forked from simmoo/Mafia-Game-Script
-
Notifications
You must be signed in to change notification settings - Fork 0
/
myshop.php
355 lines (296 loc) · 13 KB
/
myshop.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
<?php
include"globals.php";
$getusershop=$db->query("select * from usershops where userid=$userid");
if(mysql_num_rows($getusershop)==0)
{
echo("You dont have a shop.");
exit($h->endpage());
}
$us=mysql_fetch_array($getusershop);
switch($_GET['do'])
{
case 'manage': manage(); break;
case 'upgrade': upgrade(); break;
case 'changename': changename(); break;
case 'changedesc': changedesc(); break;
case 'changesign': changesign(); break;
case 'close': closeshop(); break;
case 'removeitem': removeitem(); break;
case 'withdraw': withdraw(); break;
case 'logs': buylogs(); break;
default: myshop_index(); break;
}
function myshop_index()
{
global $ir,$c,$userid,$db, $us;
$getitems=$db->query("select * from usershopitems where shopid={$us['id']}");
$total=0;
while($totalitems=mysql_fetch_array($getitems))
{
$total=$total+$totalitems['quantity'];
}
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Your Shop - {$us['name']}</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<table align=center class=table width=60%>
<tr><th colspan=2>Manage Your Shop</th></tr>
<tr>
<td>
<a href=myshop.php?do=manage>Manage Items($total/{$us['size']})</a><br>
<a href=myshop.php?do=upgrade>Upgrade Size</a><br>
<a href=myshop.php?do=changename>Change Name</a><br>
<a href=myshop.php?do=changesign>Change Sign</a><br>
<a href=myshop.php?do=changedesc>Change Description</a><br>
</td>
<td valign=top>
Items Sold: {$us['totalsold']} <a href=myshop.php?do=logs>[Logs]</a><br><br>
Money: \${$us['money']} <a href=myshop.php?do=withdraw>[Withdraw]</a><br>
<hr> <br>
<div align=right><a href=myshop.php?do=close><b>Close Shop</b></a></div>
</td>
</tr>
</table></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>";
}
function buylogs()
{
global $ir,$c,$userid,$db,$us;
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Sales Log</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<table align=center class=table width=500>
<tr><th>Date</th><th>Buyer</th><th>Item</th><th>Sale Price</th>";
$getlogs=$db->query("select * from usershoplogs where seller=$userid order by date desc") or die(mysql_error());
while($log=mysql_Fetch_array($getlogs))
{
$date=date('F j, Y g:i:s a',$log['date']);
$getbuyer=$db->query("select * from users where userid={$log['buyer']}");
$buy=mysql_fetch_array($getbuyer);
print"<tr><td>$date</td><td align=center><a href=viewuser.php?u={$buy['userid']}>{$buy['username']}</a></td><td align=center>{$log['item']} x{$log['quantity']}</td><td align=center>\${$log['price']}</td></tr>";
}
print"</table></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div><center><br><br><a href=\"javascript: history.go(-1)\">Click here to go back</a></center>";
}
function changesign()
{
global $ir,$c,$userid,$db,$us;
if($_POST['subm']==1)
{
$sign=mysql_real_escape_string($_POST['sign']);
if($sign=="")
{
$sign="nosign.jpg";
}
$db->query("update usershops set `image`='$sign' where id={$us['id']}");
print"<center>You have changed your shops sign to:<br><blockquote><img src='$sign' width=400 height=100></blockquote><br><a href=myshop.php>click here to go back</a></center>";
}
else
{
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Edit your shop's sign below:</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<blockquote> <b><img src='{$us['image']}' width=400 height=100></b></blockquote>
<br><form action='myshop.php?do=changesign' method='post'>Shop Sign: <br><font size=1>Must be direct URL to image!</font><br>
<input type=text name=sign value='{$us['image']}'><input type=hidden name=subm value=1><br><input type=submit value='Change Shop Sign'></form> </div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>
<a href=\"javascript:history.go(-1)\">Click here to go back</a></center>";
}
}
function upgrade()
{
global $ir,$c,$userid,$db,$us;
$upgradeprice=($us['size']*100)+100;
$newsize=$us['size']+1;
if($ir['money']<$upgradeprice)
{
die("<center>You do not have enough money to upgrade your shop.<br>If you have money in your shop till, you will need to withdraw it before you can use it.</center>");
}
if($_POST['yes']==1)
{
$db->query("update users set money=money-$upgradeprice where userid=$userid");
$db->query("update usershops set size=size+1 where id={$us['id']}");
print"
<center>You have upgraded your shops capacity to <b>$newsize</b>!<br><a href=myshop.php>click here to go back</a></center>";
}
else
{
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Upgrade Shop</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<center>You are about to upgrade your shop to a capacity of <b>$newsize</b> items.<br>This will cost $$upgradeprice.<br><br><form action='myshop.php?do=upgrade' method='post'><input type=hidden name=yes value=1><input type=submit value='Upgrade Shop'></form><br><form action=\"javascript: history.go(-1)\"><input type=submit value=Cancel></form></center></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>";
}
}
function changedesc()
{
global $ir,$c,$userid,$db,$us;
if($_POST['desc'])
{
$desc=mysql_real_escape_string($_POST['desc']);
$db->query("update usershops set `description`='$desc' where id={$us['id']}");
print"<center>You have changed your shops description to:<br><blockquote><b>{$_POST['desc']}</b></blockquote><br><a href=myshop.php>click here to go back</a></center>";
}
else
{
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Edit your shop description below:</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<blockquote> <b>{$us['desc']}</b></blockquote>
<br><form action='myshop.php?do=changedesc' method='post'>Shop Description: <br>
<textarea name=desc rows=5 cols=30>{$us['description']}</textarea><br><input type=submit value='Change Shop Description'></form> </div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>
<a href=\"javascript:history.go(-1)\">Click here to go back</a></center>";
}
}
function changename()
{
global $ir,$c,$userid,$db,$us;
if($_POST['name'])
{
$name=mysql_real_escape_string($_POST['name']);
$db->query("update usershops set `name`='$name' where id={$us['id']}");
print"<center>You have changed your shops name to <b>{$_POST['name']}</b><br><a href=myshop.php>click here to go back</a></center>";
}
else
{
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Your shop's name is currently: <b>{$us['name']}</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<form action='myshop.php?do=changename' method='post'>Shop Name: <input type=text name=name><input type=submit value='Change Shop Name'></form></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>
<a href=\"javascript:history.go(-1)\">Click here to go back</a></center>";
}
}
function withdraw()
{
global $ir,$c,$userid,$db,$us;
$_POST['amount']=abs($_POST['amount']);
if($_POST['amount'])
{
if($_POST['amount']>$us['money'])
{
die("Your shop doesn't have that much money.");
}
$db->query("update users set money=money+{$_POST['amount']} where userid=$userid");
$db->query("update usershops set money=money-{$_POST['amount']} where id={$us['id']}");
print"<center>You withdrew \${$_POST['amount']} from your shop </center>";
}
else
{
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Withdraw Money</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<center>You have \${$us['money']} in your shop <br>How much would you like to withdraw?
