<?php
include_once("files/zag.php");
include_once("files/ini.php");
$polz=mysql_query("SELECT * FROM `users` WHERE `udata0`='$log' AND `udata1`='$pas' LIMIT 1");
if(mysql_num_rows($polz)==0){
header ("Location: index.php?error");
}else{
switch($_GET[mod]){
default:
echo'<div class="bts"></div>';
if(empty($startan)) $startan = 0;
$startan=intval($startan);
if($startan<0) $startan=0; $num_msgs_an=5;
$b = mysql_query("SELECT * FROM bazar_coin WHERE tip = 'CoinofLuck' ORDER by `id` DESC LIMIT $startan,$num_msgs_an");
////////////////////////////
$avto=mysql_num_rows($b);
if($avto>=1){
$i=1;
While($best = mysql_fetch_array($b))
{
$b2 = mysql_query("SELECT usr FROM bazar_coin WHERE usr = '$best[usr]'");
////////////////////////////
$avto2=mysql_num_rows($b2);
$req = mysql_query("SELECT `udata67`,`udata92` FROM `users` WHERE `udata0` = '$best[usr]'");
$pic = mysql_fetch_array($req);
if ($pic['udata92']==0)echo "<img src='/pic/status/on.gif' alt='' class='icon'/>";
else if ($pic['udata92']==1)echo "<img src='/pic/status/gotov_boltat.png' alt='' class='icon'/>";
else if ($pic['udata92']==2)echo "<img src='/pic/status/zaniat.png' alt='' class='icon'/>";
else if ($pic['udata92']==3)echo "<img src='/pic/status/boleu.png' alt='' class='icon'/>";
else if ($pic['udata92']==4)echo "<img src='/pic/status/depressia.png' alt='' class='icon'/>";
else if ($pic['status']==5)echo "<img src='/pic/status/dumau.png' alt='' class='icon'/>";
else if ($pic['status']==6)echo "<img src='/pic/status/kuru.png' alt='' class='icon'/>";
else if ($pic['status']==7)echo "<img src='/pic/status/kushau.png' alt='' class='icon'/>";
else if ($pic['status']==8)echo "<img src='/pic/status/love.png' alt='' class='icon'/>";
else if ($pic['status']==9)echo "<img src='/pic/status/tv.png' alt='' class='icon'/>";
else if ($pic['status']==10)echo "<img src='/pic/status/music.png' alt='' class='icon'/>";
else if ($pic['status']==11)echo "<img src='/pic/status/vanna.png' alt='' class='icon'/>";
else if ($pic['status']==12)echo "<img src='/pic/status/tualet.png' alt='' class='icon'/>";
else if ($pic['status']==13)echo "<img src='/pic/status/sex.png' alt='' class='icon'/>";
else if ($pic['status']==14)echo "<img src='/pic/status/igrau.png' alt='' class='icon'/>";
else if ($pic['status']==15)echo "<img src='/pic/status/pivo.png' alt='' class='icon'/>";
else if ($pic['status']==16)echo "<img src='/pic/status/sonni.png' alt='' class='icon'/>";
////////
else if ($pic['status']==17)echo "<img src='/pic/status/1.png' alt='' class='icon'/>";
else if ($pic['status']==18)echo "<img src='/pic/status/12.png' alt='' class='icon'/>";
else if ($pic['status']==19)echo "<img src='/pic/status/13.png' alt='' class='icon'/>";
else if ($pic['status']==20)echo "<img src='/pic/status/14.png' alt='' class='icon'/>";
else if ($pic['status']==21)echo "<img src='/pic/status/18.png' alt='' class='icon'/>";
else if ($pic['status']==22)echo "<img src='/pic/status/19.png' alt='' class='icon'/>";
else if ($pic['status']==23)echo "<img src='/pic/status/31.png' alt='' class='icon'/>";
else if ($pic['status']==24)echo "<img src='/pic/status/7.png' alt='' class='icon'/>";
echo" <a href=\"search.php?nick=$best[usr]&go=go\">$best[usr]</a> - <a href=\"runok_coin.php?mod=shop&usr=$best[usr]\">Приобрести</a> ( $best[kol] Coin of Luck)<br>";
}
$q = mysql_query("SELECT COUNT(`id`) FROM `bazar_coin` ");
$kol = mysql_result($q, 0);
echo "- - -<br/>";
if($startan!= 0) $page2left = ' <a href= runok_coin.php?startan='. ($startan - 5) .'&page='.($page-1).'>'. ($page - 1) .'</a> | ';
if(empty($page)){$page=1;}
if($kol > $startan + 5) $page2right = ' | <a href= runok_coin.php?startan='. ($startan + 5) .'&page='. ($page+1) .'>'. ($page + 1) .'</a>';
echo $page2left.'<b>('.$page.')</b>'.$page1right.$page2right.'<br/>';
if ($startan != 0) {echo '<a href="runok_coin.php?startan='.($startan - 5).'&page='.($page-1).'">Назад</a> ';}
