API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 22nd, 2018
81
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 21.83 KB | None | 0 0
raw download clone embed print report
  1. <?
  2. include('config.php');
  3. require('steamauth/steamauth.php');
  4. if(isset($_SESSION["steamid"])) {
  5. include_once('steamauth/userInfo.php');
  6. }
  7.  
  8.  
  9.  
  10.  
  11. if(!$_POST) die("not post request");
  12.  
  13. /* ### Вызываем функцию STOREGAMER.RU ### */
  14. $function = $_POST['function'];
  15. strip_tags($function);
  16. $function();
  17.  
  18. /* ### Сохранение ссылки STOREGAMER.RU (функция) ### */
  19. function saveLink() {
  20. global $link;
  21.  
  22. $url = clear_string($_POST['link']);
  23.  
  24. $pos = strrpos($url, "https://steamcommunity.com/tradeoffer/new/?partner=");
  25. if ($pos === false) { // обратите внимание: три знака равенства
  26. echo json_encode(array("success"=>0));
  27. } else {
  28. $link->query("UPDATE users SET tradelink='".$url."' WHERE steamid='".$_SESSION["steamid"]."'");
  29. echo json_encode(array("success"=>1));
  30. }
  31. }
  32.  
  33. /* ### Открытие кейса CSbooT.RU (функция) ### */
  34. function openCase() {
  35. global $link;
  36.  
  37. $case = clear_string($_POST['case']);
  38.  
  39. $result1 = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION["steamid"].'"');
  40. $user = mysqli_fetch_array($result1, MYSQLI_ASSOC);
  41.  
  42. if($user['tradelink'] == "") {
  43. $json = array("open"=>0, "error"=>"Введите ссылку на обмен!");
  44. echo json_encode($json);
  45. exit;
  46. }
  47.  
  48. $price = 0;
  49.  
  50. $cases = array("covertCase", "major", "dust_2", "dust", "cobblestone", "chop_shop", "cache", "bank", "baggage", "aztec", "assault", "alpha", "gamma", "esport", "spect1", "hydra1", "beav", "dum", "hg", "nak", "navi", "fnatik", "bomj", "sel", "fia", "zasCase","MCase", "zapCase", "armCase", "promCase", "shirpCase", "sword", "bratishkin", "stint", "vanguard", "chroma2", "fenix", "shadow", "breakout", "falchion");
  51.  
  52. if(!in_array($case, $cases)) {
  53. $json = array("open"=>1, "error"=>"Case undefined");
  54. echo json_encode($json);
  55. exit;
  56. }
  57.  
  58. $hitchance = 0;
  59.  
  60. if ($case == 'covertCase') {
  61. $price = 250;
  62. } elseif ($case == 'zasCase') {
  63. $price = 150;
  64. } elseif ($case == 'zapCase') {
  65. $price = 5;
  66. } elseif ($case == 'armCase') {
  67. $price = 6000;
  68. } elseif ($case == 'promCase') {
  69. $price = 299;
  70. } elseif ($case == 'shirpCase') {
  71. $price = 350;
  72. } elseif ($case == 'sword') {
  73. $price = 310;
  74. } elseif ($case == 'bratishkin') {
  75. $price = 180;
  76. } elseif ($case == 'stint') {
  77. $price = 350;
  78. } elseif ($case == 'fenix') {
  79. $price = 70;
  80. } elseif ($case == 'breakout') {
  81. $price = 99;
  82. } elseif ($case == 'shadow') {
  83. $price = 115;
  84. } elseif ($case == 'falchion') {
  85. $price = 4500;
  86. } elseif ($case == 'vanguard') {
  87. $price = 220;
  88. $hitchance = 1;
  89. } elseif ($case == 'chroma2') {
  90. $price = 99;
  91. }elseif ($case == 'cobbl') {
  92. $price = 99;
  93. }elseif ($case == 'MCASE') {
  94. $price = 115;
  95. }elseif ($case == 'hg') {
  96. $price = 175;
  97.  
  98. }elseif ($case == 'fia') {
  99. $price = 115;
  100. }elseif ($case == 'sel') {
  101. $price = 85;
  102. }elseif ($case == 'bomj') {
  103. $price = 8;
  104. }elseif ($case == 'fnatik') {
  105. $price = 399;
  106. }elseif ($case == 'navi') {
  107. $price = 400;
  108. }elseif ($case == 'nak') {
  109. $price = 99;
  110. }elseif ($case == 'major') {
  111. $price = 99;
  112. }elseif ($case == 'dum') {
  113. $price = 298;
  114. }elseif ($case == 'beav') {
  115. $price = 310;
  116. }elseif ($case == 'spect1') {
  117. $price = 89;
  118. }elseif ($case == 'hydra1') {
  119. $price = 89;
  120. }elseif ($case == 'esport') {
  121. $price = 89;
  122. }elseif ($case == 'gamma') {
  123. $price = 89;
  124. }elseif ($case == 'alpha') {
  125. $price = 64;
  126. }elseif ($case == 'assault') {
  127. $price = 649;
  128. }elseif ($case == 'aztec') {
  129. $price = 38;
  130. }elseif ($case == 'baggage') {
  131. $price = 64;
  132. }elseif ($case == 'bank') {
  133. $price = 9;
  134. }elseif ($case == 'cache') {
  135. $price = 25;
  136. }elseif ($case == 'chop_shop') {
  137. $price = 65;
  138. }elseif ($case == 'cobblestone') {
  139. $price = 85;
  140. }elseif ($case == 'dust') {
  141. $price = 140;
  142. }elseif ($case == 'dust_2') {
  143. $price = 5;
  144. }
  145.  
  146. if($user['money'] >= $price) {
  147.  
  148.  
  149. // Рандомайзер предметов
  150.  
  151. $isCase = false;
  152. if ($case == 'fenix') {
  153. $isCase = true;
  154. } elseif ($case == 'breakout') {
  155. $isCase = true;
  156. } elseif ($case == 'shadow') {
  157. $isCase = true;
  158. } elseif ($case == 'falchion') {
  159. $isCase = true;
  160. } elseif ($case == 'vanguard') {
  161. $isCase = true;
  162. } elseif ($case == 'chroma2') {
  163. $isCase = true;
  164. } elseif ($case == 'bratishkin') {
  165. $isCase = true;
  166. } elseif ($case == 'sword') {
  167. $isCase = true;
  168. } elseif ($case == 'dum') {
  169. $isCase = true;
  170. } elseif ($case == 'beav') {
  171. $isCase = true;
  172. } elseif ($case == 'promCase') {
  173. $isCase = true;
  174. } elseif ($case == 'stint') {
  175. $isCase = true;
  176. }
  177.  
  178. $log = "";
  179.  
  180. $result = $link->query('SELECT * FROM `info` WHERE `info_key`="coef"');
  181. $config1 = mysqli_fetch_array($result, MYSQLI_ASSOC);
  182.  
  183. $coef = 0;
  184. $chance_type = rand(1,3);
  185. $rand1 = 0;
  186. $chanceq = (int)$user['chanceq'];
  187.  
  188. $random = rand(1,100);
  189.  
  190. if($hitchance == 1) $random = 200;
  191.  
  192. $result132 = $link->query('SELECT * FROM `info` WHERE `info_key`="hot"');
  193. $zxc = mysqli_fetch_array($result132, MYSQLI_ASSOC);
  194.  
  195. if((int)$zxc['info_value'] - time() <= 1 && $case == 'hot') {
  196. $json = array("open"=>0, "error"=>"Global кейс недоступен в данное время!");
  197. echo json_encode($json);
  198. die();
  199. }
  200.  
  201. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`<'.$price.' ORDER BY rand() LIMIT 1');
  202. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  203.  
  204.  
  205. if(!$isCase) {
  206. if($random <= 77) {
  207. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`<'.$price.' ORDER BY rand() LIMIT 1');
  208. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  209. $log .= "(сильно не повезло, в минус) ";
  210. }
  211.  
  212.  
  213.  
  214.  
  215.  
  216.  
  217.  
  218.  
  219.  
  220.  
  221. if($random >= 92 && $random <= 200) {
  222. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  223. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  224. $log .= "(повезло, окупается) ";
  225. }
  226. } else {
  227. if($random <= 100) {
  228. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`<'.$price.' ORDER BY rand() LIMIT 1');
  229. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  230. $log .= "(сильно не повезло, в минус) (кейс) ";
  231. }
  232.  