<br>
<form action='myshop.php?do=withdraw' method='post'>
Amount: $<input type=text name=amount value={$us['money']}>
<input type=submit value=Withdraw></form></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div><br><a href=\"javascript:history.go(-1)\">Click here to go back</a></center>";
}
}
function closeshop()
{
global $ir,$c,$userid,$db,$us;
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Closing your shop</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
";
if($_POST['yes']==1)
{
$checkforitems=$db->query("select * from usershopitems where shopid={$us['id']}");
if(mysql_num_rows($checkforitems)!=0)
{
die("<center>It would be foolish to leave items in your shop before closing it!<br><a href='myshop.php?do=manage'>click here to manage your items</a><a href=\"javascript: history.go(-1)\">or click here to go back</a></center>");
}
$db->query("delete from usershops where userid=$userid");
print"<center>You have closed your shop.</center>";
}
else
{
print"<center>Are you sure you wish to close your shop?<br>
You won't be able to undo this.<br><br>
<form action='myshop.php?do=close' method='post'><input type=hidden name=yes value=1><input type=submit value='I am sure'></form><form action=\"javascript:history.go(-1)\" method=get><input type=submit value=Nervermind></form></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div></center>";
}
}
function removeitem()
{
global $ir,$c,$userid,$db,$us;
$_GET['id']=mysql_real_escape_string($_GET['id']);
$getid=$db->query("select * from usershopitems where id='{$_GET['id']}'") or die(mysql_error());
if(mysql_num_rows($getid)==0)
{
die("This item is not in your shop.");
}
$id=mysql_fetch_array($getid);
if($id['quantity']>1)
{
item_add($userid, $id['itemid'], $id['quantity']);
}
else
{
item_add($userid, $id['itemid'], 1);
}
$db->query("delete from usershopitems where id={$id['id']}") or die(mysql_error());
print"<center>The item has been removed from your shop.<br><a href=myshop.php?do=manage>Continue Managing Items</a></center>";
}
function manage()
{
global $ir,$c,$userid,$db,$us;
if($_POST['price'] && $_POST['id'])
{
$_POST['id']=mysql_real_escape_string($_POST['id']);
$_POST['price']=mysql_real_escape_string($_POST['price']);
$getitem=$db->query("select * from usershopitems where `id`='{$_POST['id']}'");
$it=mysql_fetch_array($getitem);
if($it['shopid']!=$us['id'])
{
die("You should try editing your own shop items.");
}
$db->query("update usershopitems set `price`='{$_POST['price']}' where `id`='{$_POST['id']}'");
print"<font color=green>Item price has been changed.</font><br>";
}
print"
<div class='generalinfo_txt'>
<div><img src='images/info_left.jpg' alt='' /></div>
<div class='info_mid'><h2 style='padding-top:10px;'> Manage Shop</h2></div>
<div><img src='images/info_right.jpg' alt='' /></div> </div>
<div class='generalinfo_simple'><br> <br><br>
<table align=center class=table width=70%>
<tr><th colspan=3>Items currently in your shop</th></tr><tr><th width=50%>Item</th><th width=35%>Price</th><th>Option</th>";
$getshopitems=$db->query("select * from usershopitems where shopid={$us['id']}") or die(mysql_error());
while($it=mysql_fetch_array($getshopitems))
{
$getitem=$db->query("select * from items where itmid={$it['itemid']}") or die(mysql_error());
$item=mysql_fetch_array($getitem);
if($it['quantity']>1)
{
$quantity="x{$it['quantity']}";
}
else
{
$quantity="";
}
print"<tr><td valign=top>{$item['itmname']} $quantity</td><td align=center><form action='myshop.php?do=manage' method='post'>$<input type=text name=price value={$it['price']} size=10><input type=hidden name=id value={$it['id']}><input type=submit value=Change></form></td><td align=center><form action='myshop.php' method='get'><input type=hidden name=do value=removeitem><input type=hidden name=id value='{$it['id']}'><input type=submit value=Remove></form></td></tr>";
}
print"</table></div><div><img src='images/generalinfo_btm.jpg' alt='' /></div><br></div></div></div></div></div>";
print"<center><a href=myshop.php>Click here to go back</a></center>";
}
$h->endpage();
?>