2018-01-28 16:40:49 +00:00
< ? php
session_start ();
if ( $_SESSION [ 'uid' ] == null ) header ( " Location: index.php " );
include " config.php " ;
$user = mysql_fetch_array ( mysql_query ( " SELECT * FROM `users` WHERE `id` = ' " . $_SESSION [ 'uid' ] . " ' LIMIT 1; " ));
include " functions.php " ;
if ( $user [ 'room' ] != 50 ) { header ( " Location: main.php " ); die (); }
$d = mysql_fetch_array ( mysql_query ( " SELECT sum(`massa`) FROM `inventory` WHERE `owner`=' " . $_SESSION [ 'uid' ] . " ' AND `dressed`=0 AND `setsale`=0; " ));
if ( $user [ 'battle' ] != 0 ) { header ( 'location: fbattle.php' ); die (); }
//$_GET['otdel'] = 1;
if ( isset ( $_GET [ 'up' ])){
$ids = $_GET [ 'up' ];
$cur = mysql_fetch_assoc ( mysql_query ( " select `id`,`name`,`nlevel` from `inventory` where `owner`=' " . $user [ 'id' ] . " ' and `id`=' " . $ids . " ' and `artefact`='1' " ));
if ( $cur [ 'id' ]){
$up_level = $cur [ 'nlevel' ] + 1 ;
$cur_up = mysql_fetch_assoc ( mysql_query ( " select * from `ashop_up` where `name`=' " . $cur [ 'name' ] . " ' and `level_up`=' " . $up_level . " ' " ));
if ( $cur_up [ 'id' ]){
mysql_query ( " update `inventory` set `upgrade`=' " . $cur_up [ 'level_up' ] . " ',`nlevel`=' " . $cur_up [ 'level_up' ] . " ',`minu`=' " . $cur_up [ 'minu' ] . " ',`maxu`=' " . $cur_up [ 'maxu' ] . " ',`gsila`=' " . $cur_up [ 'gsila' ] . " ',`glovk`=' " . $cur_up [ 'glovk' ] . " ',`ginta`=' " . $cur_up [ 'ginta' ] . " ',`gintel`=' " . $cur_up [ 'gintel' ] . " ',`ghp`=' " . $cur_up [ 'ghp' ] . " ',`mfkrit`=' " . $cur_up [ 'mfkrit' ] . " ',`mfakrit`=' " . $cur_up [ 'mfakrit' ] . " ',`mfuvorot`=' " . $cur_up [ 'mfuvorot' ] . " ',`mfauvorot`=' " . $cur_up [ 'mfauvorot' ] . " ',`gnoj`=' " . $cur_up [ 'gnoj' ] . " ',`gtopor`=' " . $cur_up [ 'gtopor' ] . " ',`gdubina`=' " . $cur_up [ 'gdubina' ] . " ',`gmech`=' " . $cur_up [ 'gmech' ] . " ',`bron1`=' " . $cur_up [ 'bron1' ] . " ',`bron2`=' " . $cur_up [ 'bron2' ] . " ',`bron3`=' " . $cur_up [ 'bron3' ] . " ',`bron4`=' " . $cur_up [ 'bron4' ] . " ' where `owner`=' " . $user [ 'id' ] . " ' and `id`=' " . $cur [ 'id' ] . " ' " );
echo " <font color=green><b>Артефакт успешно улучшен!</b></font> " ;
} else {
echo " <font color=red><b>Эта вещь дальше не улучшается!</b></font> " ;
}
}
}
if ( $_POST [ 'enter' ] && $_POST [ 'pass' ]) {
$data = mysql_query ( " SELECT * FROM `bank` WHERE `owner`=' " . $user [ 'id' ] . " ' AND `id`=' " . $_POST [ 'id' ] . " ' AND `pass`=' " . md5 ( $_POST [ 'pass' ]) . " '; " );
echo mysql_error ();
$data = mysql_fetch_array ( $data );
if ( $data ) {
$_SESSION [ 'bankid' ] = $_POST [ 'id' ];
err ( 'Удачный вход.' );
}
else {
err ( 'Ошибка входа.' );
}
}
$bank = mysql_fetch_array ( mysql_query ( " SELECT * FROM `bank` WHERE `id`=' " . $_SESSION [ 'bankid' ] . " '; " ));
if (( $_GET [ 'set' ] OR $_POST [ 'set' ])) {
if ( $_GET [ 'set' ]) { $set = $_GET [ 'set' ]; }
if ( $_POST [ 'set' ]) { $set = $_POST [ 'set' ]; }
if ( ! $_POST [ 'count' ]) { $_POST [ 'count' ] = 1 ; }
if ( ! is_numeric ( $_POST [ 'count' ]) || $_POST [ 'count' ] != (( int ) $_POST [ 'count' ])) {
$_POST [ 'count' ] = 0 ;
$count_ok = 0 ;
}
elseif ( $_POST [ 'count' ] < 1 ) {
$_POST [ 'count' ] = 1 ;
}
else $count_ok = 1 ;
$dress = mysql_fetch_array ( mysql_query ( " SELECT * FROM `ashop` WHERE `id`=' " . $set . " ' LIMIT 1; " ));
if ( $count_ok == 0 ) {
echo " <font color=red><b>Неправильно введено количество</b></font> " ;
//$good = 0;
}
elseif (( $dress [ 'massa' ] * $_POST [ 'count' ] + $d [ 0 ]) > ( get_meshok ())) {
echo " <font color=red><b>Недостаточно места в рюкзаке.</b></font> " ;
//$good = 0;
}
elseif ( $count_ok == 1 && ( $bank [ 'ekr' ] >= ( $dress [ 'ecost' ] * $_POST [ 'count' ])) && ( $dress [ 'count' ] >= $_POST [ 'count' ])) {
for ( $k = 1 ; $k <= $_POST [ 'count' ]; $k ++ ) {
if ( mysql_query ( " INSERT INTO `inventory`
( `prototype` , `owner` , `name` , `type` , `massa` , `cost` , `img` , `maxdur` , `isrep` ,
`gsila` , `glovk` , `ginta` , `gintel` , `ghp` , `gnoj` , `gtopor` , `gdubina` , `gmech` , `gfire` , `gwater` , `gair` , `gearth` , `glight` , `ggray` , `gdark` , `needident` , `nsila` , `nlovk` , `ninta` , `nintel` , `nmudra` , `nvinos` , `nnoj` , `ntopor` , `ndubina` , `nmech` , `nfire` , `nwater` , `nair` , `nearth` , `nlight` , `ngray` , `ndark` ,
`mfkrit` , `mfakrit` , `mfuvorot` , `mfauvorot` , `bron1` , `bron2` , `bron3` , `bron4` , `maxu` , `minu` , `magic` , `nlevel` , `nalign` , `dategoden` , `goden` , `otdel` )
VALUES
( '{$dress[' id ']}' , '{$_SESSION[' uid ']}' , '{$dress[' name ']}' , '{$dress[' type ']}' ,{ $dress [ 'massa' ]},{ $dress [ 'cost' ]}, '{$dress[' img ']}' ,{ $dress [ 'maxdur' ]},{ $dress [ 'isrep' ]}, '{$dress[' gsila ']}' , '{$dress[' glovk ']}' , '{$dress[' ginta ']}' , '{$dress[' gintel ']}' , '{$dress[' ghp ']}' , '{$dress[' gnoj ']}' , '{$dress[' gtopor ']}' , '{$dress[' gdubina ']}' , '{$dress[' gmech ']}' , '{$dress[' gfire ']}' , '{$dress[' gwater ']}' , '{$dress[' gair ']}' , '{$dress[' gearth ']}' , '{$dress[' glight ']}' , '{$dress[' ggray ']}' , '{$dress[' gdark ']}' , '{$dress[' needident ']}' , '{$dress[' nsila ']}' , '{$dress[' nlovk ']}' , '{$dress[' ninta ']}' , '{$dress[' nintel ']}' , '{$dress[' nmudra ']}' , '{$dress[' nvinos ']}' , '{$dress[' nnoj ']}' , '{$dress[' ntopor ']}' , '{$dress[' ndubina ']}' , '{$dress[' nmech ']}' , '{$dress[' nfire ']}' , '{$dress[' nwater ']}' , '{$dress[' nair ']}' , '{$dress[' nearth ']}' , '{$dress[' nlight ']}' , '{$dress[' ngray ']}' , '{$dress[' ndark ']}' ,
'{$dress[' mfkrit ']}' , '{$dress[' mfakrit ']}' , '{$dress[' mfuvorot ']}' , '{$dress[' mfauvorot ']}' , '{$dress[' bron1 ']}' , '{$dress[' bron3 ']}' , '{$dress[' bron2 ']}' , '{$dress[' bron4 ']}' , '{$dress[' maxu ']}' , '{$dress[' minu ']}' , '{$dress[' magic ']}' , '{$dress[' nlevel ']}' , '{$dress[' nalign ']}' , '".(($dress[' goden '])?($dress[' goden ']*24*60*60+time()):"")."' , '{$dress[' goden ']}' , '{$dress[' razdel ']}' ); " ))
{
$good = 1 ;
}
else {
$good = 0 ;
}
}
if ( $good ) {
mysql_query ( " UPDATE `ashop` SET `count`=`count`- " . $_POST [ 'count' ] . " WHERE `id`=' " . $set . " ' LIMIT 1; " );
$limit = $_POST [ 'count' ];
$invdb = mysql_query ( " SELECT `id` FROM `inventory` WHERE `name` = ' " . $dress [ 'name' ] . " ' ORDER by `id` DESC LIMIT " . $limit . " ; " );
