Файл: moduls/shop/index.php
Строк: 283
<?php
/**
* @package Prime Social
* @link http://primesocial.ru
* @copyright Copyright (C) 2016 Prime Social
* @author BoB | http://primesocial.ru/about
*/
require_once('../../core/start.php');
check_auth();
switch ($_GET['act']) {
default:
head('Do`kon');
echo DIV_LI . ''.icon('jonvor.png').' <a href="'.HOME.'/shop/zver/">Anketaga jonvor</a>' . CLOSE_DIV;
echo DIV_LI . ''.icon('rang.png').' <a href="'.HOME.'/shop/nick/">Nik rangi</a>' . CLOSE_DIV;
echo DIV_LI . ''.icon('text.png').' <a href="'.HOME.'/shop/nickedit/">Nikni almashtirish</a>' . CLOSE_DIV;
echo DIV_LI . ''.icon('star.png').' <a href="'.HOME.'/shop/vip/">VIP Sotib olish</a>' . CLOSE_DIV;
echo DIV_LI . ''.icon('addus.png').' <a href="'.HOME.'/shop/icon/">Nik yoniga rasmcha</a>' . CLOSE_DIV;
$array = array();
nav($array);
break;
case 'icon':
head('Nikga rasmcha');
$price = 100; // Hizmat narxi
if (!empty($_POST['send'])) {
$icon = html($_POST['icon']);
if ($icon == 'none') {
// Profildan ikonkani o`chiramiz, ballarni olib qolmaymiz
if ($user['icon']) {
$pos = strpos($user['icon'], 'site');
if ($pos === false) {
@unlink('../files/icons_user/' . $user['icon']);
}
DB::$dbs->query("UPDATE ".USERS." SET `icon` = ? WHERE `user_id` = ?", array('', $user['user_id']));
header("Location: ".HOME."/shop/icon/?delete");
}
} elseif ($icon == 'upload' && $user['balls'] >= $price) {
// Ikonkani kiritamiz va ballarni olib qolamiz
if (!empty($_FILES['file'])) {
if ($user['icon']) {
$pos = strpos($user['icon'], 'site');
if ($pos === false) {
@unlink('../files/icons_user/' . $user['icon']);
}
}
$name = $_FILES['file']['name']; # Fayl nomi
$ext = strtolower(strrchr($name, '.')); # Fayl formati
$par = getimagesize($_FILES['file']['tmp_name']); # Rasm shakli
$icon_uri = $user['user_id'].$ext;
$pictures = array('.jpg', '.jpeg', '.gif', '.png'); # Mumkun bo`lgan formatlar
if ($par[0] > 16 || $par[1] > 16) {
$err .= 'Rasm hajmi belgilangan miqdordan oshyapti. [Max. 16x16]<br />';
}
if (preg_match('/.php/i', $name) || preg_match('/.pl/i', $name) || $name == '.htaccess' || !in_array($ext, $pictures)) {
$err .= 'Fayl shakli xato.<br />';
}
if (empty($err)) {
copy($_FILES['file']['tmp_name'], '../../files/icons_user/'.$user['user_id'].$ext); # Original tarzda yuklaymiz
DB::$dbs->query("UPDATE ".USERS." SET `icon` = ?, `balls` = ? WHERE `user_id` = ?", array($icon_uri, ($user['balls'] - $price), $user['user_id']));
header("Location: ".HOME."/shop/icon/?update");
} else {
echo $err;
}
}
} else if ($user['balls'] >= $price) {
// Saytdagi ikonkani profilga biriktirib, ballni yechib olib qolamiz
if (is_file('../../files/icons_user/site/' . $icon)) {
$icon_uri = 'site/' . $icon;
DB::$dbs->query("UPDATE ".USERS." SET `icon` = ?, `balls` = ? WHERE `user_id` = ?", array($icon_uri, ($user['balls'] - $price), $user['user_id']));
header("Location: ".HOME."/shop/icon/?update");
}
}
}
if (isset($_GET['update'])) {
echo DIV_MSG, 'Rasmcha muvaffaqiyatli yangilandi', CLOSE_DIV;
}
if (isset($_GET['delete'])) {
echo DIV_MSG, 'Rasmcha muvaffaqiyatli o`chirildi', CLOSE_DIV;
}
echo DIV_BLOCK, 'O`rnatish baxosi: <b>'.$price.'</b> ball.<br /><br /><form action="#" method="POST" enctype="multipart/form-data">';
echo '<input type="radio" name="icon" value="none" checked> Rasmchasiz<br />';
echo '<input type="radio" name="icon" value="upload" '.($user['icon'] && strpos($user['icon'], 'site') === false ? 'checked' : null).'> Rasmcha yuklash<br />';
echo '<b>Yoki ro`yhatdan tanlang:</b><br />';
$scan = scandir('../../files/icons_user/site');
unset($scan[0], $scan[1]);
foreach ($scan as $icon) {
echo '<input type="radio" name="icon" value="'.$icon.'"> <img src="'.HOME.'/files/icons_user/site/'.$icon.'" alt="[icon]" /><br />';
}
echo 'Yuklanadigan rasmcha [16x16, jpg|jpeg|gif|png]:<br /><input type="file" name="file" /><br /><input type="submit" name="send" value="Yangilash/Yuklash" />';
echo '</form>', CLOSE_DIV;
$array = array('Do`kon');
nav($array);
break;
case 'vip':
head('VIP Sotib olish');
$price = 250;
if (!empty($_POST['send'])) {
$err = array();
if ($user['vip'] > time()) {
$err[] = 'Ushbu hizmat sizda yoqilgan';
}
if ($user['balls'] < $price) {
$err[] = 'Sizda ballar yetarli emas';
}
if (!empty($err)) {
echo DIV_ERROR;
foreach ($err AS $value) {
echo $value . '<br />';
}
echo CLOSE_DIV;
} else {
DB::$dbs->query("UPDATE ".USERS." SET `vip` = ?, `balls` = ? WHERE `user_id` = ?", array((time() + 604800), ($user['balls'] - $price), $user['user_id']));
echo DIV_MSG . 'Hizmat muvaffaqiyatli faollashtirildi' . CLOSE_DIV;
}
}
echo '<div class="white"><form action="#" method="POST">
<img src="/style/img/user/vip.gif"> <b>VIP Sotib olish [Ustinligi]:</b><br />
- Sizning nik va fotongiz saytning bosh sahifasida chiqadi<br />
- Nikingiz oldida "VIP" rasmcha paydo bo`ladi. Bu bilan siz boshqa foydalanuvchilardan ajralib turasiz :)</div><div class="white">
Baxosi: <b>'.$price.' ball</b><br />
Hizmat davomiyligi: <b>7 kun.</b><br />
<input type="submit" name="send" value="Faollashtirish" /><br />
</form>
' . CLOSE_DIV;
$array = array('Do`kon');
nav($array);
break;
case 'nickedit':
$price = 1000;
head('Nini o`zgartirish');
if (!empty($_POST['send'])) {
$nick = html($_POST['nick']);
$err = array();
if(!preg_match("#^([A-zА-я0-9-_ ])+$#ui", $nick)) {
$err[] = 'Nikni to`g`ri shaklda ko`rsating';
}
if (is_numeric($nick)) {
$err[] = 'Nik faqat sonlardan tashkil qila olmaydi';
}
if (strlen($nick) > 25 || strlen($nick) < 3) {
$err[] = 'Nik uzun yoki juda qisqa';
}
if (DB::$dbs->querySingle("SELECT COUNT(`user_id`) FROM ".USERS." WHERE `nick` = ?", array($nick)) == TRUE) {
$err[] = 'Ushbu nik band';
}
if ($user['balls'] < $price) {
$err[] = 'Sizda ballar yetarlicha emas';
}
if (!empty($err)) {
echo DIV_ERROR;
foreach ($err AS $value) {
echo $value . '<br />';
}
echo CLOSE_DIV;
} else {
DB::$dbs->query("UPDATE ".USERS." SET `nick` = ?, `balls` = ? WHERE `user_id` = ?", array($nick, ($user['balls'] - $price), $user['user_id']));
echo DIV_MSG . 'Nik muvaffaqiyatli o`zgartirildi' . CLOSE_DIV;
}
}
echo DIV_BLOCK . '<form action="#" method="POST">
<b>Nikni o`zgartirish:</b> [1000 ball]<br />
Ruhsat berilgan belgilar: а-Я, a-Z, 0-9<br />
Uzunligi: 3-25 belgi<br />
Faqat sonlar ishtrok etadigan nik taqiqlangan<br /><br />
<input type="text" name="nick" value="'.$user['nick'].'" /><br />
<input type="submit" name="send" value="O`zgartirish" /><br />
</form>
' . CLOSE_DIV;
$array = array('Do`kon');
nav($array);
break;
case 'zver':
$zver = array(
array('name' => 'Hacki', 'url' => '1.png', 'price' => 200),
array('name' => 'Labrador', 'url' => '2.png', 'price' => 180),
array('name' => 'Kuylovchi mushuk', 'url' => '3.png', 'price' => 150),
array('name' => 'Bows', 'url' => '4.png', 'price' => 160),
array('name' => 'Boxer', 'url' => '5.png', 'price' => 100),
array('name' => 'Mushukcha yurakcha', 'url' => '6.png', 'price' => 100),