if ($kol > $startan + 5) {echo ' <a href="runok_coin.php?startan='.($startan + 5).'&page='.($page+1).'">Далее</a>';}
echo'<div class="bts"></div>';
}else{
echo 'Coin of Luck никто не продаёт!!';
echo'<div class="bts"></div>';
}
echo" <a href=\"runok_coin.php?mod=coin\">Продать Coin of Luck</a>";
$b = mysql_query("SELECT usr FROM bazar_coin WHERE usr = '$log' LIMIT 1");
////////////////////////////
$avto=mysql_num_rows($b);
////////////////////////
if($avto>0){echo"<br/><a href=\"runok_coin.php?mod=back\">Забрать Coin of Luck c продажи</a>";}
break;
case 'coin':
if($udata38<=0){
echo' <font color=red>Пока тебе нечего продавать.</font>';
include_once"files/down.php";
exit;
}
$req = mysql_query("SELECT * FROM `bazar_coin` WHERE `usr` = '$log'");
$avto=mysql_num_rows($req);
if($avto==1){
echo" <font color=red>Вы уже выставили Coin of Luck на продажу.</font>";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;
}
if(empty($_POST[kol]) or empty($_POST[mycena])){
echo "<form action=\"runok_coin.php?mod=coin\" method=\"post\">Цена за 1: Coin of Luck<br/>";
echo '<input name="mycena"/>';
echo '<br>Сколько?<br/>';
echo "<input name=\"kol\" maxlength=\"20\" title=\"name\"/><br/>";
echo '<input type="submit" value="Ok" /></form>';
}else{
if($_POST[mycena]<=0){
echo"Ошибка! Неправильно введённая цена!";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;
}
if($_POST[kol]<=0){echo'Ошибка!';
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
if(eregi("[^0-9]",$_POST[kol])){echo"Ошибка!";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
if($_POST[kol]>$udata38){echo"У тебя нет столько Coin of Luck!";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
$cenus=$_POST[kol]*$_POST[mycena];
mysql_query("INSERT INTO
`bazar_coin` SET
`usr` = '$log',
`name` = 'Coin of Luck',
`kol` = '$_POST[kol]',
`money` = '$cenus',
`tip` = 'CoinofLuck',
`cena` = '$_POST[mycena]'");
$udata38=$udata38-$_POST[kol];
mysql_query("UPDATE `users` SET `udata38` = '$udata38' WHERE `udata0` = '$log'");
echo"<b>Coin of Luck</b> <u>($_POST[kol] шт.)</u> выставлены на продажу по <b>$_POST[mycena]</b> аден за <u>(1 шт.)</u><br>";
echo "<br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
}
break;
case 'shop':
$_GET[usr] = htmlspecialchars(stripslashes(addslashes($_GET[usr])));
$b2 = mysql_query("SELECT usr FROM bazar_coin WHERE usr = '".mysql_real_escape_string($_GET['usr'])."' LIMIT 1");
////////////////////////////
$avto2=mysql_num_rows($b2);
if($avto2==0){
echo'Нет такого товговца!';
include_once"files/down.php";
exit;
}
$b = mysql_query("SELECT * FROM bazar_coin WHERE name = 'Coin of Luck' and usr = '".mysql_real_escape_string($_GET['usr'])."' ORDER BY id DESC");
////////////////////////////
$avto=mysql_num_rows($b);
if($avto>=1){
$i=1;
While($best = mysql_fetch_array($b))
{
$cena4=$best[cena]*$best[kol];//mony
$w=explode("*",$best[name]);
echo" <a href=\"search.php?nick=$best[usr]&go=go\">$best[usr]</a>
продаёт <font color=gold>Coin of Luck</font> <u>($best[kol] шт.)</u> <br> Cтоимость: $best[cena] аден за <u>(1 шт.)</u><br> Общая цена за <u>($best[kol] шт.)</u> $cena4 аден
[<a href=\"runok_coin.php?mod=by&tip=CoinofLuck&id=$best[id]&usr=$best[usr]\"><font color=red><b>Купить</b></font></a>]";
$i++;
}
}else{
echo"Coin of Luck никто не продаёт!<br/>";
}
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
break;
case 'by':
if(empty($_GET[id])){
echo'Ошибка!';
include_once"files/down.php";
exit;
}
$_GET[usr] = htmlspecialchars(stripslashes(addslashes($_GET[usr])));
$b2 = mysql_query("SELECT usr FROM bazar_coin WHERE usr = '".mysql_real_escape_string($_GET['usr'])."' LIMIT 1");
////////////////////////////
$avto2=mysql_num_rows($b2);
if($avto2==0){
echo'Нет такого товговца!';
include_once"files/down.php";
exit;
}
if($_GET[tip]==CoinofLuck){
$log=$log;
$req = mysql_query("SELECT * FROM `bazar_coin` WHERE `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$item = mysql_fetch_array($req);
