Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require(__DIR__.'/globals.php');
- print "<h3>Item Market</h3>";
- $_GET['action'] = isset($_GET['action']) && ctype_alphanum($_GET['action']) ? strtolower(trim($_GET['action'])) : false;
- switch($_GET['action'])
- {
- case "buy": item_buy(); break;
- case "gift1": item_gift1(); break;
- case "gift2": item_gift2(); break;
- case "remove": itemm_remove(); break;
- default: imarket_index(); break;
- }
- // going to add the code for get id here as its used multiple times
- $_GET['ID'] = isset($_GET['ID']) && ctype_digit($_GET['ID']) ? abs(intval($_GET['ID'])) : 0;
- // or simple
- // $_GET['ID'] = abs(intval($_GET['ID']));
- function imarket_index()
- {
- global $db,$ir,$c,$userid,$h;
- // whats this for? $check = $db->query("SELECT im.*,i.* FROM `itemmarket` im LEFT JOIN `items` i ON im.imITEM=i.itmid WHERE `imID` = {$_GET['ID']} AND `imADDER` = $userid");
- print "Viewing all listings...
- <table width=75% cellspacing=1 class='table'>
- <tr style='background:gray'>
- <th>Adder</th>
- <th>Item</th>
- <th>Price</th>
- <th>Links</th>
- </tr>";
- $q = $db->query("SELECT im.*, i.*, u.*,it.* FROM `itemmarket` im LEFT JOIN `items` i ON im.imITEM=i.itmid LEFT JOIN `users` u ON u.userid=im.imADDER LEFT JOIN itemtypes it ON i.itmtype=it.itmtypeid ORDER BY i.itmtype, i.itmname ASC");
- $lt = "";
- while($r=$db->fetch_row($q))
- {
- if($lt!=$r['itmtypename'])
- {
- $lt = $r['itmtypename'];
- print "\n<tr style='background: gray;'><th colspan=4>{$lt}</th></tr>";
- }
- if($r['imCURRENCY']=="money")
- $price="\$".number_format($r['imPRICE']);
- else
- $price=number_format($r['imPRICE'])." crystals";
- if($r['imADDER'] == $userid)
- $link = "[<a href='itemmarket.php?action=remove&ID={$r['imID']}'>Remove</a>]";
- else
- $link = "[<a href='itemmarket.php?action=buy&ID={$r['imID']}'>Buy</a>] [<a href='itemmarket.php?action=gift1&ID={$r['imID']}'>Gift</a>]";
- print "\n
- <tr>
- <td><a href='viewuser.php?u={$r['userid']}'>{$r['username']}</a> [{$r['userid']}]</td>
- <td>{$r['itmname']}</td>
- <td>$price</td>
- <td>[<a href='iteminfo.php?ID={$r['itmid']}'>Info</a>] $link</td>
- </tr>";
- }
- print "</table>";
- }
- function itemm_remove()
- {
- global $db,$ir,$c,$userid,$h;
- $q = $db->query("SELECT im.*,i.* FROM itemmarket im LEFT JOIN items i ON im.imITEM=i.itmid WHERE imID={$_GET['ID']} AND imADDER=$userid");
- if(!$db->num_rows($q))
- {
- print "Error, either this item does not exist, or you are not the owner.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- $r = $db->fetch_row($q);
- item_add($userid, $r['imITEM'], 1);
- $i = ($db->insert_id()) ? $db->insert_id() : 99999;
- $db->query("DELETE FROM itemmarket WHERE imID={$_GET['ID']}");
- $db->query("INSERT INTO imremovelogs VALUES ('', {$r['imITEM']}, {$r['imADDER']}, $userid, {$r['imID']}, $i, unix_timestamp(), '{$ir['username']} removed a {$r['itmname']} from the item market.')");
- print "Item removed from market!<br /> <a href='itemmarket.php'>> Back</a>";
- }
- function item_buy()
- {
- global $db,$ir,$c,$userid,$h;
- $q = $db->query("SELECT * FROM itemmarket im LEFT JOIN items i ON i.itmid=im.imITEM WHERE imID={$_GET['ID']}",$c);
- if(!$db->num_rows($q))
- {
- print "Error, either this item does not exist, or it has already been bought.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- $r = $db->fetch_row($q);
- $curr = $r['imCURRENCY'];
- if($r['imPRICE'] > $ir[$curr])
- {
- print "Error, you do not have the funds to buy this item.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- item_add($userid, $r['imITEM'], 1);
- $i=($db->insert_id()) ? $db->insert_id() : 99999;
- $db->query("DELETE FROM itemmarket WHERE imID={$_GET['ID']}");
- $db->query("UPDATE users SET $curr=$curr-{$r['imPRICE']} where userid=$userid");
- $db->query("UPDATE users SET $curr=$curr+{$r['imPRICE']} where userid={$r['imADDER']}");
- if($curr == "money")
- {
- event_add($r['imADDER'],"<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought your {$r['itmname']} item from the market for \$".number_format($r['imPRICE']).".",$c);
- $db->query("INSERT INTO imbuylogs VALUES ('', {$r['imITEM']}, {$r['imADDER']}, $userid, {$r['imPRICE']}, {$r['imID']}, $i, unix_timestamp(), '{$ir['username']} bought a {$r['itmname']} from the item market for \${$r['imPRICE']} from user ID {$r['imADDER']}')");
- print "You bought the {$r['itmname']} from the market for ".money_formatter($r['imPRICE']).".";
- }
- else
- {
- event_add($r['imADDER'],"<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought your {$r['itmname']} item from the market for ".number_format($r['imPRICE'])." crystals.",$c);
- $db->query("INSERT INTO imbuylogs VALUES ('', {$r['imITEM']}, {$r['imADDER']}, $userid, {$r['imPRICE']}, {$r['imID']}, $i, unix_timestamp(), '{$ir['username']} bought a {$r['itmname']} from the item market for {$r['imPRICE']} crystals from user ID {$r['imADDER']}')");
- print "You bought the {$r['itmname']} from the market for ".money_formatter($r['imPRICE'], '')." crystals.";
- }
- }
- function item_gift1()
- {
- global $db,$ir,$c,$userid,$h;
- $q=$db->query("SELECT * FROM itemmarket im LEFT JOIN items i ON i.itmid=im.imITEM WHERE imID={$_GET['ID']}");
- if(!$db->num_rows($q))
- {
- print "Error, either this item does not exist, or it has already been bought.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- $r = $db->fetch_row($q);
- $curr = $r['imCURRENCY'];
- if($r['imPRICE'] > $ir[$curr])
- {
- print "Error, you do not have the funds to buy this item.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- if($curr == "money")
- {
- print "Buying the <b>{$r['itmname']}</b> for ".money_formatter($r['imPRICE'])." as a gift...<br />
- <form action='itemmarket.php?action=gift2' method='post'>
- <input type='hidden' name='ID' value='{$_GET['ID']}' />
- User to give gift to: ".user_dropdown($c,'user')."<br />
- <input type='submit' value='Buy Item and Send Gift' />
- </form>";
- }
- else
- {
- print "Buying the <b>{$r['itmname']}</b> for ".money_formatter($r['imPRICE'], '')." crystals as a gift...<br />
- <form action='itemmarket.php?action=gift2' method='post'>
- <input type='hidden' name='ID' value='{$_GET['ID']}' />
- User to give gift to: ".user_dropdown($c,'user')."<br />
- <input type='submit' value='Buy Item and Send Gift' />
- </form>";
- }
- }
- $usercheck = $db->query("SELECT `userid` FROM `users` WHERE `userid` = ".$_POST['userid']);
- // Preform check using num_rows()
- if(!$db->num_rows($usercheck)) {
- // error
- $h->endpage();
- exit;
- }
- function item_gift2()
- {
- global $db,$ir,$c,$userid,$h;
- $_POST['user'] = isset($_POST['user']) && ctype_digit($_POST['user']) ? abs(intval($_POST['user'])) : 0;
- if(empty($_POST['user']) || empty($_POST['ID']))
- {
- echo "Something went wrong. <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- $q = $db->query("SELECT * FROM itemmarket im LEFT JOIN items i ON i.itmid=im.imITEM WHERE imID={$_POST['ID']}");
- if(!$db->num_rows($q))
- {
- print "Error, either this item does not exist, or it has already been bought.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- $r = $db->fetch_row($q);
- $curr = $r['imCURRENCY'];
- if($r['imPRICE'] > $ir[$curr])
- {
- print "Error, you do not have the funds to buy this item.<br /> <a href='itemmarket.php'>> Back</a>";
- $h->endpage();
- exit;
- }
- item_add($_POST['user'], $r['imITEM'], 1);
- $i=($db->insert_id()) ? $db->insert_id() : 99999;
- $db->query("DELETE FROM itemmarket WHERE imID={$_POST['ID']}");
- $db->query("UPDATE users SET $curr=$curr-{$r['imPRICE']} where userid=$userid");
- $db->query("UPDATE users SET $curr=$curr+{$r['imPRICE']} where userid={$r['imADDER']}");
- if($curr == "money")
- {
- event_add($r['imADDER'],"<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought your {$r['itmname']} item from the market for \$".number_format($r['imPRICE']).".",$c);
- event_add($_POST['user'], "<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought you a {$r['itmname']} from the item market as a gift.",$c);
- $u=$db->query("SELECT username FROM users WHERE userid={$_POST['user']}");
- if(!$db->num_rows($u))
- {
- echo "Invalid User.";
- $h->endpage();
- exit;
- }
- $uname = ($db->num_rows($u)) ? $db->fetch_single($u) : "Error Invalid User";
- $db->query("INSERT INTO imbuylogs VALUES ('', {$r['imITEM']}, {$r['imADDER']}, $userid, {$r['imPRICE']}, {$r['imID']}, $i, unix_timestamp(), '{$ir['username']} bought a {$r['itmname']} from the item market for \${$r['imPRICE']} from user ID {$r['imADDER']} as a gift for $uname [{$_POST['user']}]')");
- print "You bought the {$r['itmname']} from the market for \$".number_format($r['imPRICE'])." and sent the gift to $uname.";
- }
- else
- {
- event_add($r['imADDER'],"<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought your {$r['itmname']} item from the market for ".number_format($r['imPRICE'])." crystals.",$c);
- event_add($_POST['user'], "<a href='viewuser.php?u=$userid'>{$ir['username']}</a> bought you a {$r['itmname']} from the item market as a gift.",$c);
- $u=$db->query("SELECT username FROM users WHERE userid={$_POST['user']}");
- if(!$db->num_rows($u))
- {
- echo "Invalid User.";
- $h->endpage();
- exit;
- }
- $uname = ($db->num_rows($u)) ? $db->fetch_single($u) : "Error Invalid User";
- $db->query("INSERT INTO imbuylogs VALUES ('', {$r['imITEM']}, {$r['imADDER']}, $userid, {$r['imPRICE']}, {$r['imID']}, $i, unix_timestamp(), '{$ir['username']} bought a {$r['itmname']} from the item market for {$r['imPRICE']} crystals from user ID {$r['imADDER']} as a gift for $uname [{$_POST['user']}]')");
- print "You bought the {$r['itmname']} from the market for ".number_format($r['imPRICE'])." crystals and sent the gift to $uname.";
- }
- }
- $h->endpage();
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement