<?php
if (!defined('FLUX_ROOT')) {
exit;
}
$this->loginRequired();
if (!count($_POST) || !$params->get('unban')) {
$this->deny();
}
if (!($unbanList = $params->get('unban_list')) instanceof Flux_Config || !count($unbanList = $unbanList->toArray())) {
$session->setMessageData(Flux::message('IpbanNothingToUnban'));
} elseif (!Flux_Security::csrfValidate('IPUnban', $_POST, $error)) {
$session->setMessageData($error);
} else {
$reason = trim($params->get('reason'));
if (!$reason) {
$session->setMessageData(Flux::message('IpbanEnterUnbanReason'));
} else {
$didAllSucceed = true;
$numFailed = 0;
foreach ($unbanList as $unban) {
if (!$server->loginServer->removeIpBan($session->account->account_id, $reason, $unban)) {
$didAllSucceed = false;
$numFailed++;
}
}
if ($didAllSucceed) {
$session->setMessageData(Flux::message('IpbanUnbanned'));
} else {
$session->setMessageData(sprintf(Flux::message('IpbanUnbanFailed'), $numFailed));
}
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" name="edit_item_form">
<input type="hidden" name="edititem" value="1" />
<?php
echo Flux_Security::csrfGenerate('ItemEdit', true);
?>
<table class="vertical-table">
<tr>
<th><label for="item_id">ID do Item</label></th>
<td><label><strong><?php
echo htmlspecialchars($itemID);
?>
</strong></label></td>
<th><label for="view">View ID</label></th>
<td><input type="text" name="view" id="view" value="<?php
echo htmlspecialchars($viewID);
?>
" /></td>
</tr>
} else {
?>
<p><?php
echo htmlspecialchars(Flux::message('PasswordChangeInfo'));
?>
</p>
<?php
}
?>
<br />
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<?php
echo Flux_Security::csrfGenerate('PasswordEdit', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="currentpass"><?php
echo htmlspecialchars(Flux::message('CurrentPasswordLabel'));
?>
</label></th>
<td><input type="password" name="currentpass" id="currentpass" value="" /></td>
<td rowspan="3">
<p><?php
echo htmlspecialchars(Flux::message('PasswordChangeNote'));
?>
</p>
<p class="important"><?php
<?php
$pageMenu = array();
if (($isMine || $auth->allowedToModifyCharPrefs) && $auth->actionAllowed('character', 'prefs')) {
$pageMenu['Modify Preferences'] = $this->url('character', 'prefs', array('id' => $char->char_id));
}
if (($isMine || $auth->allowedToChangeSlot) && $auth->actionAllowed('character', 'changeslot')) {
$pageMenu['Change Slot'] = $this->url('character', 'changeslot', array('id' => $char->char_id));
}
if (($isMine || $auth->allowedToResetLook) && $auth->actionAllowed('character', 'resetlook')) {
$pageMenu['Reset Look'] = $this->url('character', 'resetlook', array('id' => $char->char_id, 'Session' => Flux_Security::csrfGet('Session')));
}
if (($isMine || $auth->allowedToResetPosition) && $auth->actionAllowed('character', 'resetpos')) {
$pageMenu['Reset Position'] = $this->url('character', 'resetpos', array('id' => $char->char_id, 'Session' => Flux_Security::csrfGet('Session')));
}
if ($char->partner_id && ($isMine || $auth->allowedToDivorceCharacter) && $auth->actionAllowed('character', 'divorce')) {
$pageMenu['Divorce'] = $this->url('character', 'divorce', array('id' => $char->char_id));
}
return $pageMenu;
if (Flux::config('RequireChangeConfirm')) {
?>
<p><?php
echo htmlspecialchars(Flux::message('EmailChangeInfo2'));
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<?php
echo Flux_Security::csrfGenerate('EmailEdit', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="email"><?php
echo htmlspecialchars(Flux::message('EmailChangeLabel'));
?>
</label></th>
<td><input type="text" name="email" id="email" /></td>
<td><p><?php
echo htmlspecialchars(Flux::message('EmailChangeInputNote'));
?>
</p></td>
</tr>
<tr>
<td colspan="2" align="right">
?>
<?php
if ($auth->allowedToEditShopItem) {
?>
/ <a href="<?php
echo $this->url('itemshop', 'edit', array('id' => $item->shop_item_id));
?>
">Modify</a>
<?php
}
?>
<?php
if ($auth->allowedToDeleteShopItem) {
?>
/ <a href="<?php
echo $this->url('itemshop', 'delete', array('id' => $item->shop_item_id, 'Session' => Flux_Security::csrfGet('Session')));
?>
"
onclick="return confirm('Are you sure you want to remove this item from the item shop?')">Delete</a>
<?php
}
?>
</p>
</td>
<td class="shop-item-cost-qty">
<p><span class="cost"><?php
echo number_format($item->shop_item_cost);
?>
</span> credits.</p>
<p class="shop-item-action">
<?php
$installer = Flux_Installer::getInstance();
if ($hasUpdates = $installer->updateNeeded()) {
Flux::config('ThemeName', 'installer');
}
$sessionKey = Flux::config('SessionKey');
$sessionExpireDuration = Flux::config('SessionCookieExpire') * 60 * 60;
session_set_cookie_params($sessionExpireDuration, Flux::config('BaseURI'));
ini_set('session.gc_maxlifetime', $sessionExpireDuration);
ini_set('session.name', $sessionKey);
@session_start();
if (empty($_SESSION[$sessionKey]) || !is_array($_SESSION[$sessionKey])) {
$_SESSION[$sessionKey] = array();
}
// Initialize session data.
Flux::$sessionData = new Flux_SessionData($_SESSION[$sessionKey], $hasUpdates);
Flux_Security::setSession($_SESSION[$sessionKey]);
// Initialize authorization component.
$accessConfig = Flux::parseConfigFile(FLUX_CONFIG_DIR . '/access.php');
// Merge with add-on configs.
foreach (Flux::$addons as $addon) {
$accessConfig->merge($addon->accessConfig);
}
$accessConfig->set('unauthorized.index', AccountLevel::ANYONE);
$authComponent = Flux_Authorization::getInstance($accessConfig, Flux::$sessionData);
if (!Flux::config('DebugMode')) {
ini_set('display_errors', 0);
}
// Dispatch requests->modules->actions->views.
$dispatcher = Flux_Dispatcher::getInstance();
$dispatcher->setDefaultModule(Flux::config('DefaultModule'));
$dispatcher->dispatch(array('basePath' => Flux::config('BaseURI'), 'useCleanUrls' => Flux::config('UseCleanUrls'), 'modulePath' => FLUX_MODULE_DIR, 'themePath' => FLUX_THEME_DIR . '/' . Flux::config('ThemeName'), 'missingActionModuleAction' => Flux::config('DebugMode') ? array('errors', 'missing_action') : array('main', 'page_not_found'), 'missingViewModuleAction' => Flux::config('DebugMode') ? array('errors', 'missing_view') : array('main', 'page_not_found')));
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="changeslot" value="1" />
<?php
echo Flux_Security::csrfGenerate('SlotEdit', true);
?>
<table class="generic-form-table">
<tr>
<th><label>Character Name</label></th>
<td><div><?php
echo htmlspecialchars($char->name);
?>
</div></td>
<td></td>
</tr>
<tr>
<th><label for="slot">Slot Number</label></th>
<td><input type="text" name="slot" id="slot"
size="<?php
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="remipban" value="1" />
<?php
echo Flux_Security::csrfGenerate('IPBanRemove', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="list"><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressLabel'));
?>
</label></th>
<td><input type="text" name="list" id="list"
value="<?php
echo htmlspecialchars(empty($list) ? '' : $list);
?>
" /></td>
<td><p><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressInfo'));
