<?php
session_start();
require("../inc/site_config.php");
require("../inc/config.php");
require("../inc/bd.php");
$sid = $_SESSION['hash'];
$type = $_POST['type'];
$error = 0;
$fa = "";
$admin_check = "SELECT * FROM kot_user WHERE hash = '$sid'";
$result_admin = mysql_query($admin_check);
$row = mysql_fetch_array($result_admin);
if($row)
{
$check_adm = $row['admin'];
}
if($type == "saveeditper") {
$id = $_POST['id'];
$per = $_POST['newper'];
$chance = $_POST['newchance'];
$drop = $_POST['newdrop'];
$status = $_POST['newstatus'];
$check2 = "SELECT * FROM kot_chance WHERE id = '$id'";
$result2 = mysql_query($check2);
$row = mysql_fetch_array($result2);
if($row)
{
$defaultper = $row['per'];
}
$check1 = "SELECT COUNT(*) FROM kot_chance WHERE per = '$per'";
$result1 = mysql_query($check1);
$row = mysql_fetch_array($result1);
if($row)
{
$count = $row['COUNT(*)'];
}
if($check_adm != 1) {
$error = 1;
$mess = "Вы не админ";
$fa = "error";
}
if($defaultper != $per) {
if($count >= 1) {
$error = 2;
$mess = "Процент уже существует";
$fa = "error";
}
}
if($per < 1 || $per > 95) {
$error = 3;
$mess = "Процент от 1 до 95<br>";
$fa = "error";
}
if($per == '' || $chance == '' || $drop == '' || $status == '') {
$error = 4;
$mess = "Заполните все поля<br>";
$fa = "error";
}
if($chance < 0 || $chance > 99) {
$error = 5;
$mess = "Шанс от 0 до 99<br>";
$fa = "error";
}
if(!is_numeric($per)) {
$error = 6;
$mess = "Заполните поля корректно<br>";
$fa = "error";
}
if(!is_numeric($chance)) {
$error = 7;
$mess = "Заполните поля корректно<br>";
$fa = "error";
}
if(!is_numeric($drop)) {
$error = 8;
$mess = "Заполните поля корректно<br>";
$fa = "error";
}
if(!is_numeric($status)) {
$error = 9;
$mess = "Заполните поля корректно<br>";
$fa = "error";
}
if($error == 0) {
if($chance == 0) {
$drop = 0;
}
if($chance >= $min_per) {
$drop = 1;
}
$update_sql1 = "Update kot_chance set per = '$per' WHERE id='$id'";
mysql_query($update_sql1);
$update_sql2 = "Update kot_chance set chance = '$chance' WHERE id='$id'";
mysql_query($update_sql2);
$update_sql3 = "Update kot_chance set is_drop = '$drop' WHERE id='$id'";
mysql_query($update_sql3);
$update_sql4 = "Update kot_chance set active = '$status' WHERE id='$id'";
mysql_query($update_sql4);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "selectper") {
$id = $_POST['id'];
if($check_adm != 1) {
$error = 1;
$mess = "Вы не админ";
$fa = "error";
}
if($error == 0) {
$check1 = "SELECT * FROM kot_chance WHERE id = '$id'";
$result1 = mysql_query($check1);
$row = mysql_fetch_array($result1);
if($row)
{
$idper = $row['id'];
$per = $row['per'];
$chance = $row['chance'];
$drop = $row['is_drop'];
$status = $row['active'];
}
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess",
'per' => "$per",
'chance' => "$chance",
'drop' => "$drop",
'status' => "$status",
'id' => "$idper"
);
}
if($type == "addper") {
$per = $_POST['percent'];
$chance = $_POST['chance'];
$drop = $_POST['drop'];
$dllper = strlen($per);
$dllchance = strlen($chance);
$sql_select27 = "SELECT COUNT(*) FROM kot_chance WHERE per='$per'";
$result27 = mysql_query($sql_select27);
$row = mysql_fetch_array($result27);
if($row)
{
$get_per = $row['COUNT(*)'];
}
if($check_adm != 1) {
$error = 1;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($per == '' || $chance == '' || $drop == '') {
$error = 2;
$mess = "Заполните все поля";
$fa = "error";
}
if(!is_numeric($per)) {
$error = 3;
$mess = "Введите процент корректно";
$fa = "error";
}
if($dllper > 2) {
$error = 4;
$mess = "Введите процент корректно";
$fa = "error";
}
if($dllchance > 2) {
$error = 5;
$mess = "Введите шанс корректно";
$fa = "error";
}
if($get_per > 0) {
$error = 6;
$mess = "Процент уже существует";
$fa = "error";
}
if(!is_numeric($chance)) {
$error = 7;
$mess = "Введите процент корректно";
$fa = "error";
}
if($per < 1 || $pef > 95) {
$error = 8;
$mess = "Процент от 1 до 95";
$fa = "error";
}
if($chance < 1 || $chance > 95) {
$error = 9;
$mess = "Шанс от 1 до 95";
$fa = "error";
}
if($error == 0) {
if($drop == 0) {
$chance = 0;
}
if($chance == 0) {
$drop = 0;
}
if($chance >= 1) {
$drop = 1;
}
$insert_sql11 = "INSERT INTO `kot_chance` (`id`, `per`, `chance`, `is_drop`, `active`) VALUES (NULL, '$per', '$chance', '$drop', '1');";