  233. if($random >= 78 && $random <= 150) {
  234. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price/2).' AND `price`<'.($price*2).' ORDER BY rand() LIMIT 1');
  235. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  236. $log .= "(середина, оружие может окупиться в два раза) (кейс) ";
  237. }
  238.  
  239. if($random >= 92 && $random <= 200) {
  240. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  241. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  242. $log .= "(повезло, окупается) (кейс) ";
  243. }
  244. if($hitchance == 1 && $case == "vanguard") {
  245. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `item_type`="knife" ORDER BY rand() LIMIT 1');
  246. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  247. $log = "(нож) (кейс) ";
  248. }
  249. }
  250.  
  251.  
  252.  
  253.  
  254.  
  255.  
  256.  
  257.  
  258.  
  259.  
  260.  
  261.  
  262.  
  263.  
  264.  
  265.  
  266.  
  267.  
  268.  
  269.  
  270.  
  271.  
  272.  
  273.  
  274.  
  275.  
  276. if($random == 600 && $case == 'covertCase') {
  277. if(rand(1, 4) == 4) {
  278. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*8).' AND `price`<'.($price*12).' ORDER BY rand() LIMIT 1');
  279. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  280. $log .= "(ЭТО НОЖ!) ";
  281. } else {
  282. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  283. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  284. $log .= "(повезло, окупается) ";
  285. }
  286. }
  287. if($random == 600 && $case == 'covertCase') {
  288. if(rand(1, 4) == 4) {
  289. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*8).' AND `price`<'.($price*12).' ORDER BY rand() LIMIT 1');
  290. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  291. $log .= "(ЭТО НОЖ!) ";
  292. } else {
  293. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  294. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  295. $log .= "(повезло, окупается) ";
  296. }
  297. }
  298.  
  299. if($random == 100 && $case == 'promCase') {
  300. if(rand(1, 5) == 5) {
  301. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*6).' AND `price`<'.($price*30).' ORDER BY rand() LIMIT 1');
  302. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  303. $log .= "(супер окупание запрещенного) ";
  304. } else {
  305. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  306. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  307. $log .= "(повезло, окупается) ";
  308. }
  309. }
  310. if($random == 1000 && $case == 'dum') {
  311. if(rand(1, 5) == 5) {
  312. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*6).' AND `price`<'.($price*30).' ORDER BY rand() LIMIT 1');
  313. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  314. $log .= "(супер окупание запрещенного) ";
  315. } else {
  316. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  317. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  318. $log .= "(повезло, окупается) ";
  319. }
  320. }
  321.  
  322. if($random == 100 && $case == 'zasCase') {
  323. if(rand(1, 6) == 6) {
  324. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*6).' AND `price`<'.($price*25).' ORDER BY rand() LIMIT 1');
  325. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  326. $log .= "(супер окупание засекреченного) ";
  327. } else {
  328. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  329. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  330. $log .= "(повезло, окупается) ";
  331. }
  332. }
  333.  
  334. if($random == 100 && $case == 'stint') {
  335. if(rand(1, 6) == 6) {
  336. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price*6).' AND `price`<'.($price*25).' ORDER BY rand() LIMIT 1');
  337. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  338. $log .= "(супер окупание засекреченного) ";
  339. } else {
  340. $result = $link->query('SELECT * FROM `items` WHERE `case_id`="'.$case.'" AND `price`>'.($price).' AND `price`<'.($price*5).' ORDER BY rand() LIMIT 1');
  341. $row = mysqli_fetch_array($result, MYSQLI_ASSOC);
  342. $log .= "(повезло, окупается) ";
  343. }
  344. }
  345.  
  346.  
  347.  
  348.  
  349.  
  350.  
  351.  
  352.  
  353.  
  354. /*if((int)$_SESSION['steamid'] == 76561198052661493) {
  355. $row['item_name'] = "Кирито | Лох";
  356. $row['item_type'] = "arm";
  357. $row['item_img'] = "http://cs629124.vk.me/v629124328/41385/YhMtINJGZ-c.jpg";
  358. $row['price'] = "365";
  359. }*/
  360.  
  361. $log .= "<b><p>random = $random, coef = $coef, chanceq = $chanceq</p></b>";
  362.  
  363. // Конец
  364.  
  365. $link->query("INSERT INTO `last_winners` SET steamid='".$_SESSION["steamid"]."', nickname='".$user['nickname']."',item_img='".$row['item_img']."',item_name='".$row['item_name']."',caseName='".$case."',item_type='".$row['item_type']."',item_id=".$row['id'].",price=".$row['price'].",state=0,chance=".$chance_type.",log='".$log."',time=".time());
  366.  
