Файл: anibiliwar.ru/pets.php
Строк: 72
<?
# All author: XxxDIABLOxxX
# Pabl modules
# pets.php
include './system/common.php';
include './system/functions.php';
include './system/user.php';
if(!$user) {
header('location: /');
exit;
}
switch($_GET['action']) {
default:
$title = 'Питомник';
include './system/h.php';
$pets_shop = mysql_query('SELECT * FROM `pets` WHERE `id` = "'.$user['id'].'"');
$pets_s = mysql_fetch_array($pets_shop);
$pets_t = ($pets_s['lvl']*20+10);
$param = (rand(1,2));
# train
if(isset($_GET['train'])) {
if($pets_s['lvl']>=150){
# full
}else{
if($user['g']>=1000)
{
mysql_query('UPDATE `pets` SET `lvl` = `lvl` + 1,
`crov` = `crov` + 1,
`str` = `str` + "'.$param.'",
`vit` = `vit` + "'.$param.'",
`agi` = `agi` + "'.$param.'",
`def` = `def` + "'.$param.'"
WHERE `id` = "'.$user['id'].'"');
# user train
mysql_query('UPDATE `users` SET `str` = `str` + "'.$param.'",
`vit` = `vit` + "'.$param.'",
`agi` = `agi` + "'.$param.'",
`def` = `def` + "'.$param.'"
WHERE `id` = "'.$user['id'].'"');
mysql_query("UPDATE `users` SET `g` = ".($user['g']-$pets_t)."
WHERE `id` = ".$user['id']."");
# no gold
}else{
}
}
header('location: /pets.php');
}
#
$pets = mysql_query('SELECT * FROM `pets` WHERE `id` = "'.$user['id'].'"');
$pet = mysql_fetch_array($pets);
if(!$pet){
header('location: /pets.php?action=buy');
}else{
?>
<div class='content'>
<center><div class='list'>
<img src='<?=$pets_s['img']?>' alt='*'/> <br />
<?=$pets_s['name']?><br />
<img src='images/icon/rage.png' alt='*'/> Кровожадность: <?=$pets_s['crov']?>%
<br />
<div class='main' style='text-align:center;'>
<a class='btn' href='/pets.php?train'><span class='end'><span class='label'>Тренировать</span>
</a><br/>
Цена: <img src='images/icon/g.png' alt='*'/> <?=$pets_t?>
<div class='line'></div>
<img src='images/icon/level.png' alt='*'/> Уровень: <?=$pets_s['lvl']?>
<br />
<font color='#90c090'>
+<?=$pets_s['str']+$pets_s['vit']+$pets_s['agi']+$pets_s['def']?></font> к парамерам
</center>
<div class='list'><li>
<a href='/pets?action=shop'><img src='/images/icon/bar.png' alt='*'/> Магазин питомцев</a>
</li></div></div>
<?
}
break;
case 'buy':
$title = 'Питомник';
include './system/h.php';
?>
<div class='title'><?=$title?></div>
<?
$sh = mysql_query("SELECT * FROM `pets_shop` ORDER BY `id` DESC");
while ($shop = mysql_fetch_assoc($sh))
{
?>
<div class='line'></div>
<div class='content'>
<table cellpadding='0' cellspacing='0'>
<tr>
<td><img src='<?=$shop['images']?>' alt='*'/></td>
<td valign='top' style='padding-left: 5px;'><?=$shop['name']?>
<br/>
<small><small>
Стоимость: <img src='/images/icon/gold.png' alt='*'/> <?=$shop['cost']?></font>
</small></small></td></tr></table>
<a href='?buy_pets=<?=$shop['id']?>' class='button'>Купить</a>
</center>
</small></small></td>
</tr></table>
</div>
<?
}
break;
#
}
#
$buy_pets = _string(_num($_GET['buy_pets']));
if($buy_pets) {
$shop = mysql_fetch_array(mysql_query('SELECT * FROM `pets_shop` WHERE `id` = ''.$buy_pets.'''));
if($shop['cost'] > $user['g']) $errors[] = 'Ошибка, нехватает <img src='/images/icon/g.png' alt='*'/> '.($shop['cost'] - $user['g']).' золота<div class='separator'></div><a href='/trade/' class='button'>Купить</a>';
if($errors) {
echo '<div class='content' align='center'>';
foreach($errors as $error) {
echo $error.'<br/>';
}
echo '</div>
<div class='line'></div>';
}
else
{
mysql_query("INSERT INTO `pets` SET `id` = '$user[id]',
`name` = '$shop[name]',
`str` = '$shop[str]',
`vit` = '$shop[vit]',
`agi` = '$shop[agi]',
`def` = '$shop[def]',
`images` = '$shop[images]',
`img` = '$shop[img]',
`crov` = '1'");
# user
mysql_query('UPDATE `users` SET `str` = `str` + "'.$shop['str'].'",
`vit` = `vit` + "'.$shop['vit'].'",
`agi` = `agi` + "'.$shop['agi'].'",
`def` = `def` + "'.$shop['def'].'"
WHERE `id` = "'.$user['id'].'"');
header('location: /pets.php');
}
}
include './system/f.php';
?>