<?php
if (!defined('FLUX_ROOT')) {
exit;
}
$this->loginRequired();
$title = Flux::message('TransferTitle');
if (count($_POST)) {
if ($session->account->balance) {
$credits = (int) $params->get('credits');
$charName = trim($params->get('char_name'));
if (!$credits || $credits < 1) {
$errorMessage = Flux::message('TransferGreaterThanOne');
} elseif (!$charName) {
$errorMessage = Flux::message('TransferEnterCharName');
} elseif (!Flux_Security::csrfValidate('TransferCredit', $_POST, $error)) {
$errorMessage = $error;
} else {
$res = $server->transferCredits($session->account->account_id, $charName, $credits);
if ($res === -3) {
$errorMessage = sprintf(Flux::message('TransferNoCharExists'), $charName);
} elseif ($res === -2) {
$errorMessage = Flux::message('TransferNoBalance');
} elseif ($res !== true) {
$errorMessage = Flux::message('TransferUnexpectedError');
} else {
$session->setMessageData(Flux::message('TransferSuccessful'));
$this->redirect();
}
}
} else {
?>
<h2><?php
echo htmlspecialchars(Flux::message('IpbanListHeading'));
?>
</h2>
<?php
if ($banlist) {
echo $paginator->infoText();
?>
<form action="<?php
echo $this->url('ipban', 'unban');
?>
" method="post">
<input type="hidden" name="unban" value="1" />
<?php
echo Flux_Security::csrfGenerate('IPUnban', true);
?>
<table class="horizontal-table">
<tr>
<?php
if ($auth->allowedToRemoveIpBan && $auth->actionAllowed('ipban', 'unban')) {
?>
<th><input type="checkbox" onclick="$('.unban-cb').attr('checked', this.checked)" /></th>
<?php
}
?>
<th><?php
echo $paginator->sortableColumn('list', Flux::message('IpbanBannedIpLabel'));
?>
</th>
<th><?php
$this->loginRequired();
$charID = $params->get('id');
if (!$charID) {
$this->deny();
}
$char = $server->getCharacter($charID);
if ($char) {
if ($char->account_id != $session->account->account_id && !$auth->allowedToModifyCharPrefs) {
$this->deny();
}
$prefs = $server->getPrefs($charID, array('HideFromWhosOnline', 'HideMapFromWhosOnline', 'HideFromZenyRanking'));
$hideFromWhosOnline = $prefs->get('HideFromWhosOnline');
$hideMapFromWhosOnline = $prefs->get('HideMapFromWhosOnline');
$hideFromZenyRanking = $prefs->get('HideFromZenyRanking');
if (count($_POST)) {
if (!Flux_Security::csrfValidate('CharacterPreferences', $_POST, $error)) {
$errorMessage = $error;
} else {
$set = array();
$set['HideFromWhosOnline'] = $params->get('hide_from_whos_online') ? 1 : null;
$set['HideMapFromWhosOnline'] = $params->get('hide_map_from_whos_online') ? 1 : null;
if ($auth->allowedToHideFromZenyRank) {
$set['HideFromZenyRanking'] = $params->get('hide_from_zeny_ranking') ? 1 : null;
}
$res = $server->setPrefs($charID, $set);
if ($res) {
$session->setMessageData('Preferências foram modificadas.');
$this->redirect($this->urlWithQs);
} else {
$errorMessage = 'Falha ao modificar preferências.';
}
$partner = $server->getCharacter($char->partner_id);
if (!$partner) {
$session->setMessageData(Flux::message('DivorceInvalidPartner'));
$this->redirect($this->referer);
}
$child = false;
if ($char->child && !($child = $server->getCharacter($char->child))) {
$session->setMessageData(Flux::message('DivorceInvalidChild'));
$this->redirect($this->referer);
}
if ($char->online || $partner->online || !Flux::config('DivorceKeepChild') && $child && $child->online) {
$session->setMessageData(sprintf(Flux::message(Flux::config('DivorceKeepChild') ? 'DivorceMustBeOffline' : 'DivorceMustBeOffline2'), $char->name));
$this->redirect($this->referer);
}
if (count($_POST) && $params->get('divorce')) {
if (!Flux_Security::csrfValidate('Divorce', $_POST, $error)) {
$session->setMessageData($error);
$this->redirect($this->referer);
}
$sql = "UPDATE {$server->charMapDatabase}.`char` SET partner_id = 0 ";
if (!Flux::config('DivorceKeepChild')) {
$sql .= ", child = 0 ";
}
$sql .= "WHERE char_id IN (?, ?)";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($charID, $char->partner_id));
if (!Flux::config('DivorceKeepChild') && $child) {
$sql = "UPDATE {$server->charMapDatabase}.`char` SET father = 0, mother = 0 WHERE char_id = ?";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($char->child));
}
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="modipban" value="1" />
<?php
echo Flux_Security::csrfGenerate('IPBanEdit', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="list"><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressLabel'));
?>
</label></th>
<td><input type="text" name="newlist" id="list"
value="<?php
echo htmlspecialchars(($list = $params->get('newlist')) ? $list : $ipban->list);
?>
" /></td>
<td><p><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressInfo'));
$errorMessage = sprintf(Flux::message('PasswordTooLong'), $passwordMinLength, Flux::config('MaxPasswordLength'));
} elseif (!$confirmNewPassword) {
$errorMessage = Flux::message('ConfirmNewPassword');
} elseif ($newPassword != $confirmNewPassword) {
$errorMessage = Flux::message('PasswordsDoNotMatch');
} elseif ($newPassword == $currentPassword) {
$errorMessage = Flux::message('NewPasswordSameAsOld');
} elseif (Flux::config('PasswordMinUpper') > 0 && preg_match_all('/[A-Z]/', $newPassword, $matches) < $passwordMinUpper) {
$errorMessage = sprintf(Flux::message('NewPasswordNeedUpper'), $passwordMinUpper);
} elseif (Flux::config('PasswordMinLower') > 0 && preg_match_all('/[a-z]/', $newPassword, $matches) < $passwordMinLower) {
$errorMessage = sprintf(Flux::message('NewPasswordNeedLower'), $passwordMinLower);
} elseif (Flux::config('PasswordMinNumber') > 0 && preg_match_all('/[0-9]/', $newPassword, $matches) < $passwordMinNumber) {
$errorMessage = sprintf(Flux::message('NewPasswordNeedNumber'), $passwordMinNumber);
} elseif (Flux::config('PasswordMinSymbol') > 0 && preg_match_all('/[^A-Za-z0-9]/', $newPassword, $matches) < $passwordMinSymbol) {
$errorMessage = sprintf(Flux::message('NewPasswordNeedSymbol'), $passwordMinSymbol);
} elseif (!Flux_Security::csrfValidate('PasswordEdit', $_POST, $error)) {
$errorMessage = $error;
} else {
$sql = "SELECT user_pass AS currentPassword FROM {$server->loginDatabase}.login WHERE account_id = ?";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($session->account->account_id));
$account = $sth->fetch();
$useMD5 = $session->loginServer->config->getUseMD5();
$currentPassword = $useMD5 ? Flux::hashPassword($currentPassword) : $currentPassword;
$newPassword = $useMD5 ? Flux::hashPassword($newPassword) : $newPassword;
if ($currentPassword != $account->currentPassword) {
$errorMessage = Flux::message('OldPasswordInvalid');
} else {
$sql = "UPDATE {$server->loginDatabase}.login SET user_pass = ? WHERE account_id = ?";
$sth = $server->connection->getStatement($sql);
if ($sth->execute(array($newPassword, $session->account->account_id))) {
}
?>
<h3>Vendo preferências de personagem para “<?php
echo $charName = htmlspecialchars($char->name);
?>
” no <?php
echo htmlspecialchars($server->serverName);
?>
</h3>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="charprefs" value="1" />
