div>
                         </form></td>
                   ";
                 }
             }
+
             print "</tr>";
+
             if ($order['order_id'] == $_GET['order_ID'])
             {
-                
                 print '<tr><td colspan="12">';
+
                 // =========== Ãåíåðèì òàáëèöó ===========
-                
-                $sql = "SELECT o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, u.group, o.id as order_id, o.adress as address, g.name as user_group, g.color as user_color
+
+                $sql = "
+                SELECT
+                    o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, u.group, o.id as order_id, o.adress as address,
+                    g.name as user_group, g.color as user_color
                 FROM catalogs_orders as o
-                LEFT JOIN zlo_users as u ON u.id=o.user_id
-                LEFT JOIN zlo_users_group as g ON g.id=u.group
+                    LEFT JOIN zlo_users as u ON u.id=o.user_id
+                    LEFT JOIN zlo_users_group as g ON g.id=u.group
                 WHERE o.id='" . $_GET['order_ID'] . "'";
                 $result1 = mysql_query ($sql) or die (mysql_error ());
                 if (mysql_affected_rows () != 0)
                 {
-                    
                     $order = mysql_fetch_assoc ($result1);
-                    
+
                     $r = mysql_query ("select * from card where user_id='" . $order['user_id'] . "'") or die (mysql_error ());
                     $c = mysql_fetch_assoc ($r);
                     $order['cards'] = $c['card'];
-                    
+
                     echo "<form action='$url_l' method='POST' name='edit_order' id='add-item'>";
                     echo "<div class='orders' style='margin:0px;'>";
-                    
+
                     echo "
                     <div class=order-info>
                     <fieldset id='order-info'>
-                    <legend>Çàêàç #" . $order['order_id'] . " &nbsp;&nbsp;&nbsp;Ãðóïïà: <font color='" . $order['user_color'] . "'>" . $order['user_group'] . "</font>&nbsp;&nbsp;&nbsp; Cóììà: " . $order['total'] . " ãðí.</legend> 	
+                    <legend>Çàêàç #" . $order['order_id'] . " &nbsp;&nbsp;&nbsp;Ãðóïïà: <font color='" . $order['user_color'] . "'>" . $order['user_group'] . "</font>&nbsp;&nbsp;&nbsp; Cóììà: " . $order['total'] . " ãðí.</legend>
                     <div style='float:left;'>
                         <label>Äàòà:</label>
                         <div class=info>" . date ('d-m-Y H:i:s', $order['mktime']) . "</div>
@@ -1196,17 +1151,17 @@ if (! isset ($_GET[&#39;action&#39;]))
                             }
                           );
                         </script>
-					</div>			
-                                    
-				<label>Îïëà÷åí:</label>
-				<div class=info style='float:left;padding-right:20px;'>";
-                    
+                    </div>
+
+                <label>Îïëà÷åí:</label>
+                <div class=info style='float:left;padding-right:20px;'>";
+
                     if ($_SESSION['admin']['group'] == 1 || $_SESSION['admin']['group'] == 4 || $_SESSION['admin']['group'] == 6)
                     {
                         echo "<select name='paid'>
-					<option value='0' " . (($order['paid'] == 0) ? 'selected' : '') . ">íåò</option>	
-					<option value='1' " . (($order['paid'] == 1) ? 'selected' : '') . ">äà</option>		
-					</select>";
+                    <option value='0' " . (($order['paid'] == 0) ? 'selected' : '') . ">íåò</option>
+                    <option value='1' " . (($order['paid'] == 1) ? 'selected' : '') . ">äà</option>
+                    </select>";
                     }
                     else
                     {
@@ -1216,17 +1171,23 @@ if (! isset ($_GET[&#39;action&#39;]))
                             print "Íåò";
                         echo "<input type=\"hidden\" name=\"paid\" value=\"" . $order['paid'] . "\">";
                     }
-                    
+
                 echo "</div>
-                    
-				<div class=info style='float:left;padding-right:20px;width:100px;'>
-				<label style='width:50px'>Ìåòêà:</label>
-				<div class=info>";
-                    
+
+                <div class=info style='float:left;padding-right:20px;width:100px;'>
+                <label style='width:50px'>Ìåòêà:</label>
+                <div class=info>";
+
                     // ////////if($_SESSION['admin']['group']==1 || $_SESSION['admin']['group']==4){
                     echo "<select name='label'>";
                     for ($i = 0; $i <= 10; $i ++)
                     {
+                        // ***** Àäìèí ðåæèì *****
+                        if (in_array ($i, array (9, 10)) && ! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+                        {
+                            CONTINUE;
+                        }
+
                         if (($_SESSION['admin']['group'] == 2) && ($i == 9 || $i == 10) && ($_SESSION['admin']['id'] != 17))
                         {
                         }
@@ -1248,54 +1209,54 @@ if (! isset ($_GET[&#39;action&#39;]))
                             print '<option value="610" ' . (($order['label'] == 610) ? 'selected' : '') . '>6.1</option>';
                         }
                     }
-                    
+
                     echo "</select>";
                     // //////////}else{
                     // ////////////echo $order['label'];
                     // ///}
-                    
-                    echo " </div>				
+
+                    echo " </div>
                 </div>
-				<div>
-				<label style='width:60px'>Ïðè÷èíû:</label>
-				
-				<div class=info>
-				<select name='cause' style='width:70px;'>
-    				<option value='0'></option>
-    				<option value='1' " . (($order['cause'] == 1) ? 'selected' : '') . ">Íåò òîâàðà</option>
-    				<option value='2' " . (($order['cause'] == 2) ? 'selected' : '') . ">Íåò îïëàòû</option>
-    				<option value='3' " . (($order['cause'] == 3) ? 'selected' : '') . ">Ïåðåäóìàë</option>
-    
-    				<option value='31' " . (($order['cause'] == 31) ? 'selected' : '') . "> - Êóïèë â äðóãîì ìåñòå</option>
-    				<option value='32' " . (($order['cause'] == 32) ? 'selected' : '') . "> - Íå ïîäîøëè óñëîâèÿ äîñòàâêè</option>
-    				<option value='33' " . (($order['cause'] == 33) ? 'selected' : '') . "> - Íå ïîäîøåë ñðîê äîñòàâêè</option>
-    				<option value='34' " . (($order['cause'] == 34) ? 'selected' : '') . "> - Íåò äåíåã</option>
-    				<option value='35' " . (($order['cause'] == 35) ? 'selected' : '') . "> - Êóïèò ïîçæå</option>
-    				
-    				<option value='4' " . (($order['cause'] == 4) ? 'selected' : '') . ">Êóïèë â äðóãîì ìåñòå</option>
-    				<option value='5' " . (($order['cause'] == 5) ? 'selected' : '') . ">Ïîäüåäåò â ìàã.</option>
-    				<option value='6' " . (($order['cause'] == 6) ? 'selected' : '') . ">Äóáëü çàêàçà.</option>
-    				<option value='7' " . (($order['cause'] == 7) ? 'selected' : '') . ">Äðóãîå</option>
-    				
-    				<option value='8' " . (($order['cause'] == 8) ? 'selected' : '') . ">Áðàê</option>
-    				<option value='9' " . (($order['cause'] == 9) ? 'selected' : '') . ">Îòêàçàëñÿ îò Ñàìîâûâîçà</option>
-    				<option value='10' " . (($order['cause'] == 10) ? 'selected' : '') . ">Íå ïðèåõàë çà Ñàìîâûâîçîì</option>
-    				<option value='11' " . (($order['cause'] == 11) ? 'selected' : '') . ">Îòìåíèë çàêàç</option>
-    				<option value='12' " . (($order['cause'] == 12) ? 'selected' : '') . ">Íå áåðåò òðóáêó</option>
-    				
-    
-    				
-    				<option value='13' " . (($order['cause'] == 13) ? 'selected' : '') . ">Òîâàð íå ñîîòâåòñòâóåò îïèñàíèþ íà ñàéòå</option>
-    				<option value='14' " . (($order['cause'] == 14) ? 'selected' : '') . ">Âîçâðàò</option>				
-				</select>
-				</div>
-				
-				</div><div style='clear:both'></div>
-				<label>Êëèåíò:</label>
+                <div>
+                <label style='width:60px'>Ïðè÷èíû:</label>
+
+                <div class=info>
+                <select name='cause' style='width:70px;'>
+                    <option value='0'></option>
+                    <option value='1' " . (($order['cause'] == 1) ? 'selected' : '') . ">Íåò òîâàðà</option>
+                    <option value='2' " . (($order['cause'] == 2) ? 'selected' : '') . ">Íåò îïëàòû</option>
+                    <option value='3' " . (($order['cause'] == 3) ? 'selected' : '') . ">Ïåðåäóìàë</option>
+
+                    <option value='31' " . (($order['cause'] == 31) ? 'selected' : '') . "> - Êóïèë â äðóãîì ìåñòå</option>
+                    <option value='32' " . (($order['cause'] == 32) ? 'selected' : '') . "> - Íå ïîäîøëè óñëîâèÿ äîñòàâêè</option>
+                    <option value='33' " . (($order['cause'] == 33) ? 'selected' : '') . "> - Íå ïîäîøåë ñðîê äîñòàâêè</option>
+                    <option value='34' " . (($order['cause'] == 34) ? 'selected' : '') . "> - Íåò äåíåã</option>
+                    <option value='35' " . (($order['cause'] == 35) ? 'selected' : '') . "> - Êóïèò ïîçæå</option>
+
+                    <option value='4' " . (($order['cause'] == 4) ? 'selected' : '') . ">Êóïèë â äðóãîì ìåñòå</option>
+                    <option value='5' " . (($order['cause'] == 5) ? 'selected' : '') . ">Ïîäüåäåò â ìàã.</option>
+                    <option value='6' " . (($order['cause'] == 6) ? 'selected' : '') . ">Äóáëü çàêàçà.</option>
+                    <option value='7' " . (($order['cause'] == 7) ? 'selected' : '') . ">Äðóãîå</option>
+
+                    <option value='8' " . (($order['cause'] == 8) ? 'selected' : '') . ">Áðàê</option>
+                    <option value='9' " . (($order['cause'] == 9) ? 'selected' : '') . ">Îòêàçàëñÿ îò Ñàìîâûâîçà</option>
+                    <option value='10' " . (($order['cause'] == 10) ? 'selected' : '') . ">Íå ïðèåõàë çà Ñàìîâûâîçîì</option>
+                    <option value='11' " . (($order['cause'] == 11) ? 'selected' : '') . ">Îòìåíèë çàêàç</option>
+                    <option value='12' " . (($order['cause'] == 12) ? 'selected' : '') . ">Íå áåðåò òðóáêó</option>
+
+
+
+                    <option value='13' " . (($order['cause'] == 13) ? 'selected' : '') . ">Òîâàð íå ñîîòâåòñòâóåò îïèñàíèþ íà ñàéòå</option>
+                    <option value='14' " . (($order['cause'] == 14) ? 'selected' : '') . ">Âîçâðàò</option>
+                </select>
+                </div>
+
+                </div><div style='clear:both'></div>
+                <label>Êëèåíò:</label>
                 <div class=info>
                     <input type='text' name='user[username]' value='" . $order['username'] . "' style='width:300px;' disabled='disabled'>
                     <input type='hidden' name='user[username]' value='" . $order['username'] . "'>
-					<input type='hidden' name='user[id]' value='" . $order['user_id'] . "'>
+                    <input type='hidden' name='user[id]' value='" . $order['user_id'] . "'>
                 </div>
                 <label>Email:</label>
@@ -1303,43 +1264,43 @@ if (! isset ($_GET[&#39;action&#39;]))
                     <input type='text' name='user[email]' value='" . $order['email'] . "' style='width:300px;' disabled='disabled'>
                     <input type='hidden' name='user[email]' value='" . $order['email'] . "'>
                 </div>";
-                    
+
                 // ==== TEL ====
-                
+
                 $disabled_tel = $_SESSION['admin']['group'] == 1 ? '' : "disabled='disabled'";
-                
+
                 echo "
                 <label>Òåëåôîí:</label>
                 <div class='info tel'>
                     <input type='text' name='user[tel]' value='" . $order['tel'] . "' style='width:270px;' ".$disabled_tel.">
                     <input type='hidden' name='user[tel]' value='" . $order['tel'] . "'>
-					<input type='checkbox' name='sms_tel[]' id='sms_tel1' value='" . $order['tel'] . "'>
+                    <input type='checkbox' name='sms_tel[]' id='sms_tel1' value='" . $order['tel'] . "'>
                 </div>
-                
+
                 <label>Òåëåôîí 2:</label>
                 <div class='info tel'>
                     <input type='text' name='user[tel2]' value='" . $order['tel2'] . "' style='width:270px;' ".$disabled_tel.">
                     <input type='hidden' name='user[tel2]' value='" . $order['tel2'] . "'>
-					<input type='checkbox' name='sms_tel[]' id='sms_tel2' value='" . $order['tel2'] . "'>
+                    <input type='checkbox' name='sms_tel[]' id='sms_tel2' value='" . $order['tel2'] . "'>
                 </div>";
-				
-		        echo "
+
+                echo "
                 <label>¹ êàðòî÷êè:</label>
                 <div class=info>
                     <input type='text' name='user[cards]' value='" . $order['cards'] . "' style='width:300px;' disabled='disabled'>
                     <input type='hidden' name='user[cards]' value='" . $order['cards'] . "'>
                 </div>
-				
-				 <label>Êîìåíòàðèé:</label><br />
+
+                 <label>Êîìåíòàðèé:</label><br />
                 <div class=info><textarea rows='4' style='width:400px;' name='user[comment]' cols='30' name='comment'>" . $order['comment'] . "</textarea></div>
-				
-				<label>Îòïðàâêà ÑÌÑ:</label>";
+
+                <label>Îòïðàâêà ÑÌÑ:</label>";
                     global $setup;
                     $res = $setup->db->getAll ("select * from sms_tpl", array (), DB_FETCHMODE_ASSOC);
                     echo "
                 <div class=info>
                     <select  name='sms_tpl' id='sms_tpl' style='width:300px'>
-					<option value='0'>ÂÛÁÐÀÒÜ ØÀÁËÎÍ</option>";
+                    <option value='0'>ÂÛÁÐÀÒÜ ØÀÁËÎÍ</option>";
                     foreach ($res as $row)
                     {
                         echo "<option value='" . $row['id'] . "'>" . $row['title'] . "</option>";
@@ -1347,14 +1308,14 @@ if (! isset ($_GET[&#39;action&#39;]))
                     echo "</select>
                 </div>";
                     $sms_count = $setup->db->getOne ("select count(*) from sms_history where order_id=?", array (
-                        $order['id'] 
+                        $order['id']
                     ));
                     echo "<div class=info><div style='float:left;margin-right:10px;'><textarea rows='4' style='width:400px;' name='sms_msg' id='sms_msg' cols='30' ></textarea><br /><input type='radio' name='sms_type' id='sms_type' value='l' checked />ëàòèíèöà <input type='radio' name='sms_type' id='sms_type' value='k' />êèðèëèöà  Êîëëè÷åñòâî ñèìâîëîâ <span id='sms_c'>0</span> (<span id='sms_c_sum'></span>)</div>";
                     echo "<div style='float:left'><a href='/admin.php/sms_history/?orderID=" . $order['id'] . "' target='_blank'>Èñòîðèÿ</a>";
                     echo "<br /><input type='submit' style='margin-top:4px;' class='submit_green' id='sms_send' value='Îòïðàâèòü' name='sms_send'>
-				<br />Îòïðàâëåíî ÑÌÑ (" . $sms_count . ")</div>";
+                <br />Îòïðàâëåíî ÑÌÑ (" . $sms_count . ")</div>";
                     echo "</div>";
-                    
+
                 echo "</div>
                 <div style='float:right;'>
                 <label>Äîñòàâêà</label>";
@@ -1365,31 +1326,31 @@ if (! isset ($_GET[&#39;action&#39;]))
                     viewBookSelectValue ('zlo_book_delivery', 'id', 'title', $order['delivery']);
                     echo "</select>
                 </div>";
-                    
-                echo "  
+
+                echo "
                 <label>Äåêëàðàöèÿ ¹:</label>
                 <div class=info><input type='text' name='user[declaration]' style='width:300px;' class=\"validate[required]\" value='" . $order['declaration'] . "' id='declarationValidate'></div>";
-                    
-                echo "  
+
+                echo "
                 <label>¹ ñêëàäà:</label>
                 <div class=info><input type='text' name='user[warehouse]' style='width:300px;' class=\"validate[required]\" value='" . $order['warehouse'] . "' id='warehouseValidate'></div>";
-                    
-                echo "  
+
+                echo "
                 <label>¹ íàêëàäíîé:</label>
                 <div class=info><input type='text' name='user[nakladnaya]' style='width:300px;' class=\"validate[required]\" value='" . $order['nakladnaya'] . "' id='nakladnayaValidate'></div>";
-                    
+
                     $array_method = array (
                         "Îïëàòèòü íàëè÷íûìè",
                         "Îïëàòèòü íà êàðòó Ïðèâàò Áàíêà",
                         "Îïëàòèòü ïî áåçíàëè÷íîìó ðàñ÷åòó",
                         "Îïëàòèòü Ïðàâåêñ-òåëåãðàô",
                         "Íàëîæåííûì ïëàòåæîì",
-                        "Îïëàòèòü íà Áàíê Áîãóñëàâ" 
+                        "Îïëàòèòü íà Áàíê Áîãóñëàâ"
                     );
                 echo "
-				<div class=info>
-				<label>Ñïîñîá îïëàòû:</label>
-				<select  name='user[payment]' style='width:300px'><option value=''></option>";
+                <div class=info>
+                <label>Ñïîñîá îïëàòû:</label>
+                <select  name='user[payment]' style='width:300px'><option value=''></option>";
                     foreach ($array_method as $method)
                     {
                         echo '<option value="' . $method . '" ';
@@ -1399,20 +1360,20 @@ if (! isset ($_GET[&#39;action&#39;]))
                     }
                     echo "</select>
                 </div>";
-                    
+
                 echo "<label>Ñòðàõîâêà:</label>
                 <div class=info><input type='text' name='user[insurance]' style='width:300px;' class=\"validate[required]\" value='" . $order['insurance'] . "' id='insuranceValidate'></div>";
-                    if ($_SESSION['admin']['id'] == 22 
-                        || $_SESSION['admin']['id'] == 7 
-                        || $_SESSION['admin']['id'] == 1 
+                    if ($_SESSION['admin']['id'] == 22
+                        || $_SESSION['admin']['id'] == 7
+                        || $_SESSION['admin']['id'] == 1
                         || $_SESSION['admin']['id'] == 19
                         || $_SESSION['admin']['id'] == 20
                     )
                     {
                         $sumn_disabled = '';
                     }
-                    else 
+                    else
                     {
                         $sumn_disabled = "disabled";
                     }
@@ -1421,33 +1382,33 @@ if (! isset ($_GET[&#39;action&#39;]))
                 <label>Ñóììà íàëîæåííîãî:</label>
                 <div class=info>
                     <input type='text' name='user[sumn]' style='width:300px;' class=\"validate[required]\" value='" . $order['sumn'] . "' id='sumnValidate' $sumn_disabled>";
-                    
+
                     if ($sumn_disabled != '')
                     {
                         echo "<input type='hidden' name='user[sumn]' style='width:300px;' class=\"validate[required]\" value='" . $order['sumn'] . "' id='sumnValidate'>";
                     }
-                
+
                 echo "
                 </div><br />
-				<div class=info>
-    				<label>Îòïðàâêà çà ñ÷åò:</label>
-    				<select  name='user[sends]' style='width:300px'>
-                        <option value=''></option>"; 
-    
+                <div class=info>
+                    <label>Îòïðàâêà çà ñ÷åò:</label>
+                    <select  name='user[sends]' style='width:300px'>
+                        <option value=''></option>";
+
                         // àõàõà
                         foreach (
                             array (
                                 "Ïîëó÷àòåëÿ",
-                                "Îòïðàâèòåëÿ" 
+                                "Îòïðàâèòåëÿ"
                             ) as $method)
                         {
                             echo '<option value="' . $method . '" '.($order['sends'] == $method ? 'selected' : '').'>' . $method . '</option>';
                         }
-    
+
                         echo "
                     </select>
                 </div>";
-                    
+
                 echo "<label>Ãîðîä:</label>
                 <div class=info><input type='text' name='user[city]' style='width:300px;' class=\"validate[required]\" value='" . $order['city'] . "' id='cityValidate'></div>
@@ -1456,8 +1417,8 @@ if (! isset ($_GET[&#39;action&#39;]))
                 <label>Êîìåíòàðèé (ìåíåäæåðà):</label>
                 <div class=info><textarea rows='4' id='mcomment' style='width:400px;' name='user[mcomment]' cols='30' name='mcomment'>" . $order['mcomment'] . "</textarea></div>
-				
-				";
+
+                ";
                     $disabled = "";
                     if ($order['meneger'] > 0)
                     {
@@ -1466,11 +1427,11 @@ if (! isset ($_GET[&#39;action&#39;]))
                             $disabled = "disabled";
                         }
                     }
-                    
+
                     // ==== Ìåíåäæåð ====
-                    
+
                     $disabled = "";
-                    
+
                     if ($_SESSION['admin']['group'] != 1)
                     {
                         $disabled = "disabled";
@@ -1478,11 +1439,11 @@ if (! isset ($_GET[&#39;action&#39;]))
                     echo "
                     <label>Ìåíåäæåð:</label>
-    				<div class=info>
-        				<select name='meneger'>";
-                        
+                    <div class=info>
+                        <select name='meneger'>";
+
                         $mass_manager = array ();
-                       
+
                         $result_1 = mysql_query ("select * from zlo_admin");
                         while ($row = mysql_fetch_assoc ($result_1))
                         {
@@ -1491,52 +1452,52 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 $manager_id = $_SESSION['admin']['id'];
                                 $disabled = $row["id"] != $manager_id ? 'disabled' : '';
                             }
-                            else 
+                            else
                             {
                                 $manager_id = $order['meneger'];
                                 $disabled = 'disabled';
                             }
-                            
+
                             if ($manager_id == $row["id"] || $_SESSION['admin']['group'] == 1)
                             {
                                 $disabled = '';
                             }
                             echo "<option value='" . $row["id"] . "' " . ($manager_id == $row["id"] ? 'selected' : '') . " ".$disabled.">" . $row["username"] . "</option>";
-                        } 
+                        }
                         echo "</select>";
-            
+
                     echo "</div>";
-                    
+
                     // ==== ×åê ====
-                    
+
                     $disabled = "";
-                    
+
                     if ($_SESSION['admin']['id'] != 7 and $_SESSION['admin']['id'] != 17)
                     {
                         $disabled = "disabled";
                     }
-                    
+
                     echo "
                     <label>×åê:</label>
                     <div class=info><input $disabled type='text' name='user[check]' style='width:300px;' class=\"validate[required]\" value='" . $order['check2'] . "' id='checkValidate'></div>";
-                    
+
                     if ($disabled == "disabled")
                     {
                         echo "<input type='hidden' name='user[check]' value='" . $order['check2'] . "'>";
                     }
-                    
+
                     echo "<label>SMS:</label>
                 <div class=info><input type='text' name='user[smst]' style='width:300px;' class=\"validate[required]\" value='" . $order['smst'] . "' id='smstValidate'></div>";
-                    
+
                     echo "</div>
             </fieldset>
             <div class=clear></div>
             </div>";
-                    
+
             // Òàáëèöà òîâàðîâ
-            
+
             $sql3 = "SELECT * FROM catalogs_orders_products
              WHERE `order_id`='" . $order['order_id'] . "' ";
             $result3 = mysql_query ($sql3) or die (mysql_error ());
@@ -1556,9 +1517,9 @@ if (! isset ($_GET[&#39;action&#39;]))
                     <div class='quant'>Êîë.</div>
                     <div class='price'>Öåíà</div>
                     <div class='total'>Ñóììà</div>
-					<div class='reservation'>Áðîíü</div>
-					<div class='status'>Ñòàòóñ</div>
-					<div class='status'>Âîçâðàò</div>
+                    <div class='reservation'>Áðîíü</div>
+                    <div class='status'>Ñòàòóñ</div>
+                    <div class='status'>Âîçâðàò</div>
                     <div class='onstock'>Íàëè÷èå</div>
                     <div class='control' style='float:right;'><a href='javascript:return false;' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a></div>
                     <div class='clear'></div>
@@ -1575,7 +1536,7 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 <div id='livesearch(0)'></div>
                                 </div>
                                 <!-- --->
-                            </div>    
+                            </div>
                             <div class='brand' id='brand(0)'>&nbsp;</div>
                             <div class='title' id='title(0)'>&nbsp;</div>
                             <div class='size' id='size(0)'>&nbsp;</div>
@@ -1583,88 +1544,90 @@ if (! isset ($_GET[&#39;action&#39;]))
                             <div class='quant'><input type='text' name='item[quant][]' value='1' id='quantValue(0)' onBlur='SumPerRow();'></div>
                             <div class='price' id='price(0)'>0</div>
                             <div class='total' id='total(0)'>0</div>
-							<div class='reservation'><input type='text' size='3' name='item[reservation][]' /></div>
+                            <div class='reservation'><input type='text' size='3' name='item[reservation][]' /></div>
                             <div class='status'>";
                         echo '<input type="text" class="input_status" name="item[status][]" data-id="1" id="input_status_1" size="5" value=""  />
-								<div class="status_box" id="status_box_1" data-id="1">
-									<ul>
-										<li data-id="1" class="name_city">Ì?</li>
-										<li data-id="1" class="name_city">Ìñòîê?</li>
-										<li data-id="1" class="name_city">Ãî?</li>
-										<li data-id="1" class="name_city">Ãð?</li>
-										<li data-id="1" class="name_city">Õ?</li>
-										<li data-id="1" class="name_city">Î?</li>
-										<li data-id="1" class="name_city">Ä?</li>
-										<li data-id="1" class="name_city">Á?</li>
-										<li data-id="1" class="name_city">Á2?</li>
-										<li data-id="1" class="name_city">Îñîê?</li>
-										<li data-id="1" class="name_city">áðàê</li>
-										<li data-id="1" class="name_city">áðîíü</li>
-										<li data-id="1" class="name_city">âåðíåò</li>
-										<li data-id="1" class="other"><i>Ââåäèòå</i></li>
-									</ul>
-								</div>';
+                                <div class="status_box" id="status_box_1" data-id="1">
+                                    <ul>
+                                        <li data-id="1" class="name_city">Ì?</li>
+                                        <li data-id="1" class="name_city">Ìñòîê?</li>
+                                        <li data-id="1" class="name_city">Ãî?</li>
+                                        <li data-id="1" class="name_city">Ãð?</li>
+                                        <li data-id="1" class="name_city">Õ?</li>
+                                        <li data-id="1" class="name_city">Î?</li>
+                                        <li data-id="1" class="name_city">Ä?</li>
+                                        <li data-id="1" class="name_city">Á?</li>
+                                        <li data-id="1" class="name_city">Á2?</li>
+                                        <li data-id="1" class="name_city">Îñîê?</li>
+                                        <li data-id="1" class="name_city">áðàê</li>
+                                        <li data-id="1" class="name_city">áðîíü</li>
+                                        <li data-id="1" class="name_city">âåðíåò</li>
+                                        <li data-id="1" class="other"><i>Ââåäèòå</i></li>
+                                    </ul>
+                                </div>';
                         echo "</div>";
-                        
+
                         echo "
                         <div class='status'>
                             <select name='item[vozvrat][]'>
-								<option value=''></option>
-								<option value='äà' >äà</option>
-								<option value='íåò' >íåò</option>
-							</select>
+                                <option value=''></option>
+                                <option value='äà' >äà</option>
+                                <option value='íåò' >íåò</option>
+                            </select>
                         </div>";
                         echo "
-							<div class='onstock' id='onstock(0)'></div>
-                            
+                            <div class='onstock' id='onstock(0)'></div>
+
                                 <input type='hidden' name='item[mod_id][]'      id='mod_idValue(0)'     value=''>
                                 <input type='hidden' name='item[product_id][]'  id='product_idValue(0)' value=''>
                                 <input type='hidden' name='item[brand_id][]'    id='brand_idValue(0)'   value=''>
                                 <input type='hidden' name='item[price][]'       id='priceValue(0)'      value='0'>
                                 <input type='hidden' name='item[total][]'       id='totalValue(0)'      value='0'>
-                            
+
                             <div class='control' style='float:right;'>
                                 <a href='javascript:return false;' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                                 <a href='javascript:return false;' onclick='DDivLine(0);'><img src='/account/pic/del.png' width='18px'></a>
                             </div>
-                            
+
                             <div class='clear'></div>
                         </div><div style='clear:both;'></div>
                     </div>
-					
+
                     <!---------------------------------------------------------------------------------->";
-                        
+
                         while ($item_id = mysql_fetch_assoc ($result3))
                         {
                             $i ++;
-                            
+
                             // Èíôî î òîâàðå
                             $sql4 = "SELECT m.*, m.id as mod_id, p.*,IF(m.cine>0,m.cine,p.cine) as cine from catalogs_modifications as m
-                                LEFT JOIN catalogs_products as p 
-                                ON p.id=m.product_id                               
-							WHERE m.id='" . $item_id['product_id'] . "' ";
+                                LEFT JOIN catalogs_products as p
+                                ON p.id=m.product_id
+                            WHERE m.id='" . $item_id['product_id'] . "' ";
                             $result4 = mysql_query ($sql4) or die (mysql_error ());
                             if (mysql_affected_rows () == 11110)
                             {
                                 $sql4 = "SELECT m.*, m.id as mod_id, p.*,IF(m.cine>0,m.cine,p.cine) as cine from catalogs_modifications as m
-                                LEFT JOIN catalogs_products as p 
-                                ON p.id=m.product_id 
+                                LEFT JOIN catalogs_products as p
+                                ON p.id=m.product_id
                                 WHERE m.code='" . $item_id['code'] . "' ";
                                 $result4 = mysql_query ($sql4) or die (mysql_error ());
                             }
                             if (mysql_affected_rows () != 0)
                             {
                                 $item = mysql_fetch_assoc ($result4);
-                                
+
                                 if (! empty ($item['code']))
                                 {
                                     // íàëè÷èå òîâàðà
-                                    $sql5 = "SELECT c.name as city, o.count
+                                    $sql5 = "
+                                    SELECT c.name as city, o.count
                                     FROM catalogs_keys_products_cities as o
-                                    LEFT JOIN catalogs_cities as c
-                                    ON o.city_id=c.id 
-                                    WHERE o.mod_code='" . $item['code'] . "' AND o.count>0 ";
+                                        LEFT JOIN catalogs_cities as c
+                                            ON o.city_id=c.id
+                                    WHERE o.mod_code='" . $item['code'] . "'
+                                        AND o.count>0 ";
                                     // print $sql5;
                                     $result5 = mysql_query ($sql5) or die (mysql_error ());
                                     if (mysql_affected_rows () != 0)
@@ -1692,7 +1655,7 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 else
                                 {
                                     echo "
-										<input type='text' name='item[code][]' disabled value='" . $item['code'] . "' id='code($i)' autocomplete='off' onkeyup=flyFind(this.value,'($i)') onkeydown=selectFirst(event.keyCode)>
+                                        <input type='text' name='item[code][]' disabled value='" . $item['code'] . "' id='code($i)' autocomplete='off' onkeyup=flyFind(this.value,'($i)') onkeydown=selectFirst(event.keyCode)>
                                         <!-- search --->
                                         <div class='livesearch-block'>
                                         <div id='livesearch($i)'></div>
@@ -1700,8 +1663,8 @@ if (! isset ($_GET[&#39;action&#39;]))
                                         <!-- --->";
                                     echo "<input type='hidden' name='item[code][]' value='" . $item['code'] . "' />";
                                 }
-                                echo "	
-                                    </div>    
+                                echo "
+                                    </div>
                                     <div class='brand' id='brand($i)'>" . viewBook ('catalogs_brends', $item['brend_id'], 'id', 'name') . "&nbsp;</div>
                                     <div class='title' id='title($i)'><a rel='msg' title='" . $item['name'] . "' href='http://extremstyle.ua/uploaded/pic/catalogs/products/" . $item['pic'] . "'>" . $item['name'] . "</a>&nbsp;</div>
                                     <div class='size' id='size($i)'>" . $item['size'] . "&nbsp;</div>
@@ -1709,7 +1672,7 @@ if (! isset ($_GET[&#39;action&#39;]))
                                     <div class='quant'><input type='text' name='item[quant][]' value='" . $item_id['count'] . "' id='quantValue($i)' onBlur='SumPerRow();'></div>
                                     <div class='price' id='price($i)'>" . "(" . $item_id['product_cine_id'] . ") " . $item['cine'] . "</div>
                                     <div class='total' id='total($i)'>" . ($item['cine'] * $item_id['count']) . "</div>
-									<div class='reservation'>";
+                                    <div class='reservation'>";
                                 if ($item_id['count'] == 0)
                                 {
                                     echo "<input type='text' size='3' value='" . $item_id['reservation'] . "' disabled />";
@@ -1719,86 +1682,86 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 {
                                     // echo"<input type='text' size='3' name='item[reservation][]' value='".$item_id['reservation']."' />";
                                     echo "<select name='item[reservation][]'>
-										<option value=''></option>
-										<option value='Ì' " . ($item_id['reservation'] == 'Ì' ? 'selected' : '') . ">Ì</option>
-										<option value='Ìñòîê' " . ($item_id['reservation'] == 'Ìñòîê' ? 'selected' : '') . ">Ìñòîê</option>
-										<option value='Ãî' " . ($item_id['reservation'] == 'Ãî' ? 'selected' : '') . ">Ãî</option>
-										<option value='Ãð' " . ($item_id['reservation'] == 'Ãð' ? 'selected' : '') . ">Ãð</option>
-										<option value='Õ' " . ($item_id['reservation'] == 'Õ' ? 'selected' : '') . ">Õ</option>
-										<option value='Î' " . ($item_id['reservation'] == 'Î' ? 'selected' : '') . ">Î</option>
-										<option value='Ä' " . ($item_id['reservation'] == 'Ä' ? 'selected' : '') . ">Ä</option>
-										<option value='Á' " . ($item_id['reservation'] == 'Á' ? 'selected' : '') . ">Á</option>
-										<option value='Á2' " . ($item_id['reservation'] == 'Á2' ? 'selected' : '') . ">Á2</option>
-										<option value='Îñîê' " . ($item_id['reservation'] == 'Îñîê' ? 'selected' : '') . ">Îñîê</option>
-									</select>";
+                                        <option value=''></option>
+                                        <option value='Ì' " . ($item_id['reservation'] == 'Ì' ? 'selected' : '') . ">Ì</option>
+                                        <option value='Ìñòîê' " . ($item_id['reservation'] == 'Ìñòîê' ? 'selected' : '') . ">Ìñòîê</option>
+                                        <option value='Ãî' " . ($item_id['reservation'] == 'Ãî' ? 'selected' : '') . ">Ãî</option>
+                                        <option value='Ãð' " . ($item_id['reservation'] == 'Ãð' ? 'selected' : '') . ">Ãð</option>
+                                        <option value='Õ' " . ($item_id['reservation'] == 'Õ' ? 'selected' : '') . ">Õ</option>
+                                        <option value='Î' " . ($item_id['reservation'] == 'Î' ? 'selected' : '') . ">Î</option>
+                                        <option value='Ä' " . ($item_id['reservation'] == 'Ä' ? 'selected' : '') . ">Ä</option>
+                                        <option value='Á' " . ($item_id['reservation'] == 'Á' ? 'selected' : '') . ">Á</option>
+                                        <option value='Á2' " . ($item_id['reservation'] == 'Á2' ? 'selected' : '') . ">Á2</option>
+                                        <option value='Îñîê' " . ($item_id['reservation'] == 'Îñîê' ? 'selected' : '') . ">Îñîê</option>
+                                    </select>";
                                 }
                                 echo "</div>
                                     <div class='status'>";
                                 echo '<input type="text" class="input_status" name="item[status][]" data-id="' . $item_id['id'] . '" id="input_status_' . $item_id['id'] . '" size="5" value="' . $item_id['status'] . '"  />
-										<div class="status_box" id="status_box_' . $item_id['id'] . '" data-id="' . $item_id['id'] . '">
-											<ul>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ì?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ìñòîê?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ãî?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ãð?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Õ?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Î?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ä?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Á?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Á2?</li>
-												<li data-id="1" class="name_city">Îñîê?</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">áðàê</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">áðîíü</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">âåðíåò</li>
-												<li data-id="' . $item_id['id'] . '" class="name_city">Ó íàñ</li>
-												<li data-id="' . $item_id['id'] . '" class="other"><i>Ââåäèòå</i></li>
-											</ul>
-										</div>';
+                                        <div class="status_box" id="status_box_' . $item_id['id'] . '" data-id="' . $item_id['id'] . '">
+                                            <ul>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ì?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ìñòîê?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ãî?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ãð?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Õ?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Î?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ä?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Á?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Á2?</li>
+                                                <li data-id="1" class="name_city">Îñîê?</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">áðàê</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">áðîíü</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">âåðíåò</li>
+                                                <li data-id="' . $item_id['id'] . '" class="name_city">Ó íàñ</li>
+                                                <li data-id="' . $item_id['id'] . '" class="other"><i>Ââåäèòå</i></li>
+                                            </ul>
+                                        </div>';
                                 echo "</div>";
                                 echo "<div class='status'><select name='item[vozvrat][]'>
-										<option value=''></option>
-										<option value='äà' " . ($item_id['vozvrat'] == 'äà' ? 'selected' : '') . ">äà</option>
-										<option value='íåò' " . ($item_id['vozvrat'] == 'íåò' ? 'selected' : '') . ">íåò</option>
-									</select></div>";
+                                        <option value=''></option>
+                                        <option value='äà' " . ($item_id['vozvrat'] == 'äà' ? 'selected' : '') . ">äà</option>
+                                        <option value='íåò' " . ($item_id['vozvrat'] == 'íåò' ? 'selected' : '') . ">íåò</option>
+                                    </select></div>";
                                 echo "
-									<div class='onstock' id='onstock($i)'>$onStockDesc</div>
+                                    <div class='onstock' id='onstock($i)'>$onStockDesc</div>
+
-                                    
-										<input type='hidden' name='item[mod_id][]'      id='mod_idValue($i)'     value='" . $item['mod_id'] . "'>
+                                        <input type='hidden' name='item[mod_id][]'      id='mod_idValue($i)'     value='" . $item['mod_id'] . "'>
                                         <input type='hidden' name='item[product_id][]'  id='product_idValue($i)' value='" . $item['product_id'] . "'>
                                         <input type='hidden' name='item[brand_id][]'    id='brand_idValue($i)'   value='" . $item['brend_id'] . "'>
                                         <input type='hidden' name='item[price][]'       id='priceValue($i)'      value='" . $item_id['product_cine_id'] . "'>
                                         <input type='hidden' name='item[total][]'       id='totalValue($i)'      value='" . ($item_id['product_cine_id'] * $item_id['count']) . "'>
-                                    
+
                                     <div class='control' style='float:right;'>
                                         <a href='javascript:return false;' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                                         <!--a href='javascript:return false;' onclick='RemoveDivLine($i);'><img src='/account/pic/del.png' width='18px'></a-->
-										<a href='javascript:return false;' onclick='DDivLine($i);'><img src='/account/pic/del.png' width='18px'></a>
+                                        <a href='javascript:return false;' onclick='DDivLine($i);'><img src='/account/pic/del.png' width='18px'></a>
                                     </div>
-                                    
+
                                     <div class='clear'></div>
                                 </div><div style='clear:both;'></div>
                             </div>";
                             }
                         }
-                        
+
                         echo "</div>
-                    
+
                         <div class='report'>
-							Ñòîèìîñòü äîñòàâêè <input type='text' size='10' name='cost_delivery' id='cost_delivery' value='" . $order['cost_delivery'] . "' onBlur='SumPerRow()' />	
-						   Âñåãî: <span id='quantity'>0</span> òîâàðîâ íà <span id='summary'>0</span> ãðí.
+                            Ñòîèìîñòü äîñòàâêè <input type='text' size='10' name='cost_delivery' id='cost_delivery' value='" . $order['cost_delivery'] . "' onBlur='SumPerRow()' />
+                           Âñåãî: <span id='quantity'>0</span> òîâàðîâ íà <span id='summary'>0</span> ãðí.
                         </div>
-                        
+
                         <input type='hidden' name='summary'  value='' id='summaryValue'>
                         <input type='hidden' name='user_id'  value='" . $order['user_id'] . "'>
                         <input type='hidden' name='order_id' value='" . $order['order_id'] . "'>
                         <input type='hidden' name='send'     value='edit-order'> ";
-                        
+
                         echo "<div class='clear'></div>";
-                        
+
                         // Äëÿ XML ôàéëà
                         $dateFromDate = ExtractDate ((date ('Y-m-d H:i:s', $order['mktime'])));
-                        
+
                         // Ñìåíà ñòàòóñà
                         if ($order['status'] != 6)
                         {
@@ -1828,10 +1791,13 @@ if (! isset ($_GET[&#39;action&#39;]))
                             // =================
                             // ==== CONTROL ====
                             // =================
-                            
+
                             if ($order['work_user'] > 0 && $order['work_user'] != $_SESSION['admin']['id'])
                             {
-                                $r = mysql_query ('select login from zlo_admin where id=' . $order['work_user']);
+                                $r = mysql_query ('
+                                    select login
+                                    from zlo_admin
+                                    where id=' . $order['work_user']);
                                 print '<tr><td colspan="12">Ñ ýòèì çàêàçîì óæå ðàáîòàåò ïîëüçîâàòåëü ' . mysql_result ($r, 0) . '</td></tr>';
                             }
                             else
@@ -1844,23 +1810,23 @@ if (! isset ($_GET[&#39;action&#39;]))
                                 echo "<div id='records'><a href='/account/admin/orders.php?action=print&order_id=" . $order['order_id'] . "' target='_new' class='button-save'>Ïå÷àòü</a></div>";
                                 // âûõîä
                                 echo "<div id='records'><a href='" . $url_l . "&exit_order_id=" . $order['order_id'] . "' class='button-save'>Âûéòè èç çàêàçà</a></div>";
-                                // óäàëèòü 
+                                // óäàëèòü
                                 if ($_SESSION['admin']['group'] == 1) // òîëüêî àäìèí
                                 {
                                     echo "<div id='records'><a href='" . $url_l . "&del_order=1&order_id=" . $order['order_id'] . "' class='button-save need-confirm red'>Óäàëèòü çàêàç</a></div>";
                                 }
                             }
-                            
+
                             /*
                              * if (is_file($_SERVER['DOCUMENT_ROOT']."/xml/".$dateFromDate[0]."/".$dateFromDate[1]."/order_".$order['order_id'].".xml")) {
                              * echo"<div id='records'><a href='/xml/".$dateFromDate[0]."/".$dateFromDate[1]."/order_".$order['order_id'].".xml'><img src='/account/pic/xml.png' width='38px' title='xml çàêàç ïîëüçîâàòåëÿ'></a></div>";
                              * }
                              */
-                            
+
                             echo "</div>";
                         }
                         echo "</fieldset></div>";
-                        
+
                         echo "</div>";
                     }
                 }
@@ -1868,19 +1834,19 @@ if (! isset ($_GET[&#39;action&#39;]))
                 {
                     echo "<p>Ïóñòî</p>";
                 }
- 
+
                 print '</td></tr>';
             }
-            
+
             $i1 ++;
         }
-        
+
         echo "</table>";
- 
+
         echo "</div>";
-        
+
         // === Pager
-        
+
         echo "
         <div class='grid-pager'>
           " . pagerGetShow ($pager) . "
@@ -1894,105 +1860,115 @@ if (! isset ($_GET[&#39;action&#39;]))
 if (isset ($_GET['action']) && $_GET['action'] == 'show')
 {
-    
+
     // Òàáñ
-    
+
     echo "<div class='order-tabs'>";
-    $sql = "SELECT * FROM zlo_book_status WHERE id IN (1,2,4,5)";
+    $sql = "
+        SELECT *
+        FROM zlo_book_status
+        WHERE id IN (1,2,4,5)";
     $result = mysql_query ($sql) or die (mysql_error ());
     if (mysql_affected_rows () != 0)
     {
         while ($row = mysql_fetch_assoc ($result))
         {
-            
+
             // Ïîäñ÷åò êîëè÷åñòâà çàêàçîâ ïî ñòàòóñó
-            $sql2 = "SELECT count(`id`) AS calc FROM catalogs_orders WHERE status='" . $row['id'] . "' AND user_id=" . $_GET['user'] . "";
+            $sql2 = "
+                SELECT count(`id`) AS calc
+                FROM catalogs_orders
+                WHERE status='" . $row['id'] . "'
+                    AND user_id=" . $_GET['user'];
             $result2 = mysql_query ($sql2) or die (mysql_error ());
             $row2 = mysql_fetch_assoc ($result2);
-            
+
             echo "<div class='status-tabs' onclick=\"location.href='" . urlQueryChange2 ('status', $row['id']) . "&page=1'\">" . $row['title'] . "(" . $row2['calc'] . ")</div>";
         }
     }
     echo "</div>
         <div class='clear'></div>
         ";
-    
+
     if (! isset ($_GET['status']))
     {
         $_GET['status'] = 1;
     }
-    
+
     // =========== Ãåíåðèì òàáëèöó ===========
-    
-    $sql = "SELECT o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, u.group, o.id as order_id 
-                FROM catalogs_orders as o
-                LEFT JOIN zlo_users as u on u.id=o.user_id
-                WHERE u.id=" . $_GET['user'] . " AND o.status=" . $_GET['status'] . "  ORDER BY mktime DESC ";
+
+    $sql = "
+        SELECT o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, u.group, o.id as order_id
+        FROM catalogs_orders as o
+        LEFT JOIN zlo_users as u on u.id=o.user_id
+        WHERE u.id=" . $_GET['user'] . "
+            AND o.status=" . $_GET['status'] . "
+        ORDER BY mktime DESC ";
     $pager['sql'] = $sql;
     $pager = pagerGetRun ($pager, 10, 15); // echo$pager['sql'];
     $result = mysql_query ($pager['sql']) or die (mysql_error ());
     if (mysql_affected_rows () != 0)
     {
-        
+
         // ===================
         // === ÏÐÎÄÎËÆÅÍÈÅ ===
         // ===================
-        
+
         while ($order = mysql_fetch_assoc ($result))
         {
-            
+
             echo "<div class='orders'>";
-            
+
             echo "<div class='order-info-all'>
-            
+
             <div class=order-info>
                 <h4>Çàêàç #" . $order['order_id'] . "<br>
                     Äàòà: " . date ('Y-m-d H:i:s', $order['mktime']) . "
                 </h4>
             <fieldset id='order-info'  style='background: " . $order['color'] . ";'>
-                <legend>Êëèåíò</legend> 
-                
+                <legend>Êëèåíò</legend>
+
                 <label>Êëèåíò:</label>
                 <div class=info><a href='/admin.php/users/?action=edit&user=" . $order['user_id'] . "'>" . $order['username'] . "</a>&nbsp;</div>
                 <label>Òåë:</label>
                 <div class=info>" . $order['tel'] . "&nbsp;</div>
-                
+
                 <label>Òåë 2:</label>
                 <div class=info>" . $order['tel2'] . "&nbsp;</div>
-                
+
                 <label>Ãðóïïà:</label>
                 <div class=info>" . viewBook ('zlo_users_group', $order['group'], 'id', 'name') . "&nbsp;</div>
-                
+
                 <div class=clear></div>
                 <a class='history' href='/admin.php/orders/?action=show&user=" . $order['user_id'] . "'>[Èñòîðèÿ çàêàçîâ]</a>
-                
+
             </fieldset>
             <fieldset id='order-info'  style='background: " . $order['color'] . ";'>
                 <legend>Äîñòàâêà</legend>
-                
+
                 <label>Äîñòàâêà:</label>
                 <div class=info>" . viewBook ('zlo_book_delivery', $order['delivery'], 'id', 'title') . "&nbsp;</div>
-                
+
                 <label>Ãîðîä:</label>
                 <div class=info>" . $order['city'] . "&nbsp;</div>
-                
+
                 <label>Àäðåñ:</label>
                 <div class=info>" . $order['address'] . "&nbsp;</div>
-                
+
                 <label>Èíôî:</label>
                 <div class=info> " . $order['comment'] . "&nbsp;</div>
-                
+
                 <div class=clear></div>
-                
+
             </fieldset>
             <div class=clear></div>
             </div>
             </div>";
-            
+
             // Òàáëèöà òîâàðîâ
-            
+
             echo "
                 <div class='order-details'>
                 <fieldset id='order-details'>
@@ -2011,68 +1987,66 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;show&#39;)
                     <td>Íàëè÷èå</td>
                     <td></td>
                   </tr>";
-            
+
             $sql3 = "
                     SELECT o . * , m.*, m.product_id as mod_id, op.* , p.*
-                    FROM catalogs_orders AS o 
+                    FROM catalogs_orders AS o
                     LEFT JOIN catalogs_orders_products as op ON op.order_id=o.id
-                    LEFT JOIN catalogs_modifications AS m ON m.id = op.product_id 
-                    LEFT JOIN catalogs_products AS p ON p.id = m.product_id 
+                    LEFT JOIN catalogs_modifications AS m ON m.id = op.product_id
+                    LEFT JOIN catalogs_products AS p ON p.id = m.product_id
                     WHERE o.id='" . $order['order_id'] . "'";
             $result3 = mysql_query ($sql3) or die (mysql_error ());
             if (mysql_affected_rows () != 0)
             {
                 while ($item = mysql_fetch_assoc ($result3))
                 {
+                    $i ++;
+
+                    // íàëè÷èå òîâàðà
+                    $sql5 = "SELECT c.name as city, o.count
+                        FROM catalogs_keys_products_cities as o
+                        LEFT JOIN catalogs_cities as c
+                        ON o.city_id=c.id
+                        WHERE o.mod_code='" . $item['code'] . "' AND o.count>0 ";
+                    $result5 = mysql_query ($sql5) or die (mysql_error ());
+                    if (mysql_affected_rows () != 0)
                     {
-                        $i ++;
-                        
-                        // íàëè÷èå òîâàðà
-                        $sql5 = "SELECT c.name as city, o.count
-                            FROM catalogs_keys_products_cities as o
-                            LEFT JOIN catalogs_cities as c
-                            ON o.city_id=c.id 
-                            WHERE o.mod_code='" . $item['code'] . "' AND o.count>0 ";
-                        $result5 = mysql_query ($sql5) or die (mysql_error ());
-                        if (mysql_affected_rows () != 0)
-                        {
-                            $onStockDesc = '';
-                            while ($onStock = mysql_fetch_assoc ($result5))
-                            {
-                                $onStockDesc .= $onStock['city'] . "(" . $onStock['count'] . ") ";
-                            }
-                        }
-                        else
+                        $onStockDesc = '';
+                        while ($onStock = mysql_fetch_assoc ($result5))
                         {
-                            $onStockDesc = 'íåò';
+                            $onStockDesc .= $onStock['city'] . "(" . $onStock['count'] . ") ";
                         }
-                        
-                        echo "<tr>
-                        <td>$i .</td> 
-                        <td>" . $item['code'] . "</td>            
-                        <td>" . viewBook ('catalogs_brends', $item['brend_id'], 'id', 'name') . "</td>
-                        <td><a href='/" . $item['rubric_id'] . "-catalogs/" . $item['translit'] . "-" . $item['id'] . "/' target='_new'>" . $item['name'] . "</a></td>
-                        <td>" . $item['size'] . "</td>
-                        <td>" . $item['color'] . "</td>
-                        <td>" . $item['count'] . "</td>
-                        <td>" . $item['cine'] . "</td>  
-                        <td>" . ($item['cine'] * $item['count']) . "</td>
-                        <td>" . $onStockDesc . "</td>
-                        <td></td>
-                      </tr>";
                     }
+                    else
+                    {
+                        $onStockDesc = 'íåò';
+                    }
+
+                    echo "<tr>
+                    <td>$i .</td>
+                    <td>" . $item['code'] . "</td>
+                    <td>" . viewBook ('catalogs_brends', $item['brend_id'], 'id', 'name') . "</td>
+                    <td><a href='/" . $item['rubric_id'] . "-catalogs/" . $item['translit'] . "-" . $item['id'] . "/' target='_new'>" . $item['name'] . "</a></td>
+                    <td>" . $item['size'] . "</td>
+                    <td>" . $item['color'] . "</td>
+                    <td>" . $item['count'] . "</td>
+                    <td>" . $item['cine'] . "</td>
+                    <td>" . ($item['cine'] * $item['count']) . "</td>
+                    <td>" . $onStockDesc . "</td>
+                    <td></td>
+                  </tr>";
                 }
             }
-            
+
             echo "</table>
-                        <b>Îáùàÿ ñóììà: " . $order['total'] . " ãðí.</b> 
+                        <b>Îáùàÿ ñóììà: " . $order['total'] . " ãðí.</b>
                </div>";
-            
+
             echo "<div class='clear'></div></div>";
         }
-        
+
         // === Pager
-        
+
         echo "<div class='grid-pager'>
                   " . pagerGetShow ($pager) . "
               </div>";
@@ -2085,9 +2059,9 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;show&#39;)
 if (isset ($_GET['action']) && $_GET['action'] == 'edit')
 {
-    
+
     // Òàáñ
-    
+
     if (! isset ($_GET['status']))
     {
         $status = 1;
@@ -2096,7 +2070,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
     {
         $status = $_GET['status'];
     }
-    
+
     echo "<div class='order-tabs'>";
     $sql = "SELECT * FROM zlo_book_status WHERE id IN (1,2,4,5)";
     $result = mysql_query ($sql) or die (mysql_error ());
@@ -2104,21 +2078,21 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
     {
         while ($row = mysql_fetch_assoc ($result))
         {
-            
+
             // Ïîäñ÷åò êîëè÷åñòâà çàêàçîâ ïî ñòàòóñó
             $sql2 = "SELECT count(`id`) AS calc FROM catalogs_orders WHERE status='" . $row['id'] . "' AND user_id=" . $_GET['user'] . "";
             $result2 = mysql_query ($sql2) or die (mysql_error ());
             $row2 = mysql_fetch_assoc ($result2);
-            
+
             echo "<div class='status-tabs' onclick=\"location.href='" . urlQueryChange2 ('status', $row['id']) . "&page=1'\">" . $row['title'] . "(" . $row2['calc'] . ")</div>";
         }
     }
     echo "</div>
         <div class='clear'></div>
         ";
-    
+
     // =========== Ãåíåðèì òàáëèöó ===========
-    
+
     $sql = "SELECT o.*, o.name as username, o.adress as address, o.phone as tel, o.phonemob as tel2, u.group, o.id as order_id, o.adress as address, g.color
                 FROM catalogs_orders as o
                 LEFT JOIN zlo_users as u ON u.id=o.user_id
@@ -2127,39 +2101,45 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
     $result = mysql_query ($sql) or die (mysql_error ());
     if (mysql_affected_rows () != 0)
     {
-        
+
         $order = mysql_fetch_assoc ($result);
-        
+
         echo "<form action='' method='POST' name='edit_order' id='add-item'>";
         echo "<div class='orders'>";
-        
+
         echo "
             <div class=order-info>
             <fieldset id='order-info' style='background: " . $order['color'] . ";'>
-            <legend>Çàêàç #" . $order['order_id'] . " Cóììà: " . $order['total'] . " ãðí.</legend> 	
-            
+            <legend>Çàêàç #" . $order['order_id'] . " Cóììà: " . $order['total'] . " ãðí.</legend>
+
                 <label>Äàòà:</label>
                 <div class=info>" . date ('Y-m-d H:i:s', $order['mktime']) . "</div>
-                
-				<label>Îïëà÷åí:</label>
-				<div class=info>
-					<input type='radio' name='paid' value='1' " . (($order['paid'] == 1) ? 'checked' : '') . "> äà<Br>
-					<input type='radio' name='paid' value='0' " . (($order['paid'] == 0) ? 'checked' : '') . "> íåò				
-				</div>
-				
-				<label>Ìåòêà:</label>
-				<div class=info>
-					<select name='label'>";
-        
+
+                <label>Îïëà÷åí:</label>
+                <div class=info>
+                    <input type='radio' name='paid' value='1' " . (($order['paid'] == 1) ? 'checked' : '') . "> äà<Br>
+                    <input type='radio' name='paid' value='0' " . (($order['paid'] == 0) ? 'checked' : '') . "> íåò
+                </div>
+
+                <label>Ìåòêà:</label>
+                <div class=info>
+                    <select name='label'>";
+
                 for ($i = 0; $i <= 10; $i ++)
                 {
+                    // ***** Àäìèí ðåæèì *****
+                    if (in_array ($i, array (9, 10)) && ! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+                    {
+                        CONTINUE;
+                    }
+
                     print '<option value="' . $i . '" ' . (($order['label'] == $i) ? 'selected' : '') . '>' . $i . '</option>';
                 }
- 
-            echo "</select>		
-				</div>				
-                
-				<label>Êëèåíò:</label>
+
+            echo "</select>
+                </div>
+
+                <label>Êëèåíò:</label>
                 <div class=info>
                     <input type='text' name='user[username]' value='" . $order['username'] . "' disabled='disabled'>&nbsp;
                     <input type='hidden' name='user[username]' value='" . $order['username'] . "'>
