370 lines
17 KiB
PHP
370 lines
17 KiB
PHP
<?php
|
||
session_start();
|
||
if ($_SESSION['uid'] == null) header("Location: index.php");
|
||
include "config.php";
|
||
$user = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE `id` = '".$_SESSION['uid']."' LIMIT 1;"));
|
||
include "functions.php";
|
||
if ($user['room'] != 50) { header("Location: main.php"); die(); }
|
||
$d = mysql_fetch_array(mysql_query("SELECT sum(`massa`) FROM `inventory` WHERE `owner`='".$_SESSION['uid']."' AND `dressed`=0 AND `setsale`=0;"));
|
||
if ($user['battle'] != 0) { header('location: fbattle.php'); die(); }
|
||
//$_GET['otdel'] = 1;
|
||
|
||
|
||
if(isset($_GET['up'])){
|
||
$ids = $_GET['up'];
|
||
$cur = mysql_fetch_assoc(mysql_query("select `id`,`name`,`nlevel` from `inventory` where `owner`='".$user['id']."' and `id`='".$ids."' and `artefact`='1'"));
|
||
if($cur['id']){
|
||
$up_level = $cur['nlevel'] + 1;
|
||
$cur_up = mysql_fetch_assoc(mysql_query("select * from `ashop_up` where `name`='".$cur['name']."' and `level_up`='".$up_level."'"));
|
||
if($cur_up['id']){
|
||
|
||
mysql_query("update `inventory` set `upgrade`='".$cur_up['level_up']."',`nlevel`='".$cur_up['level_up']."',`minu`='".$cur_up['minu']."',`maxu`='".$cur_up['maxu']."',`gsila`='".$cur_up['gsila']."',`glovk`='".$cur_up['glovk']."',`ginta`='".$cur_up['ginta']."',`gintel`='".$cur_up['gintel']."',`ghp`='".$cur_up['ghp']."',`mfkrit`='".$cur_up['mfkrit']."',`mfakrit`='".$cur_up['mfakrit']."',`mfuvorot`='".$cur_up['mfuvorot']."',`mfauvorot`='".$cur_up['mfauvorot']."',`gnoj`='".$cur_up['gnoj']."',`gtopor`='".$cur_up['gtopor']."',`gdubina`='".$cur_up['gdubina']."',`gmech`='".$cur_up['gmech']."',`bron1`='".$cur_up['bron1']."',`bron2`='".$cur_up['bron2']."',`bron3`='".$cur_up['bron3']."',`bron4`='".$cur_up['bron4']."' where `owner`='".$user['id']."' and `id`='".$cur['id']."'");
|
||
echo"<font color=green><b>Артефакт успешно улучшен!</b></font>";
|
||
|
||
}else{
|
||
echo"<font color=red><b>Эта вещь дальше не улучшается!</b></font>";
|
||
}
|
||
}
|
||
}
|
||
|
||
if($_POST['enter'] && $_POST['pass']) {
|
||
$data = mysql_query("SELECT * FROM `bank` WHERE `owner`='".$user['id']."' AND `id`='".$_POST['id']."' AND `pass`='".md5($_POST['pass'])."';");
|
||
echo mysql_error();
|
||
$data = mysql_fetch_array($data);
|
||
if($data) {
|
||
$_SESSION['bankid'] = $_POST['id'];
|
||
err('Удачный вход.');
|
||
}
|
||
else {
|
||
err('Ошибка входа.');
|
||
}
|
||
}
|
||
|
||
$bank = mysql_fetch_array(mysql_query("SELECT * FROM `bank` WHERE `id`='".$_SESSION['bankid']."';"));
|
||
|
||
if (($_GET['set'] OR $_POST['set'])) {
|
||
if ($_GET['set']) { $set = $_GET['set']; }
|
||
if ($_POST['set']) { $set = $_POST['set']; }
|
||
if(!$_POST['count']) { $_POST['count']=1; }
|
||
if(!is_numeric($_POST['count']) || $_POST['count']!=((int)$_POST['count'])) {
|
||
$_POST['count']=0;
|
||
$count_ok=0;
|
||
}
|
||