<?php
echo Flux_Security::csrfGenerate('CharacterPreferences', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="hide_from_whos_online">Esconder personagem do "Quem Está Online"</label></th>
<td><input type="checkbox" name="hide_from_whos_online" id="hide_from_whos_online"<?php
if ($hideFromWhosOnline) {
echo ' checked="checked"';
}
?>
/></td>
<td><p>Isso vai esconder o <?php
echo $charName;
?>
completamente da página "Quem Está Online".</p></td>
}
if (count($_POST)) {
if (!$hasNecessaryFunds || !$params->get('changegender')) {
$this->deny();
}
$classes = array();
foreach ($session->loginAthenaGroup->athenaServers as $athenaServer) {
$sql = "SELECT COUNT(1) AS num FROM {$athenaServer->charMapDatabase}.`char` WHERE account_id = ? AND `class` IN (" . implode(',', array_fill(0, count($badJobs), '?')) . ")";
$sth = $athenaServer->connection->getStatement($sql);
$sth->execute(array_merge(array($session->account->account_id), array_keys($badJobs)));
if ($sth->fetch()->num) {
$errorMessage = sprintf(Flux::message('GenderChangeBadChars'), implode(', ', array_values($badJobs)));
break;
}
}
if (empty($errorMessage) && !Flux_Security::csrfValidate('GenderEdit', $_POST, $error)) {
$errorMessage = $error;
}
if (empty($errorMessage)) {
$sex = $session->account->sex == 'M' ? 'F' : 'M';
$sql = "UPDATE {$server->loginDatabase}.login SET sex = ? WHERE account_id = ?";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($sex, $session->account->account_id));
$changeTimes = (int) $session->loginServer->getPref($session->account->account_id, 'NumberOfGenderChanges');
$session->loginServer->setPref($session->account->account_id, 'NumberOfGenderChanges', $changeTimes + 1);
if ($cost && !$auth->allowedToAvoidSexChangeCost) {
$session->loginServer->depositCredits($session->account->account_id, -$cost);
$session->setMessageData(sprintf(Flux::message('GenderChanged'), $cost));
} else {
$session->setMessageData(Flux::message('GenderChangedForFree'));
}
} else {
?>
<p><?php
echo htmlspecialchars(Flux::message('MailerInfo'));
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" name="mailerform" class="generic-form">
<input type="hidden" name="_preview" value="0" />
<?php
echo Flux_Security::csrfGenerate('Mailer', true);
?>
<table class="generic-form-table">
<tr>
<th><label><?php
echo htmlspecialchars(Flux::message('MailerFromLabel'));
?>
</label></th>
<td><p>
<strong><?php
echo htmlspecialchars(Flux::config('MailerFromName'));
?>
</strong>
(<?php
echo htmlspecialchars(Flux::config('MailerFromAddress'));
?>
printf(Flux::message('TransferInfo'), '<span class="remaining-balance">' . number_format($session->account->balance) . '</span>');
?>
</p>
<p><?php
echo htmlspecialchars(Flux::message('TransferInfo2'));
?>
</p>
<form action="<?php
echo $this->url;
?>
" method="post" class="generic-form">
<?php
echo $this->moduleActionFormInputs('account', 'transfer');
?>
<?php
echo Flux_Security::csrfGenerate('TransferCredit', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="credits"><?php
echo htmlspecialchars(Flux::message('TransferAmountLabel'));
?>
</label></th>
<td><input type="text" name="credits" id="credits" value="<?php
echo htmlspecialchars($params->get('credits'));
?>
" /></td>
<td><p><?php
echo htmlspecialchars(Flux::message('TransferAmountInfo'));
?>
$list = $params->get('list');
if (!$auth->allowedToRemoveIpBan || !$list) {
$this->deny();
}
$sql = "SELECT list FROM {$server->loginDatabase}.ipbanlist ";
$sql .= "WHERE rtime > NOW() AND list = ? LIMIT 1";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($list));
$ipban = $sth->fetch();
if (count($_POST)) {
if (!$params->get('remipban')) {
$this->deny();
}
$reason = trim($params->get('reason'));
if (!$list) {
$errorMessage = Flux::message('IpbanEnterIpPattern');
} elseif (!preg_match('/^([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\\.([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]|\\*)\\.([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]|\\*)\\.([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]|\\*)$/', $list, $m)) {
$errorMessage = Flux::message('IpbanInvalidPattern');
} elseif (!$reason) {
$errorMessage = Flux::message('IpbanEnterRemoveReason');
} elseif (!$ipban || !$ipban->list) {
$errorMessage = sprintf(Flux::message('IpbanNotBanned'), $list);
} elseif (!Flux_Security::csrfValidate('IPBanRemove', $_POST, $error)) {
$errorMessage = $error;
} elseif ($server->loginServer->removeIpBan($session->account->account_id, $reason, $list)) {
$session->setMessageData(sprintf(Flux::message('IpbanPatternUnbanned'), $list));
$this->redirect($this->url('ipban'));
} else {
$errorMessage = Flux::message('IpbanRemoveFailed');
}
}
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post">
<input type="hidden" name="additem" value="1" />
<?php
echo Flux_Security::csrfGenerate('ItemAdd', true);
?>
<table class="vertical-table">
<tr>
<th><label for="item_id">Item ID</label></th>
<td><input type="text" name="item_id" id="item_id" value="<?php
echo htmlspecialchars($itemID);
?>
" /></td>
<th><label for="view">View ID</label></th>
<td><input type="text" name="view" id="view" value="<?php
echo htmlspecialchars($viewID);
?>
" /></td>
</tr>
<tr>
if (!defined('FLUX_ROOT')) {
exit;
}
$this->loginRequired();
$title = 'Área de Confirmação';
if ($server->cart->isEmpty()) {
$session->setMessageData('Seu carrinho está vazio.');
$this->redirect($this->url('purchase'));
} elseif (!$server->cart->hasFunds()) {
$session->setMessageData('Você não tem saldo o suficiente para fazer essa transação!');
$this->redirect($this->url('purchase'));
}
$items = $server->cart->getCartItems();
if (count($_POST) && $params->get('process')) {
if (!Flux_Security::csrfValidate('PurchaseCheckOut', $_POST, $error)) {
$session->setMessageData($error);
$this->redirect($this->url('purchase', 'checkout'));
}
$redeemTable = Flux::config('FluxTables.RedemptionTable');
$creditTable = Flux::config('FluxTables.CreditsTable');
$deduct = 0;
$sql = "INSERT INTO {$server->charMapDatabase}.{$redeemTable} ";
$sql .= "(nameid, quantity, cost, account_id, char_id, redeemed, redemption_date, purchase_date, credits_before, credits_after) ";
$sql .= "VALUES (?, ?, ?, ?, NULL, 0, NULL, NOW(), ?, ?)";
$sth = $server->connection->getStatement($sql);
$balance = $session->account->balance;
foreach ($items as $item) {
$creditsAfter = $balance - $item->shop_item_cost;
$res = $sth->execute(array($item->shop_item_nameid, $item->shop_item_qty, $item->shop_item_cost, $session->account->account_id, $balance, $creditsAfter));
if ($res) {
$info = trim($params->get('info'));
$image = $files->get('image');
$useExisting = (int) $params->get('use_existing');
if (!$cost) {
$errorMessage = 'Você deve colocar um custo de crédito maior que zero.';
} elseif ($cost > $maxCost) {
$errorMessage = "O custo do item não pode exceder {$maxCost}.";
} elseif (!$quantity) {
$errorMessage = 'Você deve colocar uma quantidade maior que zero.';
} elseif ($quantity > 1 && !$stackable) {
