Файл: _gladiators2_/gladiators2/gladiators/gladiators/shop.php
Строк: 243
<?
session_start();
if(!$_SESSION["id"])
{
echo"<b>Ошибка:</b> потеря сессии. Вам необходимо войти <a href=# onclick="javascript:top.window.location.href='index.php'">зайти заново</a> !</b>";
exit();
}
include("connect.php");
include("includes/redir.php");
include("includes/user_class.php");
include("includes/std.h.php");
include("system/config/servers.php");
include("system/config/values.php");
include("system/class/main_class.php");
$db = new DBconn;
$db->Conn("greece",$server_conf);
$myself = new user;
if($myself->read($_SESSION["id"])==false)
{
echo"<b>Ошибка:</b> невозможно получить информацию о персонаже! Возможно сервер перегружен, попробуйте обновить страницу через пару минут.";
exit();
}
if($myself->locate!="shop" and $myself->locate!=0)
{
if(preg_match("/^[0-3]$/",$myself->locate))
Header("Location: map.php?pl=".$myself->locate);
else
Header("Location: ".$myself->locate.".php");
}
$myself->locate = "shop";
if($_SESSION["room"] != "shop")
{
session_register('room');
$room = "shop";
echo"<script language=javascript>top.frames['online'].window.location.reload();</script>";
}
if(! preg_match("/^[0-9]+$/",$_GET["cat"]) )
$_GET["cat"] = 1;
?>
<html>
<head>
<meta content="text/html; charset=windows-1251" http-equiv=Content-type>
<link rel=stylesheet href=/css/index.css>
<script language=JavaScript>
var bludo, m, title;
function buy(name,gold,id_item,cat)
{
var b = confirm('Вы подтверждаете покупку "'+name+'" за '+gold+' золота ?');
if(b==true)
window.location='shop.php?act=buy&cat=<?echo $_GET["cat"];?>&id_item='+id_item;
}
var title, cost, w;
function sell(name,price,id_item)
{
var b = confirm('Вы подтверждаете продажу "'+name+'" за '+price+' золота ?');
if(b==true)
window.location='shop.php?act=sell&cat=<?echo $_GET["cat"];?>&id_item='+id_item;
}
function altt(text)
{
var el = document.getElementById("altt");
document.all("altt").innerHTML = '<table border=0 cellspacing=1 cellpadding=3 bgcolor=#000000><tr><td bgcolor=#ffffff style="color:#000000;font-size:70%">'+text+'</td></tr>';
document.all("altt").style.visibility = "visible";
var x = window.event.clientX + document.documentElement.scrollLeft + document.body.scrollLeft + 3;
var y = window.event.clientY + document.documentElement.scrollTop + document.body.scrollTop+5;
el.style.left = x + "px";
el.style.top = y + "px";
if (window.event.clientX + el.offsetWidth + 3 > document.body.clientWidth)
{
x -= (window.event.clientX + el.offsetWidth + 3 - document.body.clientWidth);
el.style.left = x + "px";
}
document.all("altt").focus();
}
function altt_close()
{
document.all("altt").style.visibility = "hidden";
}
</script>
</head>
<body bgcolor=#e5e1be>
<span id=altt style="position:absolute; left:100px; top:148px; z-index:1"></span>
<table border=0 cellspacing=8 width=100% cellpadding=4>
<tr><td colspan=2>
<span style='color:#000000;font-weight:bold' id=inr></span>
<span id=imges></span>
</td></tr>
<tr>
<td align=left><div style="color:brown;font-weight:bold;font-size:15px">Государственная Лавка</div></td>
<td align=right>
<input type=image src='<? echo $config["img_server"];?>/b_refresh.gif' value='обновить' onclick='javascript:top.frames["main"].window.location="shop.php?cat=<?echo $_GET["cat"];?>&act=<?echo $_GET["act"];?>"'>
<input type=image src='<? echo $config["img_server"];?>/b_back.gif' value='вернуться' onclick="top.perehod('map.php?pl=0','Главная улица')"><br>
</td>
</tr>
<tr><td align=left colspan=2 style='color:darkred;font-weight:bold'>
<?
