Файл: vfermu.ru/sys/collective/hangar/buy.php
Строк: 57
<?
if(isset($_GET['buy']) && in_array(intval($_GET['buy']),array(1,10,50)) && $_GET['buy']!=0 && isset($_GET['type']) && in_array(intval($_GET['type']),array(1,2,3,4,5)) && $_GET['type']!=0 && $mc && $mcu['status']==1){
$buy=intval($_GET['buy']);
$type= intval($_GET['type']);
if($type==1){$name="Шмель";$cena=5000*$buy;$teh=500*$buy;}
if($type==2){$name="Ястреб";$cena=5000*$buy;$teh=500*$buy;}
if($type==3){$name="Дракон";$cena=10000*$buy;$teh=1000*$buy;}
if($type==4){$name="Гром";$cena=25000*$buy;$teh=3000*$buy;}
if($type==5){$name="Акула";$cena=200000000*$buy;$teh=500*$buy;}
if($type==5){$vid=money;}else{$vid=rubies;}
if(isset($_GET['ok'])){
if($ct[$vid]>=$cena){
$place=mysql_fetch_array(mysql_query("SELECT * FROM `farm_collective_heli` WHERE `heli` = '0' AND `id_collective` = '$ct[id]' LIMIT $buy"));
if(mysql_result(mysql_query("SELECT COUNT(*) FROM `farm_collective_heli` WHERE `heli` = '0' AND `id_collective` = '$ct[id]'"),0)<$buy){$err=1;$_SESSION['msg']='В колхозном ангаре нету свободных площадок!';
}
if(!isset($err)){
if($buy==1){$time_guest = $time+10;}
if($buy==10){$time_guest = $time+60;}
if($buy==50){$time_guest = $time+120;}
$buy_time = (isset($_SESSION['buy_time']) ? $_SESSION['buy_time'] : $time); //подсчет времени
if($buy_time>$time){$_SESSION['msg']="Подождите ".time_left($buy_time-$time)."...";}else{
$q=mysql_query("SELECT * FROM `farm_collective_heli` WHERE `id_collective` = '$ct[id]' AND `heli` = '0' LIMIT $buy");
while($post=mysql_fetch_array($q)){
if($type==1){mysql_query("UPDATE `farm_collective_heli` SET `heli` = '1', `gaz` = '250' WHERE `id` = '$post[id]'");}
if($type==2){mysql_query("UPDATE `farm_collective_heli` SET `heli` = '2', `gaz` = '250' WHERE `id` = '$post[id]'");}
if($type==3){mysql_query("UPDATE `farm_collective_heli` SET `heli` = '3', `gaz` = '500' WHERE `id` = '$post[id]'");}
if($type==4){mysql_query("UPDATE `farm_collective_heli` SET `heli` = '4', `gaz` = '2500' WHERE `id` = '$post[id]'");}
if($type==5){mysql_query("UPDATE `farm_collective_heli` SET `heli` = '5', `gaz` = '2000' WHERE `id` = '$post[id]'");}
}
$_SESSION['msg']='Вертолёт '.($name).' успешно куплено '.($buy).' шт.';
if($type==5){mysql_query("UPDATE `farm_collective` SET `money` = '".($ct['money']-$cena)."', `tehnika` = '".($ct['tehnika']+$teh)."' WHERE `id` = '$ct[id]'");
}else{mysql_query("UPDATE `farm_collective` SET `rubies` = '".($ct['rubies']-$cena)."', `tehnika` = '".($ct['tehnika']+$teh)."' WHERE `id` = '$ct[id]'");}
}
}
}else{if($type==5){$_SESSION['no_money_ct']="".($cena-$ct['money'])."";}else{$_SESSION['no_rubies_ct']="".($cena-$ct['rubies'])."";}}
header("Location:/?collective=$ct[id]&hangar&".passgen());
}else{
echo"<div class='event'><h1>Подтверждение</h1></div><div class='content'><div class='block'><li><span>Вы покупаете </span> <span>".($name)."</span> - ".($buy)." шт. <br/></li><li class='pt'><img alt='' width='16' height='16' src='/images/icons/tick.png'> <a href='/?collective=$ct[id]&hangar&type=$type&buy=$buy&ok'><span>Да, подтверждаю</span></a></li><li><img alt='' width='16' height='16' src='/images/icons/cross.png'> <a href='/?collective=$ct[id]&hangar'><span>Нет, отказываюсь</span></a></li></div>";
}
include_once 'sys/other/foot.php';}
?>