$errorMessage = 'Este item não é acumulável. Quantidade deve ser 1.';
} elseif ($quantity > $maxQty) {
$errorMessage = "A quantidade máxima não pode exceder {$maxQty}.";
} elseif (!$info) {
$errorMessage = 'Você deve colocar alguma informação sobre o item.';
} elseif (!Flux_Security::csrfValidate('ItemShopEdit', $_POST, $error)) {
$errorMessage = $error;
} else {
if ($shop->edit($shopItemID, $category, $cost, $quantity, $info, $useExisting)) {
if ($image && $image->get('size') && !$shop->uploadShopItemImage($shopItemID, $image)) {
$errorMessage = 'Falha ao fazer upload da imagem.';
} else {
$session->setMessageData('Item foi modificado com sucesso.');
$this->redirect($this->url('purchase'));
}
} else {
$errorMessage = 'Falha ao modificar item.';
}
}
}
if (empty($category)) {
<?php
if (!defined('FLUX_ROOT')) {
exit;
}
$this->loginRequired();
$shopItemID = $params->get('id');
if (!$shopItemID) {
$this->deny();
}
if (!Flux_Security::csrfValidate('Session', $_GET, $error)) {
$session->setMessageData($error);
$this->redirect($this->url('purchase'));
}
require_once 'Flux/ItemShop.php';
$shop = new Flux_ItemShop($server);
$shop->deleteShopItemImage($shopItemID);
$session->setMessageData('Shop item image has been deleted.');
$this->redirect($this->referer);
$errorMessage = 'Weight must be a number.';
} elseif (!is_null($atk) && !ctype_digit($atk)) {
$errorMessage = 'ATK must be a number.';
} elseif (!is_null($matk) && !ctype_digit($matk)) {
$errorMessage = 'MATK must be a number.';
} elseif (!is_null($defense) && !ctype_digit($defense)) {
$errorMessage = 'Defense must be a number.';
} elseif (!is_null($range) && !ctype_digit($range)) {
$errorMessage = 'Range must be a number.';
} elseif (!is_null($weaponLevel) && !ctype_digit($weaponLevel)) {
$errorMessage = 'Weapon level must be a number.';
} elseif (!is_null($equipLevelMin) && !ctype_digit($equipLevelMin)) {
$errorMessage = 'Minimum equip level must be a number.';
} elseif (!is_null($equipLevelMax) && !ctype_digit($equipLevelMax)) {
$errorMessage = 'Maximum equip level must be a number.';
} elseif (!Flux_Security::csrfValidate('ItemAdd', $_POST, $error)) {
$errorMessage = $error;
} else {
if (empty($errorMessage) && is_array($equipLocs)) {
$locs = Flux::getEquipLocationList();
foreach ($equipLocs as $bit) {
if (!array_key_exists($bit, $locs)) {
$errorMessage = 'Invalid equip location specified.';
$equipLocs = null;
break;
}
}
}
if (empty($errorMessage) && is_array($equipUpper)) {
$upper = Flux::getEquipUpperList();
foreach ($equipUpper as $bit) {
if (!empty($errorMessage)) {
?>
<p class="red"><?php
echo htmlspecialchars($errorMessage);
?>
</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="addipban" value="1" />
<?php
echo Flux_Security::csrfGenerate('IPBanAdd', true);
?>
<table class="generic-form-table">
<tr>
<th><label for="list"><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressLabel'));
?>
</label></th>
<td><input type="text" name="list" id="list" value="<?php
echo htmlspecialchars($params->get('list'));
?>
" /></td>
<td><p><?php
echo htmlspecialchars(Flux::message('IpbanIpAddressInfo'));
?>
</p></td>
if ($char->online) {
$session->setMessageData("Cannot change {$char->name}'s slot. He/she is currenty online.");
$this->redirect();
}
if (count($_POST)) {
if (!$params->get('changeslot')) {
$this->deny();
}
$slot = (int) $params->get('slot');
if ($slot > $server->maxCharSlots) {
$errorMessage = "Slot number must not be greater than {$server->maxCharSlots}.";
