Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_POST['badgeid']))
- {
- if(!empty($_POST['badgeid']))
- {
- $badgeid = intval($_POST['badgeid']);
- $R1 = $bdd->prepare('SELECT * FROM badges WHERE id = ?');
- $R1->execute(array($badgeid));
- if($R1->rowCount() == 1)
- {
- $RE1 = $R1->fetch(PDO::FETCH_OBJ);
- if($_SESSION['jetons'] >= $RE1->prix)
- {
- $R2 = $bdd->prepare('SELECT * FROM user_badges WHERE user_id = ? AND badge_id = ?');
- $R3->execute(array($_SESSION['id'], $RE1->badge_id));
- if($R4->rowCount() == 0)
- {
- $R5 = $bdd->prepare('INSERT INTO user_badges (user_id, badge_id) VALUES (?, ?)');
- $R5->execute(array($_SESSION['id'], $RE1->badge_id));
- $R6 = $bdd->prepare('UPDATE users SET jetons = jetons - ? WHERE id = ?');
- $R6->execute(array($RE1->prix, $_SESSION['id']));
- die('ok');
- }
- else
- {
- die('Tu possèdes déjà ce badge.');
- }
- }
- else
- {
- die('Il te manque '.intval($RE1->prix).' jetons pour pouvoir acheter ce badge.');
- }
- }
- else
- {
- die('Ce badge n\'existe pas.');
- }
- }
- else
- {
- die('Une erreur est survenue.');
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement