ItemShop buy bug

null.gaia · 07/25/2012, 01:47

Hello everyone,

I'm trying to fix a problem at this item shop

PHP Code:



<head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
    <title><?PHP echo $serverSettings['titel']; ?></title>
    <link href="css/itemshop.css" rel="stylesheet" type="text/css">
</head>
 <body class="twoColFixLtHdr" scroll="no">
<div id="container">
<body style="background: transparent url( ) fixed center">
    <div id="header">
        <div class="boxCoins">
            <div class="values">
            <span class="heading">COINS: <?php echo $_SESSION['coins'] ?></span>
                    <span class="coinsValue"></span>    
                    <a href="index_is.php?s=itemshop_coins" class="purchaseButton" title="">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Buy COINS</a>                
                </span>
            </div>        
        </div>
    </div>    
    <div id="breadcrumb"></div>            
    <div id="sidebar1">    
    <ul id="CupyMenu">
        <ul id="mainMenu"><br>
        <li><a href="index_is.php?s=itemshop">New items</a></li>
      <?PHP
        $sqlCmd = "SELECT * FROM ".SQL_HP_DB.".is_kategorien ORDER BY id ASC;";
        $sqlQry = mysql_query($sqlCmd,$sqlHp);
        while($getKats = mysql_fetch_object($sqlQry)) {
          echo'
            <li><a href="index_is.php?s=itemshop&k='.$getKats->id.'">'.$getKats->titel.'</a></li>';
        }
      ?>
      </ul>
    </div>
<div id="mainContent">
<div class="dynContent"> 
<br>
             <div class="item">
             <br class="clearfloat">
            <h3>Info</h3>
<div class="itemColImage"><img src="./img/info_icon.png"></div>
<?PHP

  if(isset($_SESSION['user_admin']) && checkInt($_SESSION['user_admin']) && $_SESSION['user_admin']>=0) {

    if(isset($_GET['id']) && checkInt($_GET['id'])) {
    
      $sqlCmd="SELECT vnum, preis, attrtype0, attrvalue0, attrtype1, attrvalue1, attrtype2, attrvalue2, attrtype3, attrvalue3, attrtype4, attrvalue4, attrtype5, attrvalue5, attrtype6, attrvalue6, socket0, socket1, socket2 FROM ".SQL_HP_DB.".is_items WHERE id='".$_GET['id']."' LIMIT 1";
      $sqlQry=mysql_query($sqlCmd,$sqlHp);
      if(mysql_num_rows($sqlQry)==1) {
      
        $getItem=mysql_fetch_object($sqlQry);
        
        $sqlCoins = "SELECT coins FROM account.account WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."' LIMIT 1";
        $qryCoins = mysql_query($sqlCoins,$sqlServ);
        $getCoins = mysql_fetch_object($qryCoins);
        
        if(($getCoins->coins)>=$getItem->preis) {
      
          $getGroesse = compareItems($getItem->vnum);
          $belPos = checkPos($_SESSION['user_id']);
          $possiblePos = findPos($belPos['islager'],$getGroesse['groesse']);
          if(!empty($possiblePos)) {
            
            $nCoins = $getCoins->coins-$getItem->preis;
            
            $_SESSION['coins'] = $nCoins; //update coins
            
            $sqlCmd="UPDATE account.account SET coins='".mysql_real_escape_string($nCoins)."' WHERE id='".mysql_real_escape_string($_SESSION['user_id'])."' LIMIT 1";
            $sqlQry=mysql_query($sqlCmd,$sqlServ);
            
            $sqlLog="INSERT INTO ".SQL_HP_DB.".is_log (account_id,vnum,preis,zeitpunkt) VALUES ('".$_SESSION['user_id']."','".$getItem->vnum."','".$getItem->preis."','".$sqlZeit."')";
            $qryLog=mysql_query($sqlLog,$sqlHp);
            
            $sqlItem="INSERT INTO player.item 
            (owner_id,window,pos,count,vnum,attrtype0, attrvalue0, attrtype1, attrvalue1, attrtype2, attrvalue2, attrtype3, attrvalue3, attrtype4, attrvalue4, attrtype5, attrvalue5, attrtype6, attrvalue6, socket0, socket1, socket2)
            VALUES 
            ('".$_SESSION['user_id']."','MALL','".$possiblePos[0]."','1','".$getItem->vnum."','".$getItem->attrtype0."', '".$getItem->attrvalue0."', '".$getItem->attrtype1."', '".$getItem->attrvalue1."', '".$getItem->attrtype2."', '".$getItem->attrvalue2."', '".$getItem->attrtype3."', '".$getItem->attrvalue3."', '".$getItem->attrtype4."', '".$getItem->attrvalue4."', '".$getItem->attrtype5."', '".$getItem->attrvalue5."', '".$getItem->attrtype6."', '".$getItem->attrvalue6."', '".$getItem->socket0."', '".$getItem->socket1."', '".$getItem->socket2."')";
            $qryItem=mysql_query($sqlItem,$sqlServ) or die(mysql_error());
            
            echo'<div class="itemColText">The item has been bought successfully, if it's not shown in the item shop storage please contact a GM as soon as possible.</div>';
            
          }
          else {
            echo'<div class="itemColText">You don't have enough space in store.</div>';
          }
          
        }
        else {
          echo'<div class="itemColText">You don't have enough coins to buy this item. Click <a href="#" title="">here</a> to buy coins.</div>';
        }
      }
      else {
        echo'<div class="itemColText">This item does not exist.</div>';
      }
    }
    else {
      echo'<div class="itemColText">You have entered an invalid ID.</div>';
    }
    echo'<div class="itemColPurchase">
                <div class="itemPrice">
                    <b>Back</b><span class="priceValue"><span class="price"><br/></span></span>
                </div>
                <a href="index_is.php?s=itemshop" title="Back" class="addToCardBack"></a>
            </div>';
  }
  else {
    echo'<div class="itemColText">You don't have rights to acces this zone!<br/></div>
          <div class="itemColPurchase">
                <div class="itemPrice">
                    <b>Back</b><span class="priceValue"><span class="price"><br/></span></span>
                </div>
                <a href="index_is.php?s=login_is" title="Back" class="addToCardBack"></a>
            </div>';
  }
?>

    <div class="shadow"> </div>
</div>    <div class="endContent"></div>
</div>
</div>
</body>

This is the page where the item is bought, every time when i buy someting it does it twice. Anybody knows where the problem might be?

And here is the page where the items are listed (first page)

PHP Code:



<head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
    <title><?PHP echo $serverSettings['titel']; ?></title>
    <link href="css/itemshop2.css" rel="stylesheet" type="text/css">
</head>    

  <?PHP

  if(isset($_SESSION['user_admin']) && checkInt($_SESSION['user_admin']) && $_SESSION['user_admin']>=0) {
    if(isset($_GET['k']) && checkInt($_GET['k'])) {
      $sqlCmdS="SELECT * FROM ".SQL_HP_DB.".is_items WHERE kategorie_id='".$_GET['k']."' ORDER BY itemname ASC";
    }
    else {
      $sqlCmdS="SELECT * FROM ".SQL_HP_DB.".is_items ORDER BY itemname ASC";
    }
  ?>
 <body class="twoColFixLtHdr" scroll="no">
<div id="container">
<body style="background: transparent no-repeat">
    <div id="header">
        <div class="boxCoins">
            <div class="values">
            <span class="heading">COINS: <b><?php echo $_SESSION['coins'] ?></b></span>
                <span class="coinsValue"></span>
                    <a href="index_is.php?s=itemshop_coins" class="purchaseButton" title="">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Buy COINS</a>
                </span>
            </div>
        </div>
    </div>
    <div id="breadcrumb"></div>
    <div id="sidebar1">
    <ul id="CupyMenu">
        <ul id="mainMenu"><br>
        <li><a href="index_is.php?s=itemshop">New items</a></li>
      <?PHP
        $sqlCmd = "SELECT * FROM ".SQL_HP_DB.".is_kategorien ORDER BY id ASC;";
        $sqlQry = mysql_query($sqlCmd,$sqlHp);
        while($getKats = mysql_fetch_object($sqlQry)) {
          echo'
            <li><a href="index_is.php?s=itemshop&k='.$getKats->id.'">'.$getKats->titel.'</a></li>';
        }
      ?>
      </ul>
    </div>
<div id="mainContent">
<div class="dynContent">

    <?PHP
      $sqlQry=mysql_query($sqlCmdS,$sqlHp);
      while($getItems=mysql_fetch_object($sqlQry)) {
        $aktItem = compareItems($getItems->vnum);
        $itemStufe = (checkInt($aktItem['stufe'])) ? "+".$aktItem['item'] : ''; ?>
            <br>
             <div class="item">
             <br class="clearfloat">
            <h3><?PHP echo $getItems->itemname; ?></h3>
            <div class="itemColImage">
                <?PHP if(!empty($getItems->bild)) echo'<img src="./img/items/'.$getItems->bild.'""'.$aktItem['item'].'" alt="'.$aktItem['item'].'"/>';?>
            </div>
            <div class="itemColText">
            <?PHP echo $getItems->beschreibung; ?><br/>
            </div>
            <div class="itemColPurchase">
                <div class="itemPrice">
                    <span class="priceValue"><span class="price"> <b><?PHP echo $getItems->preis; ?> </b>Coins</span>
                </div>
                <a href="index_is.php?s=is_buy&id=<?PHP echo $getItems->id; ?>" title="Buy" class="addToCard"></a>
            </div>
    <div class="shadow"> </div>
<?PHP
}
?>
<?PHP
}
  else {
    echo"<BODY BACKGROUND=\"/img/siteBG2.jpg\">";
    echo"<br/><br/><br/><br/><br/><img src=\"/img/icons/uniq.png\">";
    echo"<br/><br/><br/><FONT STYLE=\"font-family:arial; font-size:14px; color: #FFFFFF\">Your session has expired, please <a href=\"index_is.php?s=login_is\"><font color=\"#FFFFFF\">login</font></a>.</FONT></center>";
  }
?>

</div>    <div class="endContent"></div>
</div>
</div>
</body>

If it's posted in the wrong section, sorry.