  367. $link->query("UPDATE users SET money=(money-".$price.") WHERE steamid='".$_SESSION["steamid"]."'");
  368. $link->query("UPDATE users SET all_spend=(all_spend+".$price.") WHERE steamid='".$_SESSION["steamid"]."'");
  369. $link->query("UPDATE users SET all_open=(all_open+1) WHERE steamid='".$_SESSION["steamid"]."'");
  370. $link->query("UPDATE users SET last_chance=".$chance_type." WHERE steamid='".$_SESSION["steamid"]."'");
  371. $link->query("UPDATE users SET chanceq=0 WHERE steamid='".$_SESSION["steamid"]."'");
  372.  
  373. $result2 = $link->query('SELECT * FROM `last_winners` ORDER BY `id` DESC LIMIT 1');
  374. $row2 = mysqli_fetch_array($result2, MYSQLI_ASSOC);
  375.  
  376. $infores = $link->query('SELECT * FROM `info` WHERE `info_key`="full_sum"');
  377. $info = mysqli_fetch_array($infores, MYSQLI_ASSOC);
  378.  
  379. $info['info_value'] = $info['info_value'] + $price;
  380.  
  381. $a = $info['info_value'];
  382.  
  383. $link->query("UPDATE info SET info_value='$a' WHERE info_key='full_sum'");
  384.  
  385. $json = array("open"=>1, "item"=>array("id"=>$row2['id'],"name"=>$row['item_name'],"type"=>$row['item_type'],"img"=>$row['item_img'],"price"=>$row['price']),"balance"=>$user['money'],"a"=>$isCase,"b"=>$rand1);
  386. } else {
  387. $json = array("open"=>0, "error"=>"Недостаточно средств на балансе!");
  388. }
  389. echo json_encode($json);
  390. }
  391.  
  392. /* ### Получение последних 10 победителей ### */
  393. function getWinners() {
  394. global $link;
  395.  
  396. $result = $link->query('SELECT * FROM `last_winners` WHERE `giveaway`=0 ORDER BY `id` DESC LIMIT 12');
  397. while($row = mysqli_fetch_array($result)) {
  398. $json[] = array("id"=>$row['id'],"steamid"=>$row['steamid'],"item_img"=>$row['item_img'],"item_type"=>$row['item_type'],"nickname"=>$row['nickname'],"caseName"=>$row['caseName'],"date"=>date("Y-m-d",$row['time']));
  399. }
  400. echo json_encode($json);
  401. }
  402.  
  403. /* ### Открытие бонус кейса ### */
  404. function openBonusCase() {
  405. global $link;
  406.  
  407. $json = array();
  408.  
  409. $result = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION['steamid'].'"');
  410. $user = mysqli_fetch_array($result);
  411.  
  412. if((int)$user['bonus'] >= 1) {
  413. // 0-50 ничего
  414. // 50-700 +50 руб
  415. // 701-850 +150 руб
  416. // 851-950 x1.2
  417. // 951-1000 x1.4
  418. $random = rand(0, 1000);
  419. $item = 0;
  420.  
  421. // ## По умолчанию [
  422. $item = 1;
  423. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"prom");
  424. // ]
  425.  
  426. if($random >= 0 && $random <= 500) {
  427. $item = 1;
  428. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"prom");
  429. }
  430.  
  431. if($random >= 501 && $random <= 700) {
  432. $item = 2;
  433. $link->query("UPDATE users SET money=(money+50) WHERE steamid='".$_SESSION["steamid"]."'");
  434. $user['money'] = (int)$user['money'] + 50;
  435. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"arm");
  436. }
  437.  
  438. if($random >= 701 && $random <= 850) {
  439. $item = 3;
  440. $link->query("UPDATE users SET money=(money+100) WHERE steamid='".$_SESSION["steamid"]."'");
  441. $user['money'] = (int)$user['money'] + 100;
  442. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"zap");
  443. }
  444.  
  445. if($random >= 971 && $random <= 1000) {
  446. $item = 4;
  447. $link->query("UPDATE users SET money=(money+500) WHERE steamid='".$_SESSION["steamid"]."'");
  448. $user['money'] = (int)$user['money'] + 500;
  449. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"zas");
  450. }
  451.  
