-
Notifications
You must be signed in to change notification settings - Fork 0
/
business_create.php
66 lines (59 loc) · 3.49 KB
/
business_create.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
<?php
include_once(DIRNAME(__FILE__) . '/globals.php');
global $db, $ir;
$check = $db->query(sprintf("SELECT * FROM `businesses` WHERE (`busDirector` = '%u')", $ir['userid']));
$check_member = $db->query(sprintf("SELECT * FROM `businesses_members` WHERE (`bmembMember` = '%u')", $ir['userid']));
if ($ir['level'] < 5) {
die ('You must be at least Level 5 to begin a Company.');
}
if ($db->num_rows($check) || $db->num_rows($check_member)) {
die ('You are part of a job/company at this time, leave to start a new one.');
}
echo '<p class="heading">Create Company</p>';
$_POST['name'] = mysql_real_escape_string($_POST['name']);
$_POST['class'] = abs(@intval($_POST['class']));
if ($_POST['name'] AND $_POST['class']) {
$fetch_class = $db->query(sprintf("SELECT * FROM `businesses_classes` WHERE (`classId` = '%u')", $_POST['class']));
$check = $db->query(sprintf("SELECT * FROM `businesses` WHERE (`busDirector` = '%u')", abs(@intval($ir['userid']))));
$check_member = $db->query(sprintf("SELECT * FROM `businesses_members` WHERE (`bmembMember` = '%u')", abs(@intval($ir['userid']))));
if (!$db->num_rows($fetch_class)) {
echo 'You cannot start a business in a class that doesn\'t exist.';
} else {
$r = $db->fetch_row($fetch_class);
if ($ir['level'] < 5) {
echo 'You must be at least Level 5 to begin a Company.';
} else if ($ir['money'] < $r['classCost']) {
echo 'You cannot afford to start a business of this class right now.';
} else if ($db->num_rows($check) || $db->num_rows($check_member)) {
echo 'You are part of a business at this time, leave to start a new one.';
} else {
$db->query(sprintf("INSERT INTO `businesses` (`busId`, `busName`, `busClass`, `busDirector`, `busEmployees`) VALUES ('NULL','%s', '%d', '%u', '%u')", stripslashes($_POST['name']), $_POST['class'], abs(@intval($ir['userid'])), $r['classMembers']));
$db->query(sprintf("UPDATE `users` SET `money` = `money` - '%d' WHERE `userid` = '%u'", $r['classCost'], abs(@intval($ir['userid']))));
$check = $db->query(sprintf("SELECT * FROM `businesses` WHERE (`busDirector` = '%u')", abs(@intval($ir['userid']))));
$direct = $db->fetch_row($check);
$db->query(sprintf("UPDATE `users` SET `business` = '%u' WHERE `userid` = '%u'", $direct['busId'], abs(@intval($ir['userid']))));
echo 'The ' . $_POST['name'] . ' business was created.';
}
}
} else {
echo '
<div class="generalinfo_txt">
<div><img src="images/info_left.jpg" alt="" /></div>
<div class="info_mid"><h2 style="padding-top:10px;"> Create a new business:</h2></div>
<div><img src="images/info_right.jpg" alt="" /></div> </div>
<div class="generalinfo_simple"><br> <br><br>
<form action="business_create.php" method="post">
Please enter a name for the new business below, then select a class.<br /><br />
Business name: <input type="text" name="name" /><br />
Business class: <select name="class">
<option value="0">None</option>';
$select_classes = $db->query("SELECT * FROM `businesses_classes` ORDER BY `classCost` ASC");
while ($c = $db->fetch_row($select_classes)) {
echo '<option value="' . $c['classId'] . '">' . stripslashes($c['className']) . ' (\$' . number_format($c['classCost']) . ')</option>';
}
echo '</select><br /><br />
<input type="submit" value="Create business" /></p>
</form></div><div><img src="images/generalinfo_btm.jpg" alt="" /></div><br></div></div></div></div></div> ';
}
$h->endpage();
?>