if ( $limit == 1 ) {
$dressinv = mysql_fetch_array ( $invdb );
$dressid = " cap " . $dressinv [ 'id' ];
$dresscount = " " ;
}
else {
$dressid = " " ;
while ( $dressinv = mysql_fetch_array ( $invdb )) {
$dressid .= " cap " . $dressinv [ 'id' ] . " , " ;
}
$dresscount = " (x " . $_POST [ 'count' ] . " ) " ;
}
$allcost = $_POST [ 'count' ] * $dress [ 'ecost' ];
mysql_query ( " INSERT INTO `delo` (`id` , `author` ,`pers`, `text`, `type`, `date`) VALUES ('','0',' { $_SESSION [ 'uid' ] } ',' \" " . $user [ 'login' ] . " \" купил товар: \" " . $dress [ 'name' ] . " \" " . $dresscount . " id:( " . $dressid . " ) [0/ " . $dress [ 'maxdur' ] . " ] за " . $allcost . " екр. ',1,' " . time () . " '); " );
echo " <font color=red><b>Вы купили { $_POST [ 'count' ] } шт. \" { $dress [ 'name' ] } \" .</b></font> " ;
mysql_query ( " UPDATE `bank` set `ekr`=`ekr`-' " . ( $allcost ) . " ' WHERE `id`=' " . $_SESSION [ 'bankid' ] . " '; " );
$bank [ 'ekr' ] -= $allcost ;
}
}
else {
echo " <font color=red><b>Недостаточно денег или нет вещей в наличии.</b></font> " ;
}
}
?>
< html >< head >
< link rel = stylesheet type = " text/css " href = " css/main.css " >
< meta content = " text/html; charset=utf-8 " http - equiv = Content - type >
< meta Http - Equiv = Cache - Control Content = no - cache >
< meta http - equiv = PRAGMA content = NO - CACHE >
< meta Http - Equiv = Expires Content = 0 >
< script language = " JavaScript " >
function AddCount ( name , txt ) {
document . all ( " hint3 " ) . innerHTML = '<form method=post style="margin:0px; padding:0px;"><table border=0 width=100% cellspacing=1 cellpadding=0 bgcolor="#CCC3AA"><tr><td align=center><B>Купить неск. штук</td><td width=20 align=right valign=top style="cursor: hand" onclick="closehint3();"><big><b>x</td></tr><tr><td colspan=2>' +
'<table border=0 width=100% cellspacing=0 cellpadding=0 bgcolor="#FFF6DD"><tr><input type="hidden" name="set" value="' + name + '"><td colspan=2 align=center><b><i>' + txt + '</td></tr><tr><td width=80% align=right>' +
'Количество (шт.) <input type="text" name="count" size=4 ></td><td width=20%> <input type="submit" value=" »» ">' +
'</td></tr></table></td></tr></table></form>' ;
document . all ( " hint3 " ) . style . visibility = " visible " ;
document . all ( " hint3 " ) . style . left = 100 ;
document . all ( " hint3 " ) . style . top = 100 ;
document . all ( " count " ) . focus ();
}
// Закрывает окно
function closehint3 ()
{
document . all ( " hint3 " ) . style . visibility = " hidden " ;
}
</ script >
</ head >
< body leftmargin = 5 topmargin = 5 marginwidth = 5 marginheight = 5 bgcolor = #d4d4d4>
< table border = 0 width = 100 % cellspacing = " 0 " cellpadding = " 0 " >
< tr >< td >< h3 > Магазин Берёзка </ td >< td align = right >
< input type = " button " value = " Подсказка " style = " background-color:#A9AFC0 " onClick = " window.open('help/shop.html', 'help', 'height=300,width=500,location=no,menubar=no,status=no,toolbar=no,scrollbars=yes') " >
< input type = " submit " value = " Вернуться " name = " strah " onclick = " location.href='ashop.php'; " ></ td ></ tr >
</ table >
< ?
if ( ! $_SESSION [ 'bankid' ]) {
?>
< form method = post >
< fieldset style = " width:200px; height:130px; " >
< legend > Войти в счет </ legend >< br > & nbsp ; №
< ?
$banks = mysql_query ( " SELECT * FROM `bank` WHERE `owner` = " . $user [ 'id' ] . " ; " );
echo " <select style='width:150px' name=id> " ;
while ( $rah = mysql_fetch_array ( $banks )) {
echo " <option> " , $rah [ 'id' ], " </option> " ;
}
echo " </select> " ;
?>
< br > & nbsp ; Пароль < input type = password name = pass size = 21 >
< br >< br >
< center >< input type = submit name = 'enter' value = 'Войти' >
</ fieldset >
</ form >
< ?
die ();
}
?>
< table border = 0 width = 100 % cellspacing = " 0 " cellpadding = " 4 " >
< tr >
< form method = POST action = " ashop.php " >
< input type = " hidden " name = " sid " value = " " >
< input type = " hidden " name = " id " value = " 1 " >
< td valign = top align = left >
<!-- Магазин -->
< table border = 0 width = 100 % cellspacing = " 0 " cellpadding = " 0 " < ? if ( ! $_REQUEST [ 'present' ]) { echo 'bgcolor="#A5A5A5"' ;} ?> >
< tr >
< td align = center >< b >
< ?
if ( $_REQUEST [ 'compare' ] && ! $_REQUEST [ 'common' ] && ! $_REQUEST [ 'present' ]) {
echo " Составление подарочного букета " ;
}
elseif ( $_REQUEST [ 'present' ]) {
//echo "Составление подарочного букета";
}
else {
switch ( $_GET [ 'otdel' ]) {
case null :
echo " Оружие: кастеты,ножи " ;
$_GET [ 'otdel' ] = 1 ;
break ;
case 1 :
echo " Оружие: кастеты,ножи " ;
break ;
case 11 :
echo " Оружие: топоры " ;
break ;
case 12 :
echo " Оружие: дубины,булавы " ;
break ;
case 13 :
echo " Оружие: мечи " ;
break ;
case 14 :
echo " Оружие: луки и арбалеты " ;
break ;
case 2 :
echo " Одежда: сапоги " ;
break ;
case 21 :
echo " Одежда: перчатки " ;
break ;
case 22 :
echo " &Одежда: легкая броня " ;
break ;
case 23 :
echo " Одежда: тяжелая броня " ;
break ;
case 24 :
echo " Одежда: шлемы " ;
break ;
case 3 :
echo " Щиты " ;
break ;
case 4 :
echo " Ювелирные товары: серьги " ;
break ;
case 41 :
echo " Ювелирные товары: ожерелья " ;
break ;
case 42 :
echo " Ювелирные товары: кольца " ;
break ;
case 5 :
echo " Заклинания: нейтральные " ;
break ;
case 51 :
echo " Заклинания: боевые и защитные " ;
break ;
case 6 :
echo " Амуниция " ;
break ;
case 7 :
echo " Букеты " ;
break ;
}
}
?>
</ b ></ td >
</ tr >
< tr >< td ><!-- Рюкзак -->
< table border = 0 width = 100 % cellspacing = " 1 " cellpadding = " 2 " bgcolor = " #A5A5A5 " >
< ?
