<?php session_start(); if (!($_SESSION['uid'] >0)) header("Location: index.php"); include "config.php"; $user = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE `id` = '{$_SESSION['uid']}' LIMIT 1;")); include "functions.php"; $d = mysql_fetch_array(mysql_query("SELECT sum(`massa`) FROM `inventory` WHERE `owner` = '{$user['id']}' AND `dressed` = 0 AND `setsale` = 0 ; ")); if ($user['room'] != 22) { header("Location: main.php"); die(); } if ($user['battle'] != 0) { header('location: fbattle.php'); die(); } if (($_GET['set'] OR $_POST['set'])) { if ($_GET['set']) { $set = $_GET['set']; } if ($_POST['set']) { $set = $_POST['set']; } if(!$_POST['count']) $_POST['count']=1; if(!is_numeric($_POST['count']) || $_POST['count']!=((int)$_POST['count'])) { $_POST['count']=0; $count_ok=0; } elseif ($_POST['count'] < 1) { $_POST['count'] =0; $count_ok=0; } else $count_ok=1; $dress = mysql_fetch_array(mysql_query("SELECT * FROM `ahero_shop` WHERE `id` = '{$set}' LIMIT 1;")); if ($count_ok==0) { echo "<font color=red><b>Неправильно введено количество</b></font>"; //$good = 0; } elseif (($dress['massa']*$_POST['count']+$d[0]) > (get_meshok())) { echo "<font color=red><b>Недостаточно места в рюкзаке.</b></font>"; //$good = 0; } elseif($count_ok==1 && ($user['doblest']>= ($dress['point']*$_POST['count'])) && ($dress['count'] >= $_POST['count'])) { for($k=1;$k<=$_POST['count'];$k++) { if(mysql_query("INSERT INTO `inventory` (`opisan`, `prototype`,`owner`,`name`,`type`,`massa`,`point`,`img`,`maxdur`,`isrep`, `gsila`,`glovk`,`ginta`,`gintel`,`ghp`,`gnoj`,`gtopor`,`gdubina`,`gmech`,`gfire`,`gwater`,`gair`,`gearth`,`glight`,`ggray`,`gdark`,`needident`,`nsila`,`nlovk`,`ninta`,`nintel`,`nmudra`,`nvinos`,`nnoj`,`ntopor`,`ndubina`,`nmech`,`nfire`,`nwater`,`nair`,`nearth`,`nlight`,`ngray`,`ndark`, `mfkrit`,`mfakrit`,`mfuvorot`,`mfauvorot`,`bron1`,`bron2`,`bron3`,`bron4`,`maxu`,`minu`,`magic`,`nlevel`,`nalign`,`dategoden`,`goden`,`otdel`,`gmp`,`gmeshok`,`encicl`,`artefact`, `koll` ) VALUES ('{$dress['opisan']}','{$dress['id']}','{$user['id']}','{$dress['name']}','{$dress['type']}',{$dress['massa']},{$dress['point']},'{$dress['img']}',{$dress['maxdur']},{$dress['isrep']},'{$dress['gsila']}','{$dress['glovk']}','{$dress['ginta']}','{$dress['gintel']}','{$dress['ghp']}','{$dress['gnoj']}','{$dress['gtopor']}','{$dress['gdubina']}','{$dress['gmech']}','{$dress['gfire']}','{$dress['gwater']}','{$dress['gair']}','{$dress['gearth']}','{$dress['glight']}','{$dress['ggray']}','{$dress['gdark']}','{$dress['needident']}','{$dress['nsila']}','{$dress['nlovk']}','{$dress['ninta']}','{$dress['nintel']}','{$dress['nmudra']}','{$dress['nvinos']}','{$dress['nnoj']}','{$dress['ntopor']}','{$dress['ndubina']}','{$dress['nmech']}','{$dress['nfire']}','{$dress['nwater']}','{$dress['nair']}','{$dress['nearth']}','{$dress['nlight']}','{$dress['ngray']}','{$dress['ndark']}', '{$dress['mfkrit']}','{$dress['mfakrit']}','{$dress['mfuvorot']}','{$dress['mfauvorot']}','{$dress['bron1']}','{$dress['bron2']}','{$dress['bron3']}','{$dress['bron4']}','{$dress['maxu']}','{$dress['minu']}','{$dress['magic']}','{$dress['nlevel']}','{$dress['nalign']}','".(($dress['goden'])?($dress['goden']*24*60*60+time()):"")."','{$dress['goden']}','{$dress['razdel']}','{$dress['gmp']}','{$dress['gmeshok']}','{$dress['encicl']}','{$dress['artefact']}','{$dress['koll']}' ) ;")) { $good = 1; } else { $good = 0; } } if ($good) { mysql_query("UPDATE `shop` SET `count`=`count`-{$_POST['count']} WHERE `id` = '{$set}' LIMIT 1;"); echo "<font color=red><b>Вы купили {$_POST['count']} шт. \"{$dress['name']}\".