if($_GET["act"]=="buy" && eregi("^[0-9]+$",$_GET["id_item"]))
{
sleep(3);
$db->query("select items.id,items.name,items.price,items.iznos from items,shop where shop.id_item=items.id and shop.count>0 and items.id='".$_GET["id_item"]."'");
$db->num_rows();
if(!$db->num)
echo"Товар не обнаружен.";
else
{
$db->fetch_array();
if( $myself->align=="3" )
$db->row["price"] = ToFloat(($db->row["price"] - ( $db->row["price"]*10/100 )),2);
if($myself->money < $db->row["price"])
echo"Не достаточно денег в кошельке...";
else {
$myself->money -= $db->row["price"];
mysql_query("insert into bag values('".$_SESSION["id"]."','".$db->row["id"]."','".time()."','".$db->row["iznos"]."','".$db->row["iznos"]."','n','n')");
mysql_query("update shop set count=count-1 where id_item='".$db->row["id"]."'");
if( $myself->align=="3" )
$addition = "(10% скидка)";
private_add($_SESSION["id"],"shop robot","Куплен предмет "".$db->row["name"]."" за ".$db->row["price"]."".$addition." золота");
echo"Вы купили "".$db->row["name"].""";
}
}
}
if($_GET[act]=="sell" and $_GET[id_item]){
$result_items = mysql_query("select id,name,price from items where id='".$_GET[id_item]."' LIMIT 1");
$row_items = mysql_fetch_array($result_items);
$result_bag = mysql_query("select * from bag where id='".$row_items[id]."' and owner='".$_SESSION[id]."' and dressed='n' LIMIT 1");
$num_bag = mysql_num_rows($result_bag);
if($num_bag==0)
{
echo"Товар не обнаружен!";
}
else
{
sleep(3);
$cost = $row_items["price"]/2;
mysql_query("LOCK TABLES bag WRITE");
mysql_query("delete from bag where owner='".$_SESSION[id]."' and id='".$row_items[id]."' and dressed='n' LIMIT 1");
mysql_query("UNLOCK TABLES");
$myself->money += $cost;
echo"Вы продали "".$row_items[name]."".";
private_add($_SESSION[id],"shop robot","Продан предмет "".$row_items[name]."" за ".($row_items[price]/2)." золота");
}
}
$myself->write($myself->id);
echo"</td></tr>
</table>
<center>
<table border=0 width=85% cellspacing=0 cellpadding=5>
<tr>
<td align=left>";
if($act!='sell') {
echo"Разделы: <select name=cat onchange="window.location='shop.php?act=".$_GET["act"]."&cat='+document.all('cat').value;">";
$shop_otdel = @file("includes/shop_otdel.dat");
for($i=0;$i<=count($shop_otdel)-1;$i++) {
$row_otdel = explode("|",$shop_otdel[$i]);
echo"<option value=".$row_otdel[0];
if($_GET[cat]==$row_otdel[0])
echo" selected";
echo">".$row_otdel[1]."n";
}
echo"</select>";
}
echo"</td>
<td align=right>";
if($act!="sell")
echo"<a href='shop.php?act=sell'><b>Скупка товаров</a>";
else
echo"<a href='shop.php?act=lavka'><b>Продажа товаров</a>";
echo"</td></tr></table>
<table border=0 width=84% cellspacing=1 bgcolor=392F10 cellpadding=5>
<tr><td bgcolor=#cbcbb0>
<table border=0 width=100%><tr>
<td width=60% align=left>
<b>Раздел: ";
if($_GET[act]!="sell")
{
$shop_otdel = file("includes/shop_otdel.dat");
$row_otdel = explode("|",$shop_otdel[($_GET[cat]-1)]);
echo $row_otdel[1];
}
if($act=="sell")
echo"Cкупка товаров";
echo"</b></td>";
echo"<td width=40% align=right class=comm>В вашем кошельке <b>".$myself->money."</b> золота</i></td>";
echo"</tr></table>
</td></tr></table>
</form>
<table border=0 width=80% cellspacing=0 cellpadding=5>
<tr><td width=60% align=left valign=top>";
switch($_GET["act"]){
case"sell":
$result_bag = mysql_query("select * from bag where owner='$_SESSION[id]' and dressed='n' and present='n'");
$num_bag = mysql_num_rows($result_bag);
if(!$num_bag)
{
echo"<br>В вашем мешке нет предметов";
}
else
{
echo"<b>Содержимое мешка:</b><center><table border=0 cellspacing=0 cellpadding=2><tr>";
for($i=1;$i<=$num_bag;$i++)
{
$row_bag = mysql_fetch_array($result_bag);
$result_item = mysql_query("select * from items where id='".$row_bag["id"]."'");
$row_item= mysql_fetch_array($result_item);
echo"<tr><td valign=top>";
echo"<table border=0 cellspacing=2 width=200 bgcolor=gray cellpadding=5><tr><td bgcolor=#cbcbb0>";
echo ShowItemParam($myself,$row_item);
echo"</span></td></tr>";
echo"<tr><td bgcolor=#cbcbb0>
";
echo"<small>Стоимость: </small><b>".$row_item["price"]."</b> <small>монет</small><br>
<small>Оценено в </small><b>".($row_item[price]/2)."</b><small> золота (50%)</small>";
echo"
</td>
</tr>
<tr>
<td colspan=2 align=left>
<input type=button class=button value='продать' style='font-weight:bold' onClick="sell('".$row_item[name]."','".($row_item[price]/2)."','".$row_item[id]."');">
</td>
</tr>
</table><br></td></tr>";
}
}
break;
default:
if( preg_match("/^[0-9]+$/",$_GET["cat"]) )
{
$db->query("select items.* from shop,items where shop.id_item=items.id and shop.cat='".$_GET["cat"]."' order by items.price asc");
$db->num_rows();
if( !$db->num )
echo"<br>В этом отделе нет предметов";
echo"<br><br><center><table border=0 cellspacing=0 cellpadding=2>";
for($i=1;$i<=$db->num;$i++) {
$db->fetch_array();
echo"<tr><td valign=top>";
echo"<table border=0 cellspacing=2 width=250 bgcolor=gray cellpadding=5><tr><td bgcolor=#cbcbb0>";
echo ShowItemParam($myself,$db->row);
echo"</span></td></tr>";
echo"<tr><td bgcolor=#cbcbb0>";
if( $myself->align=="3" )
$db->row["price"] = ToFloat(($db->row["price"] - ( $db->row["price"]*10/100 )),2);
if($myself->money < $db->row["price"])
echo"<small>Стоимость:</small> <b style='color:darkred'>".$db->row["price"]."</b> <small>монет<br><b style='color:darkred'>не доступно</b></small>";
else
echo"<small>Стоимость: </small> <b>".$db->row["price"]."</b> <small>монет<br><b>доступно</b></small></b>";
if( $myself->align=="3" )
echo"<br><small>Скидка: 10%</small>";
echo"</td></tr><tr><td colspan=2 align=left><input type=button class=button value='купить' style='font-weight:bold' onClick="buy('".$db->row["name"]."',".$db->row["price"].",".$db->row["id"].",".$db->row["otdel"].");">
</td>
</tr>
</table><br></tr>";
}
}
break;
}
?>
</tr></table>
</td></tr></table>
<br><br>
<body></html>