if ( $_REQUEST [ 'present' ]) {
if ( $_POST [ 'to_login' ] && $_POST [ 'flower' ]) {
$to = mysql_fetch_array ( mysql_query ( " SELECT * FROM `users` WHERE `login`=' " . $_POST [ 'to_login' ] . " ' LIMIT 1; " ));
if ( $_POST [ 'to_login' ] == $user [ 'login' ]) {
echo " <b><font color=red>Очень щедро дарить что-то самому с е б е ;)</font></b> " ;
}
elseif ( $to [ 'room' ] > 500 && $to [ 'room' ] < 561 ) {
echo " <b><font color=red>Персонаж в данный момент участвует в турнире в Башне Смерти. Попробуйте позже.</font></b> " ;
}
else {
if ( $_POST [ 'from' ] == 1 ) { $from = 'Аноним' ; }
elseif ( $_POST [ 'from' ] == 2 && $user [ 'klan' ]) { $from = ' клана ' . $user [ 'klan' ]; }
else { $from = $user [ 'login' ]; }
if ( $to ) if ( mysql_query ( " UPDATE `inventory` SET `owner`=' " . $to [ 'id' ] . " ', `present`=' " . $from . " ', `letter`=' " . $_POST [ 'podarok2' ] . " ' WHERE `present`='' AND `id`=' " . $_POST [ 'flower' ] . " ' AND `owner`=' " . $_SESSION [ 'uid' ] . " ' AND `dressed`=0 AND `setsale`=0; " )) {
$res = mysql_fetch_array ( mysql_query ( " SELECT * FROM `inventory` WHERE `id` = ' " . $_POST [ 'flower' ] . " ' LIMIT 1; " ));
$buket_name = $res [ 'name' ];
mysql_query ( " INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0',' " . $_SESSION [ 'uid' ] . " ','Подарен предмет \" " . $res [ 'name' ] . " \" id:(cap " . $res [ 'id' ] . " ) [ " . $res [ 'duration' ] . " / " . $res [ 'maxdur' ] . " ] от \" " . $from . " \" к \" " . $to [ 'login' ] . " \" ','1',' " . time () . " '); " );
mysql_query ( " INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0',' { $to [ 'id' ] } ','Подарен предмет \" " . $res [ 'name' ] . " \" id:(cap " . $res [ 'id' ] . " ) [ " . $res [ 'duration' ] . " / " . $res [ 'maxdur' ] . " ] от \" " . $from . " \" к \" " . $to [ 'login' ] . " \" ','1',' " . time () . " '); " );
if (( $_POST [ 'from' ] == 1 ) || ( $_POST [ 'from' ] == 2 )) {
$action = " подарил " ;
mysql_query ( " INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0',' " . $to [ 'id' ] . " ','Подарен предмет \" " . $res [ 'name' ] . " \" id:(cap " . $res [ 'id' ] . " ) [ " . $res [ 'duration' ] . " / " . $res [ 'maxdur' ] . " ] от \" " . $user [ 'login' ] . " \" к \" " . $to [ 'login' ] . " \" ','5',' " . time () . " '); " );
}
else {
if ( $user [ 'sex' ] == 0 ) { $action = " подарила " ; }
else { $action = " подарил " ; }
}
$us = mysql_fetch_array ( mysql_query ( " select `id` from `online` WHERE `date`>= " . ( time () - 60 ) . " AND `id` = ' " . $to [ 'id' ] . " ' LIMIT 1; " ));
if ( $us [ 0 ]) {
addchp ( '<font color=red>Внимание!</font> <span oncontextmenu=OpenMenu()>' . $from . '</span> ' . $action . ' вам <b>' . $buket_name . '</b>. ' , '{[]}' . $_POST [ 'to_login' ] . '{[]}' );
}
else {
// если в офе
mysql_query ( " INSERT INTO `telegraph` (`owner`,`date`,`text`) values (' " . $to [ 'id' ] . " ','',' " . '<font color=red>Внимание!</font> <span oncontextmenu=OpenMenu()>' . $from . '</span> ' . $action . ' вам <b>' . $buket_name . '</b>. ' . " '); " );
}
echo " <b><font color=red>Подарок удачно доставлен к \" " , $_POST [ 'to_login' ], " \" </font></b> " ;
}
echo mysql_error ();
}
}
?>
<!-- Подарить подарок -->
< form method = " post " >
< table cellspacing = 0 cellpadding = 0 width = 100 % bgcolor = #e0e0e2><td>
< input type = hidden name = present value = 1 >
Вы можете сделать подарок дорогому человеку . Ваш подарок будет отображаться в информации о персонаже .
< ol >
< li > Укажите логин персонажа , которому хотите сделать подарок < br >
Login < input type = text name = to_login value = " " >
< li > Цель подарка . Будет отображаться в информации о персонаже ( не более 60 символов ) < br >
< input type = text name = podarok2 value = " " maxlength = 60 size = 50 >
< li > Напишите текст сопроводительной записки ( в информации о персонаже не отображается ) < br >
< textarea name = txt rows = 6 cols = 80 ></ textarea >
< li > Выберите , от чьего имени подарок :< br >
2018-03-03 17:43:59 +00:00
< input type = radio name = from value = 0 checked > < ? nickname ( $user [ 'id' ]); ?> <br>
2018-01-28 16:40:49 +00:00
< input type = radio name = from value = 1 > анонимно < br >
< input type = radio name = from value = 2 > от имени клана < br >
< li > Нажмите кнопку < b > Подарить </ b > под предметом , который хотите преподнести в подарок :< br >
</ ol >
< input type = " hidden " name = " flower " id = " flower " value = " " >
< table border = 0 width = 100 % cellspacing = " 1 " cellpadding = " 2 " bgcolor = " #A5A5A5 " >
< ?
//print_r($_POST);
$data = mysql_query ( " SELECT * FROM `inventory` WHERE `owner`=' " . $_SESSION [ 'uid' ] . " ' AND `dressed`=0 AND (`name` LIKE '%Букет%' OR `name` LIKE '%Сувенир%' OR `name` LIKE '%Подарок%' OR `name` LIKE '%Валентинка%' OR `name` LIKE '%Открытка%' OR `name` LIKE 'Ель%' OR `name` LIKE '%Медаль%' OR `name` LIKE '%Статуэтка%') AND `setsale`=0 AND `present` = '' ORDER by `id` DESC; " );
while ( $row = mysql_fetch_array ( $data )) {
if ( ! in_array ( $row [ 'id' ], array_keys ( $_SESSION [ 'flowers' ]))) {
$row [ 'count' ] = 1 ;
if ( $i == 0 ) { $i = 1 ; $color = '#C7C7C7' ;} else { $i = 0 ; $color = '#D5D5D5' ; }
echo " <tr bgcolor= { $color } ><td align=center style='width:150px'><img src= \" i/sh/ { $row [ 'img' ] } \" border=0> " ;
?>
< br >< input type = submit onClick = " document.all['flower'].value= " < ? = $row [ 'id' ]; ?> "" value="Подарить">
</ td >
< ?
echo " <td valign=top> " ;
showitem ( $row );
echo " </td></tr> " ;
}
}
?>
</ table >
</ form >
< ?
}
else
{
$data = mysql_query ( " SELECT * FROM `inventory` WHERE `owner`=' " . $user [ 'id' ] . " ' and `artefact`='1' " );
while ( $row = mysql_fetch_array ( $data )) {
if ( $i == 0 ) { $i = 1 ; $color = '#C7C7C7' ;} else { $i = 0 ; $color = '#D5D5D5' ; }
// echo "<tr bgcolor=".$color.">";
?>
< ?
//echo "<td valign=top>";
showitem ( $row , 10 );
//echo "</td></tr>";
}
}
?>
</ table >
</ td ></ tr >
</ table >
</ td >
< td valign = top width = 280 >
< center >< b > М а с с а всех ваших вещей :
< ?
echo $d [ 0 ];
?> /<?=get_meshok()?><br>
У вас в наличии : < font color = " #339900 " >< ? = $bank [ 'ekr' ] ?> </font> екр.</b></center>
< hr >
< a href = ashop . php > Магазин Берёзка </ a >
< hr >
< div id = " hint3 " class = " ahint " ></ div >
</ td >
</ form >
</ tr >
</ table >
</ body >
</ html >