</b></font>"; mysql_query("UPDATE `users` set `doblest` = `doblest`- '".($_POST['count']*$dress['point'])."' WHERE id = {$user['id']} ;"); $user['money'] -= $_POST['count']*$dress['point']; $limit=$_POST['count']; $invdb = mysql_query("SELECT `id` FROM `inventory` WHERE `name` = '".$dress['name']."' ORDER by `id` DESC LIMIT ".$limit." ;" ); //$invdb = mysql_query("SELECT id FROM `inventory` WHERE `name` = '".{$dress['name']}."' ORDER by `id` DESC LIMIT $limit ;" ); if ($limit == 1) { $dressinv = mysql_fetch_array($invdb); $dressid = "cap".$dressinv['id']; $dresscount=" "; } else { $dressid=""; while ($dressinv = mysql_fetch_array($invdb)) { $dressid .= "cap".$dressinv['id'].","; } $dresscount="(x".$_POST['count'].") "; } $allcost=$_POST['count']*$dress['point']; mysql_query("INSERT INTO `delo` (`id` , `author` ,`pers`, `text`, `type`, `date`) VALUES ('','0','{$user['id']}','\"".$user['login']."\" купил товар: \"".$dress['name']."\" ".$dresscount."id:(".$dressid.") [0/".$dress['maxdur']."] за ".$allcost." кр. ',1,'".time()."');"); } else { } } else { echo "<font color=red><b>Недостаточно репутации или нет вещей в наличии.</b></font>"; } } ?> <HTML><HEAD> <link rel=stylesheet type="text/css" href="css/main.css"> <meta content="text/html; charset=utf-8" http-equiv=Content-type> <META Http-Equiv=Cache-Control Content=no-cache> <meta http-equiv=PRAGMA content=NO-CACHE> <META Http-Equiv=Expires Content=0> <SCRIPT LANGUAGE="JavaScript"> function AddCount(name, txt) { document.all("hint3").innerHTML = '<form method=post style="margin:0px; padding:0px;"><table border=0 width=100% cellspacing=1 cellpadding=0 bgcolor="#CCC3AA"><tr><td align=center><B>Купить неск. штук</td><td width=20 align=right valign=top style="cursor: hand" onclick="closehint3();"><BIG><B>x</TD></tr><tr><td colspan=2>'+ '<table border=0 width=100% cellspacing=0 cellpadding=0 bgcolor="#FFF6DD"><tr><INPUT TYPE="hidden" name="set" value="'+name+'"><td colspan=2 align=center><B><I>'+txt+'</td></tr><tr><td width=80% align=right>'+ 'Количество (шт.) <INPUT TYPE="text" NAME="count" size=4 ></td><td width=20%> <INPUT TYPE="submit" value=" »» ">'+ '</TD></TR></TABLE></td></tr></table></form>'; document.all("hint3").style.visibility = "visible"; document.all("hint3").style.left = 100; document.all("hint3").style.top = 100; document.all("count").focus(); } // Закрывает окно function closehint3() { document.all("hint3").style.visibility="hidden"; } </SCRIPT> </HEAD> <body leftmargin=5 topmargin=5 marginwidth=5 marginheight=5 bgcolor=#d4d4d4> <TABLE border=0 width=100% cellspacing="0" cellpadding="0"> <FORM action="city.php" method=GET> <tr><td><h3><font color=blue>Магазин РЕПУТАЦИИ</font></td><td align=right> <INPUT TYPE="button" value="Подсказка" style="background-color:#A9AFC0" onclick="window.open('help/shop.html', 'help', 'height=300,width=500,location=no,menubar=no,status=no,toolbar=no,scrollbars=yes')"> <INPUT TYPE="submit" value="Вернуться" name="cp"></td></tr> </FORM> </table> <TABLE border=0 width=100% cellspacing="0" cellpadding="4"> <TR> <FORM METHOD=POST ACTION="shop.php"> <INPUT TYPE="hidden" name="sid" value=""> <INPUT TYPE="hidden" name="id" value="1"> <TD valign=top align=left> <!--Магазин--> <TABLE border=0 width=100% cellspacing="0" cellpadding="0" bgcolor="#A5A5A5"> <TR> <TD align=center><B>Отдел "<?php if ($_POST['sale']) { echo "Скупка"; } else switch ($_GET['otdel']) { case null: echo "Оружие: кастеты,ножи"; $_GET['otdel'] = 1; break; case 1: echo "Оружие: кастеты,ножи"; break; case 11: echo "Оружие: топоры"; break; case 12: echo "Оружие: дубины,булавы"; break; case 13: echo "Оружие: мечи"; break; case 14: echo "Оружие: луки и арбалеты"; break; case 2: echo "Одежда: сапоги"; break; case 21: echo "Одежда: перчатки"; break; case 22: echo "&Одежда: легкая броня"; break; case 23: echo "Одежда: тяжелая броня"; break; case 24: echo "Одежда: шлемы"; break; case 3: echo "Щиты"; break; case 4: echo "Ювелирные товары: серьги"; break; case 41: echo "Ювелирные товары: ожерелья"; break; case 42: echo "Ювелирные товары: кольца"; break; case 5: echo "Заклинания: нейтральные"; break; case 51: echo "Заклинания: боевые и защитные"; break; case 6: echo "Амуниция"; break; case 52: echo "Руны"; break; } ?>"</B> </TD> </TR> <TR><TD><!--Рюкзак--> <TABLE BORDER=0 WIDTH=100% CELLSPACING="1" CELLPADDING="2" BGCOLOR="#A5A5A5"> <? $data = mysql_query("SELECT * FROM `ahero_shop` WHERE `count` > 0 AND `razdel` = '{$_GET['otdel']}' ORDER by `point` ASC"); while($row = mysql_fetch_array($data)) { if ($i==0) { $i = 1; $color = '#C7C7C7';} else { $i = 0; $color = '#D5D5D5'; } echo "<TR bgcolor={$color}><TD align=center style='width:150px'><IMG SRC=\"i/sh/{$row['img']}\" BORDER=0>"; ?> <BR><A HREF="ahero_shop.php?otdel=<?=$_GET['otdel']?>&set=<?=$row['id']?>&sid=">купить</A> <IMG SRC="i/up.gif" WIDTH=11 HEIGHT=11 BORDER=0 ALT="Купить несколько штук" style="cursor:hand" onclick="AddCount('<?=$row['id']?>', '<?=$row['name']?>')"></TD> <?php echo "<TD valign=top>"; showitem ($row, 11); echo "</TD></TR>"; } //} ?> </TABLE> </TD></TR> </TABLE> </TD> <TD valign=top width=280> <div style="MARGIN-LEFT:15px; MARGIN-TOP: 10px;"> <CENTER><B>Масса всех ваших вещей: <?php echo $d[0]; ?>/<?=get_meshok()?><BR> У вас в наличии: <FONT COLOR="blue"><?=$user['doblest']?></FONT> реп.</B></CENTER><hr> <a href=shop.php>ГОС. МАГАЗИН</a> <hr> <div style="background-color:#d2d0d0;padding:1"><center><font color="#oooo"><B>Отделы магазина</B></center></div> <b>Оружие:</b> <BR> <A HREF="ahero_shop.php?otdel=1&sid=&0.162486541405194"> кастеты,ножи</A><BR> <A HREF="ahero_shop.php?otdel=11&sid=&0.337606814894404"> топоры</A><BR> <A HREF="ahero_shop.php?otdel=12&sid=&0.286790872806733"> дубины,булавы</A><BR> <A HREF="ahero_shop.php?otdel=13&sid=&0.0943516060419363"> мечи</A><BR> <b>Одежда:</b> <BR> <A HREF="ahero_shop.php?otdel=24&sid=&0.567932791291376"> шлемы</A><BR> <A HREF="ahero_shop.php?otdel=23&sid=&0.99133839275569"> тяжелая броня</A><BR> <A HREF="ahero_shop.php?otdel=22&sid=&0.520447517792988"> легкая броня</A><BR> <A HREF="ahero_shop.php?otdel=3&sid=&0.725667864710179"> щиты</A><BR> <A HREF="ahero_shop.php?otdel=21&sid=&0.648260824682342"> перчатки</A><BR> <A HREF="ahero_shop.php?otdel=2&sid=&0.76205958316951"> сапоги</A><BR> <b>Ювелирные товары:</b> <BR> <A HREF="ahero_shop.php?otdel=4&sid=&0.321709306035984"> серьги</A><BR> <A HREF="ahero_shop.php?otdel=41&sid=&0.902093651333512"> ожерелья</A><BR> <A HREF="ahero_shop.php?otdel=42&sid=&0.510210803380268"> кольца</A><BR> <b>Магия:</b> <BR> <A HREF="ahero_shop.php?otdel=51&sid=&0.722009624500359"> боевые</A><BR> <A HREF="ahero_shop.php?otdel=5&sid=&0.648834385828923"> разные</A><BR> <b>Разное:</b> <BR> <A HREF="ahero_shop.php?otdel=6&sid=&0.925798340638547"> амуниция</A><BR> <A HREF="ahero_shop.php?otdel=52&sid=&0.925798340638547"> руны</A><BR> </div> <div id="hint3" class="ahint"></div> </TD> </FORM> </TR> </TABLE> </BODY> </HTML>