elseif ($_POST['count'] < 1) {
|
||
$_POST['count'] =1;
|
||
}
|
||
else $count_ok=1;
|
||
|
||
$dress = mysql_fetch_array(mysql_query("SELECT * FROM `ashop` WHERE `id`='".$set."' LIMIT 1;"));
|
||
if ($count_ok==0) {
|
||
echo "<font color=red><b>Неправильно введено количество</b></font>";
|
||
//$good = 0;
|
||
}
|
||
elseif (($dress['massa']*$_POST['count']+$d[0]) > (get_meshok())) {
|
||
echo "<font color=red><b>Недостаточно места в рюкзаке.</b></font>";
|
||
//$good = 0;
|
||
}
|
||
elseif($count_ok==1 && ($bank['ekr']>= ($dress['ecost']*$_POST['count'])) && ($dress['count'] >= $_POST['count'])) {
|
||
for($k=1;$k<=$_POST['count'];$k++) {
|
||
if(mysql_query("INSERT INTO `inventory`
|
||
(`prototype`,`owner`,`name`,`type`,`massa`,`cost`,`img`,`maxdur`,`isrep`,
|
||
`gsila`,`glovk`,`ginta`,`gintel`,`ghp`,`gnoj`,`gtopor`,`gdubina`,`gmech`,`gfire`,`gwater`,`gair`,`gearth`,`glight`,`ggray`,`gdark`,`needident`,`nsila`,`nlovk`,`ninta`,`nintel`,`nmudra`,`nvinos`,`nnoj`,`ntopor`,`ndubina`,`nmech`,`nfire`,`nwater`,`nair`,`nearth`,`nlight`,`ngray`,`ndark`,
|
||
`mfkrit`,`mfakrit`,`mfuvorot`,`mfauvorot`,`bron1`,`bron2`,`bron3`,`bron4`,`maxu`,`minu`,`magic`,`nlevel`,`nalign`,`dategoden`,`goden`,`otdel`)
|
||
VALUES
|
||
('{$dress['id']}','{$_SESSION['uid']}','{$dress['name']}','{$dress['type']}',{$dress['massa']},{$dress['cost']},'{$dress['img']}',{$dress['maxdur']},{$dress['isrep']},'{$dress['gsila']}','{$dress['glovk']}','{$dress['ginta']}','{$dress['gintel']}','{$dress['ghp']}','{$dress['gnoj']}','{$dress['gtopor']}','{$dress['gdubina']}','{$dress['gmech']}','{$dress['gfire']}','{$dress['gwater']}','{$dress['gair']}','{$dress['gearth']}','{$dress['glight']}','{$dress['ggray']}','{$dress['gdark']}','{$dress['needident']}','{$dress['nsila']}','{$dress['nlovk']}','{$dress['ninta']}','{$dress['nintel']}','{$dress['nmudra']}','{$dress['nvinos']}','{$dress['nnoj']}','{$dress['ntopor']}','{$dress['ndubina']}','{$dress['nmech']}','{$dress['nfire']}','{$dress['nwater']}','{$dress['nair']}','{$dress['nearth']}','{$dress['nlight']}','{$dress['ngray']}','{$dress['ndark']}',
|
||
'{$dress['mfkrit']}','{$dress['mfakrit']}','{$dress['mfuvorot']}','{$dress['mfauvorot']}','{$dress['bron1']}','{$dress['bron3']}','{$dress['bron2']}','{$dress['bron4']}','{$dress['maxu']}','{$dress['minu']}','{$dress['magic']}','{$dress['nlevel']}','{$dress['nalign']}','".(($dress['goden'])?($dress['goden']*24*60*60+time()):"")."','{$dress['goden']}','{$dress['razdel']}');"))
|
||
{
|
||
$good = 1;
|
||
}
|
||
else {
|
||
$good = 0;
|
||
}
|
||
}
|
||
if ($good) {
|
||
mysql_query("UPDATE `ashop` SET `count`=`count`-".$_POST['count']." WHERE `id`='".$set."' LIMIT 1;");
|
||
$limit=$_POST['count'];
|
||
$invdb = mysql_query("SELECT `id` FROM `inventory` WHERE `name` = '".$dress['name']."' ORDER by `id` DESC LIMIT ".$limit.";" );
|
||
if ($limit == 1) {
|
||
$dressinv = mysql_fetch_array($invdb);
|
||
$dressid = "cap".$dressinv['id'];
|
||
$dresscount=" ";
|
||
}
|
||
else {
|
||
$dressid="";
|
||
while ($dressinv = mysql_fetch_array($invdb)) {
|
||
$dressid .= "cap".$dressinv['id'].",";
|
||
}
|
||
$dresscount="(x".$_POST['count'].") ";
|
||
}
|
||
$allcost=$_POST['count']*$dress['ecost'];
|
||
mysql_query("INSERT INTO `delo` (`id` , `author` ,`pers`, `text`, `type`, `date`) VALUES ('','0','{$_SESSION['uid']}','\"".$user['login']."\" купил товар: \"".$dress['name']."\" ".$dresscount."id:(".$dressid.") [0/".$dress['maxdur']."] за ".$allcost." екр. ',1,'".time()."');");
|
||
echo "<font color=red><b>Вы купили {$_POST['count']} шт. \"{$dress['name']}\".</b></font>";
|
||
mysql_query("UPDATE `bank` set `ekr`=`ekr`-'".($allcost)."' WHERE `id`='".$_SESSION['bankid']."';");
|
||
$bank['ekr'] -=$allcost;
|
||
}
|
||
}
|
||
else {
|
||
echo "<font color=red><b>Недостаточно денег или нет вещей в наличии.</b></font>";
|
||
}
|
||
}
|
||
?>
|
||
<html><head>
|
||
<link rel=stylesheet type="text/css" href="css/main.css">
|
||
<meta content="text/html; charset=utf-8" http-equiv=Content-type>
|
||
<meta Http-Equiv=Cache-Control Content=no-cache>
|
||
<meta http-equiv=PRAGMA content=NO-CACHE>
|
||
<meta Http-Equiv=Expires Content=0>
|
||
<script language="JavaScript">
|
||
function AddCount(name, txt) {
|
||
document.all("hint3").innerHTML = '<form method=post style="margin:0px; padding:0px;"><table border=0 width=100% cellspacing=1 cellpadding=0 bgcolor="#CCC3AA"><tr><td align=center><B>Купить неск. штук</td><td width=20 align=right valign=top style="cursor: hand" onclick="closehint3();"><big><b>x</td></tr><tr><td colspan=2>'+
|
||
'<table border=0 width=100% cellspacing=0 cellpadding=0 bgcolor="#FFF6DD"><tr><input type="hidden" name="set" value="'+name+'"><td colspan=2 align=center><b><i>'+txt+'</td></tr><tr><td width=80% align=right>'+
|
||
'Количество (шт.) <input type="text" name="count" size=4 ></td><td width=20%> <input type="submit" value=" »» ">'+
|
||
'</td></tr></table></td></tr></table></form>';
|
||
document.all("hint3").style.visibility = "visible";
|
||
document.all("hint3").style.left = 100;
|
||
document.all("hint3").style.top = 100;
|
||
document.all("count").focus();
|
||
}
|
||
// Закрывает окно
|
||
|
||
function closehint3()
|
||
{
|
||
document.all("hint3").style.visibility="hidden";
|
||
}
|
||
</script>
|
||
</head>
|
||
<body leftmargin=5 topmargin=5 marginwidth=5 marginheight=5 bgcolor=#d4d4d4>
|
||
<table border=0 width=100% cellspacing="0" cellpadding="0">
|
||
|
||
<tr><td><h3>Магазин Берёзка</td><td align=right>
|
||
<input type="button" value="Подсказка" style="background-color:#A9AFC0" onClick="window.open('help/shop.html', 'help', 'height=300,width=500,location=no,menubar=no,status=no,toolbar=no,scrollbars=yes')">
|
||
<input type="submit" value="Вернуться" name="strah" onclick="location.href='ashop.php';"></td></tr>
|
||
|
||
</table>
|
||
<?