@@ -2170,19 +2150,19 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                     <input type='text' name='user[email]' value='" . $order['email'] . "' disabled='disabled'>&nbsp;
                     <input type='hidden' name='user[email]' value='" . $order['email'] . "'>
                 </div>
-                
+
                 <label>Òåëåôîí:</label>
                 <div class=info>
                     <input type='text' name='user[tel]' value='" . $order['tel'] . "' disabled='disabled'>&nbsp;
                     <input type='hidden' name='user[tel]' value='" . $order['tel'] . "'>
                 </div>
-                
+
                 <label>Òåëåôîí 2:</label>
                 <div class=info>
                     <input type='text' name='user[tel2]' value='" . $order['tel2'] . "' disabled='disabled'>&nbsp;
                     <input type='hidden' name='user[tel2]' value='" . $order['tel2'] . "'>
                 </div>
-                
+
                 <label>Äîñòàâêà</label>";
         echo "
                 <div class=info>
@@ -2190,8 +2170,8 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                         viewBookSelectValue ('zlo_book_delivery', 'id', 'title', $order['delivery']);
                 echo "</select>
                 </div>";
-        
-        echo "  
+
+        echo "
                 <label>Ãîðîä:</label>
                 <div class=info><input type='text' name='user[city]' class=\"validate[required]\" value='" . $order['city'] . "' id='cityValidate'>&nbsp;</div>
@@ -2200,19 +2180,19 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                 <label>Êîìåíòàðèé:</label>
                 <div class=info><textarea rows='4' style='width:400px;' name='user[comment]' cols='30' name='comment'>" . $order['comment'] . "</textarea></div>
-				
+
                 <label>Êîìåíòàðèé (ìåíåäæåðà):</label>
                 <div class=info><textarea rows='4' id='mcomment' style='width:400px;' name='user[mcomment]' cols='30' name='mcomment'>" . $order['mcomment'] . "</textarea></div>
-				";
-        
+                ";
+
         echo "
             </fieldset>
             <div class=clear></div>
             </div>";
-        
+
         // Òàáëèöà òîâàðîâ
-        
+
         $sql3 = "SELECT * FROM catalogs_orders_products
                      WHERE `order_id`='" . $order['order_id'] . "' ";
         $result3 = mysql_query ($sql3) or die (mysql_error ());
@@ -2248,7 +2228,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                                 <div id='livesearch(0)'></div>
                                 </div>
                                 <!-- --->
-                            </div>    
+                            </div>
                             <div class='brand' id='brand(0)'>&nbsp;</div>
                             <div class='title' id='title(0)'>&nbsp;</div>
                             <div class='size' id='size(0)'>&nbsp;</div>
@@ -2257,43 +2237,43 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                             <div class='price' id='price(0)'>0</div>
                             <div class='total' id='total(0)'>0</div>
                             <div class='onstock' id='onstock(0)'></div>
-                            
+
                                 <input type='hidden' name='item[mod_id][]'      id='mod_idValue(0)'     value=''>
                                 <input type='hidden' name='item[product_id][]'  id='product_idValue(0)' value=''>
                                 <input type='hidden' name='item[brand_id][]'    id='brand_idValue(0)'   value=''>
                                 <input type='hidden' name='item[price][]'       id='priceValue(0)'      value='0'>
                                 <input type='hidden' name='item[total][]'       id='totalValue(0)'      value='0'>
-                            
+
                             <div class='control'>
                                 <a href='#' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                                 <a href='#' onclick='RemoveDivLine(0);'><img src='/account/pic/del.png' width='18px'></a>
                             </div>
-                            
+
                             <div class='clear'></div>
                         </div>
                     </div>
                     <!---------------------------------------------------------------------------------->";
-            
+
             while ($item_id = mysql_fetch_assoc ($result3))
             {
                 $i ++;
-                
+
                 // Èíôî î òîâàðå
                 $sql4 = "SELECT m.*, m.id as mod_id, p.* from catalogs_modifications as m
-                                LEFT JOIN catalogs_products as p 
-                                ON p.id=m.product_id 
+                                LEFT JOIN catalogs_products as p
+                                ON p.id=m.product_id
                                 WHERE m.id='" . $item_id['product_id'] . "' ";
-                
+
                 $result4 = mysql_query ($sql4) or die (mysql_error ());
                 if (mysql_affected_rows () != 0)
                 {
                     $item = mysql_fetch_assoc ($result4);
-                    
+
                     // íàëè÷èå òîâàðà
                     $sql5 = "SELECT c.name as city, o.count
                                     FROM catalogs_keys_products_cities as o
                                     LEFT JOIN catalogs_cities as c
-                                    ON o.city_id=c.id 
+                                    ON o.city_id=c.id
                                     WHERE o.mod_code='" . $item['code'] . "' AND o.count>0 ";
                     $result5 = mysql_query ($sql5) or die (mysql_error ());
                     if (mysql_affected_rows () != 0)
@@ -2308,7 +2288,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                     {
                         $onStock = 'íåò';
                     }
-                    
+
                     echo "<div id='line$i' " . (($item_id['count'] == 0) ? "style='background:#ffc5c5;'" : "") . ">
                                 <div class='row'>
                                     <div class='count' id='id($i)'>$i</div>
@@ -2319,7 +2299,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                                         <div id='livesearch($i)'></div>
                                         </div>
                                         <!-- --->
-                                    </div>    
+                                    </div>
                                     <div class='brand' id='brand($i)'>" . viewBook ('catalogs_brends', $item['brend_id'], 'id', 'name') . "&nbsp;</div>
                                     <div class='title' id='title($i)'><a rel='msg' title='" . $item['name'] . "' href='http://extremstyle.ua/uploaded/pic/catalogs/products/" . $item['pic'] . "'>" . $item['name'] . "</a>&nbsp;</div>
                                     <div class='size' id='size($i)'>" . $item['size'] . "&nbsp;</div>
@@ -2334,47 +2314,47 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                                         <input type='hidden' name='item[brand_id][]'    id='brand_idValue($i)'   value='" . $item['brend_id'] . "'>
                                         <input type='hidden' name='item[price][]'       id='priceValue($i)'      value='" . $item['cine'] . "'>
                                         <input type='hidden' name='item[total][]'       id='totalValue($i)'      value='" . ($item['cine'] * $item_id['count']) . "'>
-                                    
+
                                     <div class='control'>
                                         <a href='#' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                                         <a href='#' onclick='RemoveDivLine($i);'><img src='/account/pic/del.png' width='18px'></a>
-										<a href='#' onclick='DDivLine($i);'>Ä</a>
+                                        <a href='#' onclick='DDivLine($i);'>Ä</a>
                                     </div>
-                                    
+
                                     <div class='clear'></div>
                                 </div><div style='clear:both;'></div>
                             </div>";
                 }
             }
-            
+
             echo "</div>
-                    
+
             <div class='report'>
                 Âñåãî: <span id='quantity'>0</span> òîâàðîâ íà <span id='summary'>0</span> ãðí.
             </div>
-            
+
             <input type='hidden' name='summary'  value='' id='summaryValue'>
             <input type='hidden' name='user_id'  value='" . $order['user_id'] . "'>
             <input type='hidden' name='order_id' value='" . $order['order_id'] . "'>
             <input type='hidden' name='send'     value='edit-order'>";
-            
+
             echo "<div class='clear'></div>";
-            
+
             // Äëÿ XML ôàéëà
             $dateFromDate = ExtractDate ((date ('Y-m-d H:i:s', $order['mktime'])));
-            
+
             // Ñìåíà ñòàòóñà
             if ($order['status'] != 6)
             {
                 echo "<div class='pager-pages'>
                         <div id='show'>Ïåðåâåñòè</div>
-                            <form method='POST' action='" . $_SERVER["REQUEST_URI"] . "' id='PerPageForm' name='SetStatus'>    
+                            <form method='POST' action='" . $_SERVER["REQUEST_URI"] . "' id='PerPageForm' name='SetStatus'>
                                 <select size='1' name='status' id='PerPage' >";
                 $sql4 = "SELECT * FROM zlo_book_status  WHERE id IN (1,2,4,5)";
                 $result4 = mysql_query ($sql4) or die (mysql_error ());
                 if (mysql_affected_rows () != 0)
                 {
-                    
+
                     while ($row4 = mysql_fetch_assoc ($result4))
                     {
                         if ($row4['id'] == $order['status'])
@@ -2387,23 +2367,23 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
                     echo "<input type='hidden' name='action' value='status'>
                      <input type='hidden' name='order_id' value='" . $order['order_id'] . "'>";
                 }
-                
+
                 echo "</form>";
-                
+
                 echo "
                 <div id='records'><input type='submit' value='Ïåðåâåñòè' class='button-save' onclick=\"if(document.getElementById('mcomment').value=='' && document.getElementById('PerPage').value=='5'){ alert('Äëÿ ñìåíû ñòàòóñà çàêàçà íà \'Îòìåíåí\', îáÿçàòåëüíî, çàïîëíåíèå ïîëÿ \'Êîìåíòàðèé (ìåíåäæåðà)\''); return false;} else document.forms['SetStatus'].submit();\" ></div>
                 <div id='records'><input type='submit' class='button-save' title='Ñîõðàíèòü' value='Ñîõðàíèòü' onclick=\"document.forms['edit_order'].submit();\"></div>
                 <div id='records'><a href='/account/admin/orders.php?action=print&order_id=" . $order['order_id'] . "' target='_new' class='button-save'>Ïå÷àòü</a></div>";
-                
+
                 if (is_file ($_SERVER['DOCUMENT_ROOT'] . "/xml/" . $dateFromDate[0] . "/" . $dateFromDate[1] . "/order_" . $order['order_id'] . ".xml"))
                 {
                     echo "<div id='records'><a href='/xml/" . $dateFromDate[0] . "/" . $dateFromDate[1] . "/order_" . $order['order_id'] . ".xml'><img src='/account/pic/xml.png' width='38px' title='xml çàêàç ïîëüçîâàòåëÿ'></a></div>";
                 }
-                
+
                 echo "</div>";
             }
             echo "</fieldset></div>";
-            
+
             echo "</div>";
         }
     }
@@ -2419,16 +2399,16 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;edit&#39;)
 if (isset ($_GET['action']) && $_GET['action'] == 'add')
 {
-    
+
     if (isset ($_POST['user']))
     {
     }
-    
+
     $user = array ();
-    
+
     if (isset ($_GET['user']))
     {
-        
+
         $sql = "SELECT * FROM zlo_users WHERE id='" . $_GET['user'] . "'";
         $result = mysql_query ($sql) or die (mysql_error ());
         if (mysql_affected_rows () != 0)
@@ -2438,17 +2418,17 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
     }
     else
     {
-        
+
         if (isset ($_POST))
         {
             $user = $_POST['user'];
         }
     }
-    
+
     echo "<form action='' method='POST' name='add_order' id='add-item'>";
     echo "<div class='add-order'>";
     echo "<div class='orders'>";
-    
+
     echo "
     <div class=order-info>
     <fieldset id='order-info'>
@@ -2456,36 +2436,42 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
     <div style='float:left;width:400px;'>
         <label>Äàòà:</label>
         <div class=info>" . date ('d-m-Y H:i:s') . "</div>";
-    
+
     echo "<label>Îïëà÷åí:</label>
-	<div class=info style='float:left;padding-right:20px;'>
-		<select name='paid'>
-		<option value='0' " . (($user['paid'] == 0) ? 'selected' : '') . ">íåò</option>	
-		<option value='1' " . (($user['paid'] == 1) ? 'selected' : '') . ">äà</option>		
-		</select>
-	</div>
-	<div>
-	<label style='width:50px'>Ìåòêà:</label>
-	<div class=info>
-		<select name='label'>
-					";
+    <div class=info style='float:left;padding-right:20px;'>
+        <select name='paid'>
+        <option value='0' " . (($user['paid'] == 0) ? 'selected' : '') . ">íåò</option>
+        <option value='1' " . (($user['paid'] == 1) ? 'selected' : '') . ">äà</option>
+        </select>
+    </div>
+    <div>
+    <label style='width:50px'>Ìåòêà:</label>
+    <div class=info>
+        <select name='label'>";
+
         for ($i = 0; $i <= 10; $i ++)
         {
+            // ***** Àäìèí ðåæèì *****
+            if (in_array ($i, array (9, 10)) && ! in_array ($_SESSION['admin']['id'], array (1, 19, 20)))
+            {
+                CONTINUE;
+            }
+
             print '<option value="' . $i . '" ' . (($user['label'] == $i) ? 'selected' : '') . '>' . $i . '</option>';
         }
-    echo "</select>		
-		</div>				
+    echo "</select>
+        </div>
     </div>";
-    
+
     if (! isset ($_GET['user']))
     {
         echo "<div class='new'>Ïî óìîë÷àíèþ<input type='checkbox' onChange='newUnknownUser();' id='default'></div>";
     }
-    
+
     if (isset ($_GET['user']))
     {
-        
+
         $readonly = 'readonly="readonly"';
         $disabled = 'disabled="disabled"';
     }
@@ -2494,7 +2480,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
         $readonly = '';
         $disabled = '';
     }
-    
+
     echo "
     <label>Email:<font color='red'>*</font></label>
     <div class=info><input type='text' style='width:300px;' name='user[email]' value='" . $user['email'] . "' class='validate[required,user[email]] text-input' id='emailValue' $readonly autocomplete='off' onkeyup=livesearchEmail(this.value,'(0)')></div>
@@ -2502,8 +2488,8 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
     <div class='livesearch-email-block'>
     <div id='livesearch-email-list'></div>
     </div>
-    <!-- ---> 
-    
+    <!-- --->
+
     <label>Òåëåôîí:<font color='red'>*</font></label>
     <div class=info><input type='text' style='width:300px;' name='user[tel]' value='" . $user['tel'] . "' class='validate[required,custom[cell_phone]] text-input' id='telValue' $readonly autocomplete='off' onkeyup=livesearchTel(this.value,'(0)')></div>
     <!-- search --->
@@ -2511,39 +2497,39 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
     <div id='livesearch-tel-list'></div>
     </div>
     <!-- --->
-            
-    
+
+
     <label>Êëèåíò:<font color='red'>*</font></label>
     <div class=info><input type='text' style='width:300px;' name='user[username]' value='" . $user['username'] . "' id='usernameValue' $readonly></div>
-            
+
     <label>Òåëåôîí 2:</label>
     <div class=info><input type='text' style='width:300px;' name='user[tel2]' value='" . $user['tel2'] . "' id='tel2Value'></div>";
-    
+
     echo "
     <label>¹ êàðòî÷êè:</label>
     <div class=info>
         <input type='text' name='user[cards]' value='" . $user['cards'] . "' style='width:300px;' id='cardsValue'>
     </div>";
-    
-    echo "    
+
+    echo "
     <label>Êîìåíòàðèé:</label>
     <div class=info><textarea rows='2' style='width:300px;' name='user[comment]' cols='30' name='comment'>" . $user['comment'] . "</textarea></div>";
-    
+
     // ãðóïïà
     echo "<label>Ãðóïïà</label>";
-    
+
     echo "<select style='width:300px;'  name='user[group]' id='usergroup' $disabled >";
         viewBookSelectValue ('zlo_users_group', 'id', 'name', $user['group']);
     echo "</select>";
-    
+
     // hidden
     if (isset ($_GET['user']))
     {
         echo "<input type='hidden' name='user[group]' value='" . $user['group'] . "'>";
     }
-    
+
     echo "<input type='hidden' name='user[user_id]' value='" . $user['id'] . "' id='user_id'>";
-    
+
     echo "</div><div style='float:right;'>
         <label>Äîñòàâêà</label>
         <div class=info>
@@ -2551,29 +2537,29 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
             viewBookSelectValue ('zlo_book_delivery', 'id', 'title', $user['delivery']);
         echo "</select>
     </div>";
-    
-    echo "  
+
+    echo "
     <label>Äåêëàðàöèÿ ¹:</label>
     <div class=info><input type='text' name='user[declaration]' style='width:300px;' value='" . $user['declaration'] . "' id='declarationValidate'></div>";
-    
-    echo "  
+
+    echo "
     <label>¹ ñêëàäà:</label>
     <div class=info><input type='text' name='user[warehouse]' style='width:300px;' value='" . $user['warehouse'] . "' id='warehouseValidate'></div>";
-    
+
         $array_method = array (
             "Îïëàòèòü íàëè÷íûìè",
             "Îïëàòèòü íà êàðòó Ïðèâàò Áàíêà",
             "Îïëàòèòü ïî áåçíàëè÷íîìó ðàñ÷åòó",
             "Îïëàòèòü Ïðàâåêñ-òåëåãðàô",
             "Íàëîæåííûì ïëàòåæîì",
-            "Îïëàòèòü íà Áàíê Áîãóñëàâ" 
+            "Îïëàòèòü íà Áàíê Áîãóñëàâ"
         );
-        
+
     echo "
-	<div class=info>
-    	<label>Ñïîñîá îïëàòû:</label>
-    	<select  name='user[payment]' style='width:300px'><option value=''></option>";
-    
+    <div class=info>
+        <label>Ñïîñîá îïëàòû:</label>
+        <select  name='user[payment]' style='width:300px'><option value=''></option>";
+
         foreach ($array_method as $method)
         {
             echo '<option value="' . $method . '" ';
@@ -2581,27 +2567,27 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                 echo 'selected';
             echo '>' . $method . '</option>';
         }
-    
+
     echo "</select>
     </div>";
-    
+
     echo "
     <label>Ñòðàõîâêà:</label>
     <div class=info><input type='text' name='user[insurance]' style='width:300px;' value='" . $user['insurance'] . "' id='insuranceValidate'></div>";
-    
+
     echo "
     <label>Ñóììà íàëîæåííîãî:</label>
     <div class=info><input type='text' name='user[sumn]' style='width:300px;' value='" . $user['sumn'] . "' id='insuranceValidate'></div>";
             $array_method = array (
                 "Ïîëó÷àòåëÿ",
-                "Îòïðàâèòåëÿ" 
+                "Îòïðàâèòåëÿ"
             );
     echo "
-	<div class=info>
-    	<label>Îòïðàâêà çà ñ÷åò:</label>
-    	<select  name='user[sends]' style='width:300px'><option value=''></option>";
-        
+    <div class=info>
+        <label>Îòïðàâêà çà ñ÷åò:</label>
+        <select  name='user[sends]' style='width:300px'><option value=''></option>";
+
         foreach ($array_method as $method)
         {
             echo '<option value="' . $method . '" ';
@@ -2622,14 +2608,14 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
     <label>Êîìåíòàðèé (ìåíåäæåðà):</label>
     <div class=info><textarea rows='4' id='mcomment' style='width:400px;' name='user[mcomment]' cols='30' name='mcomment'>" . $user['mcomment'] . "</textarea></div>
-	</div>
-	";
-    
+    </div>
+    ";
+
     echo "<div class=clear></div>
             </fieldset>
             <div class=clear></div>
             </div>";
-    
+
     echo "
             <fieldset id='order-details'>
             <legend>Òîâàðû</legend>
@@ -2643,7 +2629,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                 <div class='quant'>Êîë.</div>
                 <div class='price'>Öåíà</div>
                 <div class='total'>Ñóììà</div>
-				<div class='reservation'>Áðîíü</div>
+                <div class='reservation'>Áðîíü</div>
                 <div class='onstock'>Íàëè÷èå</div>
                 <div class='control' ></div>
                 <div class='clear'></div>
@@ -2660,7 +2646,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                             <div id='livesearch(0)'></div>
                             </div>
                             <!-- --->
-                        </div>    
+                        </div>
                         <div class='brand' id='brand(0)'>&nbsp;</div>
                         <div class='title' id='title(0)'>&nbsp;</div>
                         <div class='size' id='size(0)'>&nbsp;</div>
@@ -2668,20 +2654,20 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                         <div class='quant'><input type='text' name='item[quant][]' value='1' id='quantValue(0)' onBlur='SumPerRow();'></div>
                         <div class='price' id='price(0)'>0</div>
                         <div class='total' id='total(0)'>0</div>
-						<div class='reservation'><input type='text' size='3' name='item[reservation][]' value='' /></div>
+                        <div class='reservation'><input type='text' size='3' name='item[reservation][]' value='' /></div>
                         <div class='onstock' id='onstock(0)'></div>
-                        
+
                                 <input type='hidden' name='item[mod_id][]'      id='mod_idValue(0)'     value=''>
                                 <input type='hidden' name='item[product_id][]'  id='product_idValue(0)' value=''>
                                 <input type='hidden' name='item[brand_id][]'    id='brand_idValue(0)'   value=''>
                                 <input type='hidden' name='item[price][]'       id='priceValue(0)'      value='0'>
                                 <input type='hidden' name='item[total][]'       id='totalValue(0)'      value='0'>
-                        
+
                         <div class='control' style='float:right;'>
                             <a href='#' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                             <a href='#' onclick='RemoveDivLine(0);'><img src='/account/pic/del.png' width='18px'></a>
                         </div>
-                        
+
                         <div class='clear'></div>
                     </div>
                 </div>
@@ -2696,7 +2682,7 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                             <div id='livesearch(1)'></div>
                             </div>
                             <!-- --->
-                        </div>    
+                        </div>
                         <div class='brand' id='brand(1)'>&nbsp;</div>
                         <div class='title' id='title(1)'>&nbsp;</div>
                         <div class='size' id='size(1)'>&nbsp;</div>
@@ -2704,30 +2690,30 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
                         <div class='quant'><input type='text' name='item[quant][]' value='1' id='quantValue(1)' onBlur='SumPerRow();'></div>
                         <div class='price' id='price(1)'>0</div>
                         <div class='total' id='total(1)'>0</div>
-						<div class='reservation'><input type='text' size='3' name='item[reservation][]' value='' /></div>
+                        <div class='reservation'><input type='text' size='3' name='item[reservation][]' value='' /></div>
                         <div class='onstock' id='onstock(1)'></div>
-                        
+
                                 <input type='hidden' name='item[mod_id][]'      id='mod_idValue(1)'     value=''>
                                 <input type='hidden' name='item[product_id][]'  id='product_idValue(1)' value=''>
                                 <input type='hidden' name='item[brand_id][]'    id='brand_idValue(1)'   value=''>
                                 <input type='hidden' name='item[price][]'       id='priceValue(1)'      value='0'>
                                 <input type='hidden' name='item[total][]'       id='totalValue(1)'      value='0'>
-                        
+
                         <div class='control' style='float:right;'>
                             <a href='#' onclick='AddRow()'><img src='/account/pic/add2.png' width='18px'></a>
                             <a href='#' onclick='RemoveDivLine(1);'><img src='/account/pic/del.png' width='18px'></a>
                         </div>
-                        
+
                         <div class='clear'></div>
                     </div>
                 </div>
             </div>
-            
+
                 <div class='report'>
-                    Ñòîèìîñòü äîñòàâêè <input type='text' size='10' name='cost_delivery' id='cost_delivery' value='0' onBlur='SumPerRow()' />	
-					Âñåãî: <span id='quantity'>0</span> òîâàðîâ íà <span id='summary'>0</span> ãðí.