  452. if($random >= 851 && $random <= 970) {
  453. $item = 5;
  454. $link->query("UPDATE users SET bonus=(bonus+1) WHERE steamid='".$_SESSION["steamid"]."'");
  455. $json = array("open"=>1,"id"=>$item,"balance"=>$user['money'],"type"=>"covert");
  456. }
  457.  
  458. $link->query("UPDATE users SET bonus=(bonus-1) WHERE steamid='".$_SESSION["steamid"]."'");
  459.  
  460. } else {
  461. echo json_encode(array("error"=>115, "error"=>"Недостаточно бонус кейсов!"));
  462. }
  463. echo json_encode($json);
  464. }
  465.  
  466. /* ### Продажа предмета ### */
  467. function sellItem() {
  468. global $link;
  469.  
  470. $id = $_POST['itemid'];
  471.  
  472. $result = $link->query('SELECT * FROM `last_winners` WHERE `id`='.$id);
  473. $row = mysqli_fetch_array($result);
  474.  
  475. if($row['steamid'] == $_SESSION['steamid'] && $row['state'] == 0) {
  476. $link->query("UPDATE users SET money=(money+".$row['price'].") WHERE steamid='".$_SESSION["steamid"]."'");
  477. $link->query("UPDATE last_winners SET state=2 WHERE id=".$id);
  478.  
  479. $result1 = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION["steamid"].'"');
  480. $user = mysqli_fetch_array($result1, MYSQLI_ASSOC);
  481.  
  482. echo json_encode(array("error"=>0, "sell"=>1, "price"=>$row['price']));
  483. } else {
  484. echo json_encode(array("error"=>40, "sell"=>0));
  485. }
  486. }
  487.  
  488. /* ### Ввод промокода ### */
  489. function takePromo() {
  490. global $link;
  491.  
  492. $promo = $_POST['promo'];
  493.  
  494. $result = $link->query('SELECT * FROM `promo` WHERE `promocode`="'.$promo.'"');
  495.  
  496. $row_cnt = $result->num_rows;
  497.  
  498. if($row_cnt >= 1) {
  499. $row = mysqli_fetch_array($result);
  500.  
  501. if($row['usable'] == 0) {
  502.  
  503. $link->query("UPDATE users SET money=(money+".$row['money'].") WHERE steamid='".$_SESSION["steamid"]."'");
  504. $link->query("UPDATE promo SET usable=1,steamid='".$_SESSION['steamid']."' WHERE `promocode`='$promo'");
  505.  
  506. $result1 = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION["steamid"].'"');
  507. $user = mysqli_fetch_array($result1, MYSQLI_ASSOC);
  508.  
  509. echo json_encode(array("error"=>0, "message"=>"Промокод активирован!","balance"=>$user['money']));
  510. } else {
  511. echo json_encode(array("error"=>1, "message"=>"Промокод уже активирован"));
  512. }
  513.  
  514. } else {
  515. echo json_encode(array("error"=>1, "message"=>"Промокод не найден"));
  516. }
  517. }
  518.  
  519. /* ### Ввод рефки ### */
  520. function setRef() {
  521. global $link;
  522.  
  523. $result1 = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION["steamid"].'"');
  524. $user = mysqli_fetch_array($result1, MYSQLI_ASSOC);
  525.  
  526. $ref = (int)$_POST['ref'];
  527. $ref = $ref / 116;
  528.  
  529. $result = $link->query('SELECT * FROM `users` WHERE `id`='.$ref);
  530.  
  531. $row_cnt = $result->num_rows;
  532.  
  533. if($row_cnt >= 1) {
  534. $row = mysqli_fetch_array($result);
  535.  
  536. if($_SESSION["steamid"] != $row['steamid']) {
  537. if($user['referal'] == "") {
  538.  
  539. $link->query("UPDATE users SET money=(money+10), referal='".$row['steamid']."' WHERE steamid='".$_SESSION["steamid"]."'");
  540.  
  541. $result1 = $link->query('SELECT * FROM `users` WHERE `steamid`="'.$_SESSION["steamid"].'"');
  542. $user = mysqli_fetch_array($result1, MYSQLI_ASSOC);
  543.  