} elseif ($slot < 1) {
$errorMessage = 'Slot number must be a number greater than zero.';
} elseif ($slot === (int) $char->char_num + 1) {
$errorMessage = 'Please choose a different slot.';
} elseif (!Flux_Security::csrfValidate('SlotEdit', $_POST, $error)) {
$errorMessage = $error;
} else {
$sql = "SELECT char_id, name, online FROM {$server->charMapDatabase}.`char` AS ch ";
$sql .= "WHERE account_id = ? AND char_num = ? AND char_id != ?";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($char->account_id, $slot - 1, $charID));
$otherChar = $sth->fetch();
if ($otherChar) {
if ($otherChar->online) {
$errorMessage = "{$otherChar->name} is using that slot, and is currently online.";
} else {
$sql = "UPDATE {$server->charMapDatabase}.`char` SET `char`.char_num = ?";
$sql .= "WHERE `char`.char_id = ?";
$sth = $server->connection->getStatement($sql);
$sth->execute(array($char->char_num, $otherChar->char_id));
?>
</p>
<?php
} else {
?>
<p>Aqui você pode copiar um item no <em>item_db2</em> com um novo ID.</p>
<?php
}
?>
<form action="<?php
echo $this->urlWithQs;
?>
" method="post" class="generic-form">
<input type="hidden" name="copyitem" value="1" />
<?php
echo Flux_Security::csrfGenerate('ItemCopy', true);
?>
<table class="generic-form-table">
<tr>
<th><label>Nome do Item (ID do Item)</label></th>
<td>
<p>
<strong><?php
echo htmlspecialchars($item->name_japanese);
?>
</strong>
<?php
if ($auth->actionAllowed('item', 'view')) {
?>
(<a href="<?php
}
$this->loginRequired();
$title = Flux::message('MailerTitle');
$preview = '';
if (count($_POST)) {
$prev = (bool) $params->get('_preview');
$to = trim($params->get('to'));
$subject = trim($params->get('subject'));
$body = trim($params->get('body'));
if (!$to) {
$errorMessage = Flux::message('MailerEnterToAddress');
} elseif (!$subject) {
$errorMessage = Flux::message('MailerEnterSubject');
} elseif (!$body) {
$errorMessage = Flux::message('MailerEnterBodyText');
} elseif (!Flux_Security::csrfValidate('Mailer', $_POST, $error)) {
$errorMessage = $error;
}
if (empty($errorMessage)) {
if ($prev) {
require_once 'markdown/markdown.php';
$preview = Markdown($body);
} else {
require_once 'Flux/Mailer.php';
$mail = new Flux_Mailer();
$opts = array('_ignoreTemplate' => true, '_useMarkdown' => true);
if ($mail->send($to, $subject, $body, $opts)) {
$session->setMessageData(sprintf(Flux::message('MailerEmailHasBeenSent'), $to));
$this->redirect();
} else {
$errorMessage = Flux::message('MailerFailedToSend');
<p>After reviewing the below item information, you can proceed with your checkout by clicking the “Purchase Items” button.</p>
<p class="important" style="color: #FFF;">Note: These items are for redemption on the <span class="server-name"><?php
echo htmlspecialchars($server->serverName);
?>
</span> server ONLY.</p>
<p>
<form action="<?php
echo $this->url;
?>
" method="post">
<?php
echo $this->moduleActionFormInputs($params->get('module'), 'checkout');
?>
<input type="hidden" name="process" value="1" />
<?php
echo Flux_Security::csrfGenerate('PurchaseCheckOut', true);
?>
<button type="submit" onclick="return confirm('Are you sure you want to continue purchasing the below item(s)?')">
<strong>Purchase Items</strong>
</button>
</form>
</p>
<h3>Items Currently in Your Cart:</h3>
<p class="cart-info-text">You have <span class="cart-item-count" style="color: #FFF;"><?php
echo number_format(count($items));
?>
</span> item(s) in your cart.</p>
<table class="vertical-table cart">
<?php
foreach ($items as $item) {