if($item[usr]==$log){
echo'Cвои товары нельзя покупать!';
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;
}
if(empty($_POST[kol])){
echo "<form action=\"runok_coin.php?mod=by&tip=CoinofLuck&id=$item[id]&usr=$item[usr]\" method=\"post\">Сколько?<br/>";
echo "<input name=\"kol\" maxlength=\"20\" title=\"name\"/><br/>";
echo '<input type="submit" value="Купить" /></form>';
}else{
if($_POST[kol]<=0){echo'Ошибка!';
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
if(eregi("[^0-9]",$_POST[kol])){echo"Ошибка!";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
if($_POST[kol]>$item[kol]){echo"У <b>$item[usr]</b> нет столько <font color=gold>Coin of Luck</font> в продаже!";
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;}
if($udata8<$item[cena]*$_POST[kol]){
echo'Не хватает аден!';
echo "<br><br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;
}
$cena=$_POST[kol]*$item[cena];//mony
$udata8=$udata8-$cena;//mony
$cena4=$cena4-$cena;//mony
mysql_query("UPDATE `users` SET `udata8` = '$udata8' WHERE `udata0` = '$log'");
mysql_query("UPDATE `users` SET `udata38` = `udata38` + '".intval($_POST['kol'])."' WHERE `udata0` = '$log'");
///////////////////////////////////////////////////////////////////////////////////////////////////Отнимаем адену покупателя/И добавляем ему коины которые купил
mysql_query("UPDATE `bazar_coin` SET `kol` =`kol`- '".intval($_POST['kol'])."' WHERE `id` = '$item[id]'");
///////////////////////////////////////////////////////////////////////////////////////////////////Отнимаем колво коинов продавца/intval Фильтрируем запрос целым числом
mysql_query("UPDATE `users` SET `udata8` =`udata8`+ '$cena' WHERE `udata0` = '$item[usr]'");
///////////////////////////////////////////////////////////////////////////////////////////////////Добавляем адены продавцу
mysql_query("DELETE FROM `bazar_coin` WHERE `kol` = '0' and`id`='$item[id]'");
///////////////////////////////////////////////////////////////////////////////////////////////////Удаляем если на рынке 0
$time = date("H:i d.m.y");
$text = "<b>Coin of Luck</b> в количестве <u>$_POST[kol]</u> приобрёл <b>$log</b>, сумма <u>$cena</u> аден была успешно вам перечислена!";
mysql_query("INSERT INTO `msg_r` SET `user_from` = 'System', `user_to` = '$item[usr]', `time` = '$time', `read` = 1, `mail_msg` = '$text'");
echo "Вы успешно купили <u>$_POST[kol]</u> <b>Coin of Luck</b> за $cena аден<br>";
}
}}
break;
case 'back':
$b = mysql_query("SELECT * FROM bazar_coin WHERE usr = '$log' ORDER BY id");
////////////////////////////
$avto=mysql_num_rows($b);
if($avto>=1){
While($best = mysql_fetch_array($b))
{
echo"Вы продаёте <font color=gold>Coin of Luck</font> <u>($best[kol] шт.)</u> по <b>$best[cena]</b> аден за <u>(1 шт.)</u>";
echo"<br/><br/> <a href=\"runok_coin.php?mod=back2&tip=$best[tip]&id=$best[id]\">Забрать Coin of Luck</a>";
echo "<br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
}}else{
echo"У вас нет Coin of Luck на продаже!<br/>";
echo "<br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
}
break;
case 'back2':
if($_GET[tip]==CoinofLuck and !empty($_GET[id])){
$req = mysql_query("SELECT * FROM `bazar_coin` WHERE `usr` = '$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
////////////////////////////
$avto=mysql_num_rows($req);
if($avto==1){
$item = mysql_fetch_array($req);
$udata38=$udata38+$item[kol];
mysql_query("UPDATE `users` SET `udata38` = '$udata38' WHERE `udata0` = '$log' ");
mysql_query("DELETE FROM `bazar_coin` WHERE usr='$log' and `id`='".mysql_real_escape_string($_GET['id'])."'");
echo"<b>Coin of Luck</b> <b>$item[kol] шт.</b> забраны с продажи!<br/>";
echo "<br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
include_once"files/down.php";
exit;
}else{
echo"У вас нет Coin of Luck на продаже!<br/>";
echo "<br> <a href=\"runok_coin.php?\"> Вернуться</a><br>";
}
}
}
}
include_once"files/down.php";
?>