  544. echo json_encode(array("error"=>0, "message"=>"Вы стали рефералом!","balance"=>$user['money']));
  545. } else {
  546. echo json_encode(array("error"=>1, "message"=>"Вы уже стали рефералом"));
  547. }
  548. } else {
  549. echo json_encode(array("error"=>1, "message"=>"Вы не можете использовать свой реферальный код"));
  550. }
  551.  
  552. } else {
  553. echo json_encode(array("error"=>1, "message"=>"Реферальный код не найден"));
  554. }
  555. }
  556.  
  557. /* ### Отправка предмета (админка) ### */
  558. function sendItem() {
  559. global $link;
  560.  
  561. $id = $_POST['itemid'];
  562.  
  563. $result = $link->query('SELECT * FROM `last_winners` WHERE `id`='.$id);
  564. $row = mysqli_fetch_array($result);
  565.  
  566. if($row['state'] == 1) {
  567. $result2 = $link->query('SELECT * FROM `items` WHERE `item_name`="'.$row['item_name'].'"');
  568. $item = mysqli_fetch_array($result2);
  569. $link->query("UPDATE last_winners SET state=3 WHERE id=".$id);
  570. echo json_encode(array("error"=>0, "sell"=>1, "price"=>$item['price']));
  571. }
  572. }
  573.  
  574. /* ### Отменить покупку (админка) ### */
  575. function disbuy() {
  576. global $link;
  577.  
  578. $id = $_POST['itemid'];
  579.  
  580. $result = $link->query('SELECT * FROM `last_winners` WHERE `id`='.$id);
  581. $row = mysqli_fetch_array($result);
  582.  
  583. if($row['buy'] == 1) {
  584. $link->query("UPDATE last_winners SET buy=0 WHERE id=".$id);
  585. echo json_encode(array("error"=>0));
  586. }
  587. }
  588.  
  589. /* ### Удаление предмета (админка) ### */
  590. function deleteItem() {
  591. global $link;
  592.  
  593. $id = $_POST['itemid'];
  594.  
  595. $link->query('DELETE FROM `last_winners` WHERE `id`='.$id);
  596.  
  597. echo json_encode(array("error"=>0));
  598. }
  599.  
  600. /* ### Получение предмета ### */
  601. function getItem() {
  602. global $link;
  603.  
  604. $id = $_POST['itemid'];
  605.  
  606. $result = $link->query('SELECT * FROM `last_winners` WHERE `id`='.$id);
  607. $row = mysqli_fetch_array($result);
  608.  
  609. if($row['steamid'] == $_SESSION['steamid'] && $row['state'] == 0) {
  610. $result2 = $link->query('SELECT * FROM `items` WHERE `item_name`="'.$row['item_name'].'"');
  611. $item = mysqli_fetch_array($result2);
  612. $link->query("UPDATE last_winners SET state=1 WHERE id=".$id);
  613.  
  614. $infores = $link->query('SELECT * FROM `info` WHERE `info_key`="earn_user_sum"');
  615. $info = mysqli_fetch_array($infores, MYSQLI_ASSOC);
  616.  
  617. $info['info_value'] = $info['info_value'] + $row['price'];
  618.  
  619. $a = $info['info_value'];
  620.  
  621. $link->query("UPDATE info SET info_value='$a' WHERE info_key='earn_user_sum'");
  622.  
  623. echo json_encode(array("error"=>0));
  624. } else {
  625. echo json_encode(array("error"=>40));
  626. }
  627. }
  628.  
  629. /* ### Получение последних 10 победителей ### */
  630. function getItemsCase() {
  631. global $link;
  632.  
  633. $result = $link->query('SELECT * FROM `items` ORDER BY id');
  634. $json = array();
  635. while($row = mysqli_fetch_array($result)) {
  636. $json[] = array("case_id"=>$row['case_id'],"item_name"=>$row['item_name'],"item_type"=>$row['item_type'],"item_img"=>$row['item_img']);
  637. }
  638. echo json_encode($json);
  639. }
  640.  
  641. /* ### Очистка строки (функция) ### */
  642. function clear_string($d) {
  643. $s = array("'","\"");
  644. $r = array("","");
  645. $d = $d;
  646. $d = htmlspecialchars($d);
  647. $d = stripslashes($d);
  648. $d = trim($d);
  649. $d = str_replace($s, $r, $d);
  650. return $d;
  651. }
  652. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!