array('name' => 'Mushukcha ovqat', 'url' => '7.png', 'price' => 80),
array('name' => 'Lady mushuk', 'url' => '8.png', 'price' => 80),
array('name' => 'Chihuahua', 'url' => '9.png', 'price' => 80),
array('name' => 'Yo`lbars', 'url' => '10.png', 'price' => 80),
array('name' => 'Russel', 'url' => '11.png', 'price' => 80),
array('name' => 'Shepherd', 'url' => '12.png', 'price' => 80),
array('name' => 'Leopard', 'url' => '13.png', 'price' => 80),
array('name' => 'Mushuk qutichada', 'url' => '14.png', 'price' => 80),
array('name' => 'Mushuk yuvinyapti', 'url' => '15.png', 'price' => 80),
array('name' => 'Mast mushuk', 'url' => '16.png', 'price' => 80),
array('name' => 'Mushuk ko`zlari', 'url' => '17.png', 'price' => 80),
array('name' => 'Qaroqchi mushuk', 'url' => '18.png', 'price' => 80),
array('name' => 'Mushuk uhlayapdi', 'url' => '19.png', 'price' => 80),
array('name' => 'Mushuk orqasi', 'url' => '21.png', 'price' => 80),
array('name' => 'Hafa mushuk', 'url' => '22.png', 'price' => 80)
);
head('Uy hayvoni sotib olish');
if (isset($_GET['go'])) {
$zverID = abs(num($_GET['go']));
$err = array();
if (empty($zver[$zverID])) {
$err[] = 'Uy hayvoni topilmadi';
}
if ($zver[$zverID]['price'] > $user['balls']) {
$err[] = 'Ballaringiz yetarlicha emas';
}
if (empty($err)) {
DB::$dbs->query("UPDATE ".USERS." SET `zver` = ?, `balls` = ? WHERE `user_id` = ?", array($zver[$zverID]['url'], ($user['balls'] - $zver[$zver[$zverID]['price']]), $user['user_id']));
echo DIV_MSG . 'Uy hayvoni anketangizga muvaffaqiyatli o`rnatildi' . CLOSE_DIV;
} else {
echo DIV_ERROR;
foreach ($err AS $value) {
echo $value . '<br />';
}
echo CLOSE_DIV;
}
}
foreach ($zver AS $key => $value) {
echo DIV_LI . $value['name'] . '<br /><img src="'.HOME.'/moduls/shop/zver/'.$value['url'].'" /><br />
<a href="?go='.$key.'">Anketaga o`rnatish</a> [' . $value['price'] . ' ball]' . CLOSE_DIV;
}
$array = array('Do`kon');
nav($array);
break;
case 'nick':
head('Nik rangi');
if (isset($_GET['color']) || isset($_GET['gradient'])) {
if (isset($_GET['color'])) {
$id = abs(num($_GET['id']));
if (empty($color[$id])) {
echo DIV_ERROR . 'Rang topilmadi' . CLOSE_DIV;
} else {
if ($user[balls] < 50) {
echo DIV_ERROR . 'Sizda ballar yetarlicha emas' . CLOSE_DIV;
} else {
$value = 'color:' . $id;
DB::$dbs->query("UPDATE ".USERS." SET `color_nick` = ?, `balls` = ? WHERE `user_id` = ?", array($value, ($user['balls'] - 50), $user['user_id']));
echo DIV_MSG . 'Nik rangi muvaffaqiyatli o`rnatildi' . CLOSE_DIV;
}
}
} else {
$id = abs(num($_GET['id']));
if (empty($gradient_1[$id])) {
echo DIV_ERROR . 'Rang topilmadi' . CLOSE_DIV;
} else {
if ($user[balls] < 200) {
echo DIV_ERROR . 'Sizda ballar yetarlicha emas' . CLOSE_DIV;
} else {
$value = 'gradient:' . $id;
DB::$dbs->query("UPDATE ".USERS." SET `color_nick` = ?, `balls` = ? WHERE `user_id` = ?", array($value, ($user['balls'] - 200), $user['user_id']));
echo DIV_MSG . 'Nik rangi muvaffaqiyatli o`rnatildi' . CLOSE_DIV;
}
}
}
}
foreach ($color AS $key => $value):
echo DIV_LI . '<a href="'.HOME.'/shop/nick/?id='.$key.'&color"><font color="'.$value.'">'.$user['nick'].'</font></a> [50 ball]' . CLOSE_DIV;
endforeach;
foreach ($gradient_1 AS $key => $value):
echo DIV_LI . '<a href="'.HOME.'/shop/nick/?id='.$key.'&gradient">'.GradientLetter($user['nick'], $value, $gradient_2[$key]).'</a> [200 ball]' . CLOSE_DIV;
endforeach;
$array = array('Do`kon');
nav($array);
break;
}
require_once('../../core/stop.php');
?>