|
||
if(!$_SESSION['bankid']) {
|
||
?>
|
||
<form method=post>
|
||
<fieldset style="width:200px; height:130px;">
|
||
<legend>Войти в счет</legend><br> №
|
||
<?
|
||
$banks = mysql_query("SELECT * FROM `bank` WHERE `owner` = ".$user['id'].";");
|
||
echo "<select style='width:150px' name=id>";
|
||
while ($rah = mysql_fetch_array($banks)) {
|
||
echo "<option>",$rah['id'],"</option>";
|
||
}
|
||
echo "</select>";
|
||
?>
|
||
<br> Пароль <input type=password name=pass size=21>
|
||
<br><br>
|
||
<center><input type=submit name='enter' value='Войти'>
|
||
</fieldset>
|
||
</form>
|
||
<?
|
||
die();
|
||
}
|
||
?>
|
||
<table border=0 width=100% cellspacing="0" cellpadding="4">
|
||
<tr>
|
||
<form method=POST action="ashop.php">
|
||
<input type="hidden" name="sid" value="">
|
||
<input type="hidden" name="id" value="1">
|
||
<td valign=top align=left>
|
||
<!--Магазин-->
|
||
<table border=0 width=100% cellspacing="0" cellpadding="0" <?if (!$_REQUEST['present']) { echo 'bgcolor="#A5A5A5"';}?>>
|
||
<tr>
|
||
<td align=center><b>
|
||
<?
|
||
if ($_REQUEST['compare'] && !$_REQUEST['common'] && !$_REQUEST['present']) {
|
||
echo "Составление подарочного букета";
|
||
}
|
||
elseif ($_REQUEST['present']) {
|
||
//echo "Составление подарочного букета";
|
||
}
|
||
else {
|
||
switch ($_GET['otdel']) {
|
||
case null:
|
||
echo "Оружие: кастеты,ножи";
|
||
$_GET['otdel'] = 1;
|
||
break;
|
||
case 1:
|
||
echo "Оружие: кастеты,ножи";
|
||
break;
|
||
case 11:
|
||
echo "Оружие: топоры";
|
||
break;
|
||
case 12:
|
||
echo "Оружие: дубины,булавы";
|
||
break;
|
||
case 13:
|
||
echo "Оружие: мечи";
|
||
break;
|
||
case 14:
|
||
echo "Оружие: луки и арбалеты";
|
||
break;
|
||
case 2:
|
||
echo "Одежда: сапоги";
|
||
break;
|
||
case 21:
|
||
echo "Одежда: перчатки";
|
||
break;
|
||
case 22:
|
||
echo "&Одежда: легкая броня";
|
||
break;
|
||
case 23:
|
||
echo "Одежда: тяжелая броня";
|
||
break;
|
||
case 24:
|
||
echo "Одежда: шлемы";
|
||
break;
|
||
case 3:
|
||
echo "Щиты";
|
||
break;
|
||
case 4:
|
||
echo "Ювелирные товары: серьги";
|
||
break;
|
||
case 41:
|
||
echo "Ювелирные товары: ожерелья";
|
||
break;
|
||
case 42:
|
||
echo "Ювелирные товары: кольца";
|
||
break;
|
||
case 5:
|
||
echo "Заклинания: нейтральные";
|
||
break;
|
||
case 51:
|
||
echo "Заклинания: боевые и защитные";
|
||
break;
|
||
case 6:
|
||
echo "Амуниция";
|
||
break;
|
||
case 7:
|
||
echo "Букеты";
|
||
break;
|
||
}
|
||
}
|
||
?>
|
||
</b></td>
|
||
</tr>
|
||
<tr><td><!--Рюкзак-->
|
||
<table border=0 width=100% cellspacing="1" cellpadding="2" bgcolor="#A5A5A5">
|
||
<?
|
||
if($_REQUEST['present']) {
|
||
if($_POST['to_login'] && $_POST['flower']) {
|
||
$to = mysql_fetch_array(mysql_query("SELECT * FROM `users` WHERE `login`='".$_POST['to_login']."' LIMIT 1;"));
|
||
if ($_POST['to_login'] == $user['login']) {
|
||
echo "<b><font color=red>Очень щедро дарить что-то самому себе ;)</font></b>";
|
||
}
|
||
elseif ($to['room'] > 500 && $to['room'] < 561) {
|
||
echo "<b><font color=red>Персонаж в данный момент участвует в турнире в Башне Смерти. Попробуйте позже.</font></b>";
|
||
}
|
||
else {
|
||
if($_POST['from']==1) { $from = 'Аноним'; }
|
||
elseif($_POST['from']==2 && $user['klan']) { $from = ' клана '.$user['klan']; }
|
||
else { $from = $user['login']; }
|
||
if ($to) if(mysql_query("UPDATE `inventory` SET `owner`='".$to['id']."', `present`='".$from."', `letter`='".$_POST['podarok2']."' WHERE `present`='' AND `id`='".$_POST['flower']."' AND `owner`='".$_SESSION['uid']."' AND `dressed`=0 AND `setsale`=0;")) {
|
||
$res = mysql_fetch_array(mysql_query("SELECT * FROM `inventory` WHERE `id` = '".$_POST['flower']."' LIMIT 1;"));
|
||
$buket_name=$res['name'];
|
||
mysql_query("INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0','".$_SESSION['uid']."','Подарен предмет \"".$res['name']."\" id:(cap".$res['id'].") [".$res['duration']."/".$res['maxdur']."] от \"".$from."\" к \"".$to['login']."\"','1','".time()."');");
|
||
mysql_query("INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0','{$to['id']}','Подарен предмет \"".$res['name']."\" id:(cap".$res['id'].") [".$res['duration']."/".$res['maxdur']."] от \"".$from."\" к \"".$to['login']."\"','1','".time()."');");
|
||
if(($_POST['from']==1) || ($_POST['from']==2)) {
|
||
$action="подарил";
|
||
mysql_query("INSERT INTO `delo`(`id`,`author`,`pers`,`text`,`type`,`date`) VALUES ('','0','".$to['id']."','Подарен предмет \"".$res['name']."\" id:(cap".$res['id'].") [".$res['duration']."/".$res['maxdur']."] от \"".$user['login']."\" к \"".$to['login']."\"','5','".time()."');");
|
||
}
|
||
else {
|
||
if ($user['sex'] == 0) { $action="подарила"; }
|
||
else { $action="подарил"; }
|
||
}
|
||
$us = mysql_fetch_array(mysql_query("select `id` from `online` WHERE `date`>=".(time()-60)." AND `id` = '".$to['id']."' LIMIT 1;"));
|
||
if($us[0]) {
|
||
addchp ('<font color=red>Внимание!</font> <span oncontextmenu=OpenMenu()>'.$from.'</span> '.$action.' вам <b>'.$buket_name.'</b>. ','{[]}'.$_POST['to_login'].'{[]}');
|
||
}
|
||
else {
|
||
// если в офе
|
||
mysql_query("INSERT INTO `telegraph` (`owner`,`date`,`text`) values ('".$to['id']."','','".'<font color=red>Внимание!</font> <span oncontextmenu=OpenMenu()>'.$from.'</span> '.$action.' вам <b>'.$buket_name.'</b>. '."');");
|
||
}
|
||
echo "<b><font color=red>Подарок удачно доставлен к \"",$_POST['to_login'],"\"</font></b>";
|
||
}
|
||
echo mysql_error();
|
||
}
|
||
}
|
||
?>
|
||
<!-- Подарить подарок -->
|
||
<form method="post">
|
||
<table cellspacing=0 cellpadding=0 width=100% bgcolor=#e0e0e2><td>
|
||
<input type=hidden name=present value=1>
|
||
Вы можете сделать подарок дорогому человеку. Ваш подарок будет отображаться в информации о персонаже.
|
||
<ol>
|
||
<li>Укажите логин персонажа, которому хотите сделать подарок<br>
|
||
Login <input type=text name=to_login value="">
|
||
<li>Цель подарка. Будет отображаться в информации о персонаже (не более 60 символов)<br>
|
||
<input type=text name=podarok2 value="" maxlength=60 size=50>
|
||
<li>Напишите текст сопроводительной записки (в информации о персонаже не отображается)<br>
|
||
<textarea name=txt rows=6 cols=80></textarea>
|
||
<li>Выберите, от чьего имени подарок:<br>
|
||
<input type=radio name=from value=0 checked> <? nick2($user['id']);?><br>
|
||
<input type=radio name=from value=1 > анонимно<br>
|
||
<input type=radio name=from value=2 > от имени клана<br>
|
||
<li>Нажмите кнопку <b>Подарить</b> под предметом, который хотите преподнести в подарок:<br>
|
||
</ol>
|
||
<input type="hidden" name="flower" id="flower" value="">
|
||
<table border=0 width=100% cellspacing="1" cellpadding="2" bgcolor="#A5A5A5">
|
||
<?
|
||
//print_r($_POST);
|
||
$data = mysql_query("SELECT * FROM `inventory` WHERE `owner`='".$_SESSION['uid']."' AND `dressed`=0 AND (`name` LIKE '%Букет%' OR `name` LIKE '%Сувенир%' OR `name` LIKE '%Подарок%' OR `name` LIKE '%Валентинка%' OR `name` LIKE '%Открытка%' OR `name` LIKE 'Ель%' OR `name` LIKE '%Медаль%' OR `name` LIKE '%Статуэтка%') AND `setsale`=0 AND `present` = '' ORDER by `id` DESC;");
|
||
while($row = mysql_fetch_array($data)) {
|
||
if(!in_array($row['id'],array_keys($_SESSION['flowers']))) {
|
||
$row['count'] = 1;
|
||
if ($i==0) { $i = 1; $color = '#C7C7C7';} else { $i = 0; $color = '#D5D5D5'; }
|
||
echo "<tr bgcolor={$color}><td align=center style='width:150px'><img src=\"i/sh/{$row['img']}\" border=0>";
|
||
?>
|
||
<br><input type=submit onClick="document.all['flower'].value="<?=$row['id'];?>"" value="Подарить">
|
||
</td>
|
||
<?
|
||
echo "<td valign=top>";
|
||
showitem ($row);
|
||
echo "</td></tr>";
|
||
}
|
||
}
|
||
?>
|
||
</table>
|
||
</form>
|
||
<?
|
||
}
|
||
else
|
||
{
|
||
$data = mysql_query("SELECT * FROM `inventory` WHERE `owner`='".$user['id']."' and `artefact`='1'");
|
||
while($row = mysql_fetch_array($data)) {
|
||
if ($i==0) { $i = 1; $color = '#C7C7C7';} else { $i = 0; $color = '#D5D5D5'; }
|
||
// echo "<tr bgcolor=".$color.">";
|
||
?>
|
||
|
||
<?
|
||
//echo "<td valign=top>";
|
||
showitem ($row,10);
|
||
//echo "</td></tr>";
|
||
}
|
||
}
|
||
?>
|
||
</table>
|
||
</td></tr>
|
||
</table>
|
||
</td>
|
||
<td valign=top width=280>
|
||
<center><b>Масса всех ваших вещей:
|
||
<?
|
||
echo $d[0];
|
||
?>/<?=get_meshok()?><br>
|
||
У вас в наличии: <font color="#339900"><?=$bank['ekr']?></font> екр.</b></center>
|
||
<hr>
|
||
<a href=ashop.php>Магазин Берёзка</a>
|
||
<hr>
|
||
<div id="hint3" class="ahint"></div>
|
||
</td>
|
||
</form>
|
||
</tr>
|
||
</table>
|
||
|
||
</body>
|
||
</html>
|