+                    Ñòîèìîñòü äîñòàâêè <input type='text' size='10' name='cost_delivery' id='cost_delivery' value='0' onBlur='SumPerRow()' />
+                    Âñåãî: <span id='quantity'>0</span> òîâàðîâ íà <span id='summary'>0</span> ãðí.
                 </div>
-                
+
                 <input type='hidden' name='summary' id='summaryValue' value=''>
                 <input type='hidden' name='send' value='add-order'>
                 <input type='submit' class='button-add' title='Äîáàâèòü' value='Äîáàâèòü' onclick=\"document.form.submit();\">
@@ -2735,12 +2721,12 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
            </fieldset >
         </div>
         </form>";
-    
+
     // =====================
     // ===== javascript ====
     // =====================
-   
-    echo "    
+
+    echo "
     <script>
         jQuery(document).ready(function(){
             // binds form submission and fields to the validation engine
@@ -2755,43 +2741,43 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;add&#39;)
 if (isset ($_GET['action']) && $_GET['action'] == 'print')
 {
-    
+
     // =========== Ãåíåðèì òàáëèöó ===========
-    
+
     if (! isset ($_GET['status']))
     {
         $_GET['status'] = 1;
     }
-    
-    $sql = "SELECT o.*,u.*, o.id as order_id,o.city as city 
+
+    $sql = "SELECT o.*,u.*, o.id as order_id,o.city as city
             FROM catalogs_orders as o
             RIGHT JOIN zlo_users as u on u.id=o.user_id
             WHERE o.id='" . $_GET['order_id'] . "' ";
-    
-    $sql = "SELECT o.*, o.id as order_id,o.city as city,adm.login as meneger 
+
+    $sql = "SELECT o.*, o.id as order_id,o.city as city,adm.login as meneger
             FROM catalogs_orders as o
-			LEFT JOIN zlo_admin adm ON adm.id=o.meneger
+            LEFT JOIN zlo_admin adm ON adm.id=o.meneger
             WHERE o.id='" . $_GET['order_id'] . "' ";
     $result = mysql_query ($sql) or die (mysql_error ());
     if (mysql_affected_rows () != 0)
     {
         $view = '';
         $view .= "<div class='print'>";
-        
+
         $order = mysql_fetch_assoc ($result);
-        
+
         $view .= "
         <div class='client'>
-            <table>    
+            <table>
                 <tr>
                     <td>Ìåíåäæåð: </td>
                     <td>" . $order['meneger'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Çàêàç # </td>
                     <td>" . $order['order_id'] . "</td>
                 </tr>
-                <tr>    
+                <tr>
                     <td>Äàòà: </td>
                     <td>" . date ('Y-m-d H:i:s', $order['mktime']) . "</td>
                 </tr>
@@ -2811,87 +2797,87 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;print&#39;)
                     <td>Äîï. òåë: </td>
                     <td>" . $order['phonemob'] . "</td>
                 </tr>
-				 <tr>
+                 <tr>
                     <td>¹ êàðòî÷êè: </td>
                     <td>" . $order['cards'] . "</td>
                 </tr>
                 <tr>
                     <td>Êîìåíòàðèé: </td>
                     <td>" . $order['comment'] . "</td>
-                </tr>						
+                </tr>
                 <tr>
                     <td>Äîñòàâêà: </td>
                     <td>" . viewBook ('zlo_book_delivery', $order['delivery'], 'id', 'title') . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Äåêëàðàöèÿ ¹: </td>
                     <td>" . $order['declaration'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>¹ ñêëàäà: </td>
                     <td>" . $order['warehouse'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Ñïîñîá îïëàòû: </td>
                     <td>" . $order['payment'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Ñòðàõîâêà: </td>
                     <td>" . $order['insurance'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Ñóììà íàëîæåííîãî: </td>
                     <td>" . $order['sumn'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Îòïðàâêà çà ñ÷åò: </td>
                     <td>" . $order['sends'] . "</td>
-                </tr>						
+                </tr>
                 <tr>
                     <td>Ãîðîä: </td>
                     <td>" . $order['city'] . "</td>
-                </tr>				
+                </tr>
                 <tr>
                     <td>Àäðåñ: </td>
                     <td>" . $order['adress'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Êîìåíòàðèé (ìåíåäæåðà): </td>
                     <td>" . $order['mcomment'] . "</td>
                 </tr>
             </table>
         </div>";
-        
+
         // Òàáëèöà òîâàðîâ
-        
-        $sql3 = "SELECT * 
+
+        $sql3 = "SELECT *
                 FROM catalogs_orders_products
                 WHERE `order_id`='" . $order['order_id'] . "' ";
         $result3 = mysql_query ($sql3) or die (mysql_error ());
         if (mysql_affected_rows () != 0)
         {
             $i = 0;
-            
+
             $view .= "<div class='details'>";
-            
+
             $sum = array ();
             while ($item_id = mysql_fetch_assoc ($result3))
             {
                 $i ++;
-                
-                $sql4 = "SELECT *,IF(m.cine>0,m.cine,p.cine) as cine 
+
+                $sql4 = "SELECT *,IF(m.cine>0,m.cine,p.cine) as cine
                         FROM catalogs_modifications as m
                         LEFT JOIN catalogs_products as p
-                        ON p.id=m.product_id 
+                        ON p.id=m.product_id
                         WHERE m.id='" . $item_id['product_id'] . "' ";
                 $result4 = mysql_query ($sql4) or die (mysql_error ());
                 if (mysql_affected_rows () == 0111)
                 {
-                    $sql4 = "SELECT m.*, m.id as mod_id, p.*,IF(m.cine>0,m.cine,p.cine) as cine 
+                    $sql4 = "SELECT m.*, m.id as mod_id, p.*,IF(m.cine>0,m.cine,p.cine) as cine
                             from catalogs_modifications as m
-                            LEFT JOIN catalogs_products as p 
-                            ON p.id=m.product_id 
+                            LEFT JOIN catalogs_products as p
+                            ON p.id=m.product_id
                             WHERE m.code='" . $item_id['code'] . "' ";
                     $result4 = mysql_query ($sql4) or die (mysql_error ());
                 }
@@ -2899,69 +2885,69 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;print&#39;)
                 {
                     while ($item = mysql_fetch_assoc ($result4))
                     {
-                        
+
                         $view .= "
                            <table>
                                 <tr>
                                     <td>¹</td>
-                                    <td>$i .</td> 
-                                <td>&nbsp;</td>  
+                                    <td>$i .</td>
+                                <td>&nbsp;</td>
                                     <td>Êîä</td>
-                                    <td>" . $item['code'] . "</td> 
-                                <td>&nbsp;</td>    
+                                    <td>" . $item['code'] . "</td>
+                                <td>&nbsp;</td>
                                     <td>Áðåíä</td>
                                     <td>" . viewBook ('catalogs_brends', $item['brend_id'], 'id', 'name') . "</td>
-                                <td>&nbsp;</td>   
+                                <td>&nbsp;</td>
                                     <td>Íàçâàíèå</td>
                                     <td>" . $item['name'] . "</td>
-                                <td>&nbsp;</td>    
+                                <td>&nbsp;</td>
                                     <td>Ðàçìåð</td>
                                     <td>" . $item['size'] . "</td>
-                                <td>&nbsp;</td>     
+                                <td>&nbsp;</td>
                                     <td>Öâåò</td>
                                     <td>" . $item['color'] . "</td>
-                                <td>&nbsp;</td>   
+                                <td>&nbsp;</td>
                                     <td>Êîë.</td>
                                     <td>" . $item_id['count'] . "</td>
-                                <td>&nbsp;</td> 
+                                <td>&nbsp;</td>
                                     <td>Öåíà</td>
-                                    <td>" . "(" . $item_id['product_cine_id'] . ") " . $item['cine'] . "</td> 
-                                <td>&nbsp;</td> 
+                                    <td>" . "(" . $item_id['product_cine_id'] . ") " . $item['cine'] . "</td>
+                                <td>&nbsp;</td>
                                     <td>Ñóììà</td>
                                     <td>" . ($item_id['product_cine_id'] * $item_id['count']) . "</td>
-                                <td>&nbsp;</td> 
+                                <td>&nbsp;</td>
                                     <td>Áðîíü</td>
-                                    <td>" . $item_id['reservation'] . "</td> 
-                                </tr>                                
+                                    <td>" . $item_id['reservation'] . "</td>
+                                </tr>
                             </table>";
                         $sum[] = ($item_id['product_cine_id'] * $item_id['count']);
                     }
                 }
             }
-            
+
             $view .= "
             <span class='total'>Îáùàÿ ñóììà: " . array_sum ($sum) . " ãðí. </span>
                <span class='total'>Ñòîèìîñòü äîñòàâêè: " . $order['cost_delivery'] . " ãðí. </span>
             </div>";
         }
-        
+
         $view .= "</div>";
-        
+
         // Âûâîäèì 2 ðàçà
-        
+
         echo $view;
         echo "<div class='print'><div class='separator'></div></div>";
         $view2 = '';
         $view2 .= "<div class='print'>";
-        
+
         $view2 .= "
         <div class='client'>
-            <table style='font-size:16px;'>    
+            <table style='font-size:16px;'>
                 <tr>
                     <td>Çàêàç # </td>
                     <td>" . $order['order_id'] . "</td>
                 </tr>
-                <tr>    
+                <tr>
                     <td>Äàòà: </td>
                     <td>" . date ('Y-m-d H:i:s', $order['mktime']) . "</td>
                 </tr>
@@ -2976,33 +2962,32 @@ if (isset ($_GET[&#39;action&#39;]) &amp;&amp; $_GET[&#39;action&#39;] == &#39;print&#39;)
                 <tr>
                     <td>Ãîðîä: </td>
                     <td>" . $order['city'] . "</td>
-                </tr>						
-				<tr>
+                </tr>
+                <tr>
                     <td>¹ ñêëàäà: </td>
                     <td>" . $order['warehouse'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Ñòðàõîâêà: </td>
                     <td>" . $order['insurance'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Ñóììà íàëîæåííîãî: </td>
                     <td>" . $order['sumn'] . "</td>
                 </tr>
-				<tr>
+                <tr>
                     <td>Îòïðàâêà çà ñ÷åò: </td>
                     <td>" . $order['sends'] . "</td>
-                </tr>						
-				<tr>
+                </tr>
+                <tr>
                     <td>Êîìåíòàðèé: </td>
                     <td>" . $order['mcomment'] . "</td>
                 </tr>
             </table>
             </div>
-		</div>";
-        
+        </div>";
+
         echo $view2;
     }
-}
-?>
+}
 \ No newline at end of file
@@ -266,7 +266,14 @@ function check(n){
 </td>
 <td>
  <table cellpadding="0" cellspacing="0" width="100%" height="100%">
-  <tr><td class="bord" align="right"><a href="{$smarty.const.URL}admin.php?action=rules" id="link1">Óïðàâëåíèå ñòðàíèöàìè</a></td></tr>
+  {php}
+
+      // ***** Àäìèí ðåæèì *****
+      if (in_array ($_SESSION['admin']['group'], array (1)))
+      {
+          echo '<tr><td class="bord" align="right"><a href="/admin.php?action=rules" id="link1">Óïðàâëåíèå ñòðàíèöàìè</a></td></tr>';
+      }
+  {/php}
   <tr><td height="100%" class="content_site" valign="top">
    <h1 class="H1Title">{php} echo $H1Title;{/php}</h1>