mysql_query($insert_sql11);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "editstatusbot") {
$id_edit = $_POST['id_edit'];
$status = $_POST['status'];
if($check_adm == 1) {
if($status == "error") {
$update_sql2 = "Update kot_bots set status = 0 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
if($status == "succes") {
$update_sql2 = "Update kot_bots set status = 1 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "insert_bot") {
$botlogin = $_POST['login'];
$botmin = $_POST['minbet'];
$botmax = $_POST['maxbet'];
if($check_adm == 0) {
$error = 1;
$mess = "Вы не явялетесь админом";
$fa = "error";
}
if($botlogin == '' || $botmin == '' || $botmax == '') {
$error = 2;
$mess = "Заполните все поля";
$fa = "error";
}
if($error == 0) {
$insert_sql1 = "INSERT INTO `kot_bots` (`id`, `bot_login`, `bot_min_bet`, `bot_max_bet`) VALUES (NULL, '$botlogin', '$botmin', '$botmax');";
mysql_query($insert_sql1);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "save_edit") {
$newsitename = $_POST['sitename'];
$newsitedomen = $_POST['sitedomen'];
$newsitegroup = $_POST['sitegroup'];
$newsitesupport = $_POST['sitesupport'];
$newsitesecret = $_POST['sitesecret'];
$newminbonus = $_POST['minbonus'];
$newmaxbonus = $_POST['maxbonus'];
$newminwithdraw = $_POST['minwithdraw'];
$newbonusreg = $_POST['bonusreg'];
$newfkid = $_POST['fkid'];
$newfksecret1 = $_POST['fksecret1'];
$newfksecret2 = $_POST['fksecret2'];
// new
$depwithdraw = $_POST['depwithdraw'];
$minbet = $_POST['minbet'];
$maxbet = $_POST['maxbet'];
$minper = $_POST['minper'];
$maxper = $_POST['maxper'];
$fakeonline = $_POST['fakeonline'];
$fakeinterval = $_POST['fakeinterval'];
$mindep = $_POST['mindep'];
$token = $_POST['token'];
$idgroup = $_POST['idgroup'];
if($check_adm == 1) {
$update_sql1 = "Update kot_config set sitename = '$newsitename'";
mysql_query($update_sql1);
$update_sql2 = "Update kot_config set sitedomen = '$newsitedomen'";
mysql_query($update_sql2);
$update_sql3 = "Update kot_config set sitegroup = '$newsitegroup'";
mysql_query($update_sql3);
$update_sql4 = "Update kot_config set sitesupport = '$newsitesupport'";
mysql_query($update_sql4);
$update_sql5 = "Update kot_config set sitekey = '$newsitesecret'";
mysql_query($update_sql5);
$update_sql6 = "Update kot_config set min_bonus_size = '$newminbonus'";
mysql_query($update_sql6);
$update_sql7 = "Update kot_config set max_bonus_size = '$newmaxbonus'";
mysql_query($update_sql7);
$update_sql8 = "Update kot_config set min_withdraw_sum = '$newminwithdraw'";
mysql_query($update_sql8);
$update_sql9 = "Update kot_config set bonus_reg = '$newbonusreg'";
mysql_query($update_sql9);
$update_sql10 = "Update kot_config set fk_id = '$newfkid'";
mysql_query($update_sql10);
$update_sql11 = "Update kot_config set fk_secret_1 = '$newfksecret1'";
mysql_query($update_sql11);
$update_sql12 = "Update kot_config set fk_secret_2 = '$newfksecret2'";
mysql_query($update_sql12);
// new
$update_sql15 = "Update kot_config set dep_withdraw = '$depwithdraw'";
mysql_query($update_sql15);
$update_sql16 = "Update kot_config set min_bet = '$minbet'";
mysql_query($update_sql16);
$update_sql17 = "Update kot_config set max_bet = '$maxbet'";
mysql_query($update_sql17);
$update_sql18 = "Update kot_config set min_per = '$minper'";
mysql_query($update_sql18);
$update_sql19 = "Update kot_config set max_per = '$maxper'";
mysql_query($update_sql19);
$update_sql20 = "Update kot_config set fake_online = '$fakeonline'";
mysql_query($update_sql20);
$update_sql21 = "Update kot_config set fake_interval = '$fakeinterval'";
mysql_query($update_sql21);
$update_sql22 = "Update kot_config set min_sum_dep = '$mindep'";
mysql_query($update_sql22);
$update_sql23 = "Update kot_config set token_vk = '$token'";
mysql_query($update_sql23);
$update_sql24 = "Update kot_config set id_vk = '$idgroup'";
mysql_query($update_sql24);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "addfakewithdraw") {
$login = $_POST['flogin'];
$sum = $_POST['fsum'];
$wallet = $_POST['fwallet'];
$system = $_POST['fsystem'];
if($system == 0) {
$ps = "qiwi";
}
if($system == 1) {
$ps = "payeer";
}
if($system == 2) {
$ps = "ya";
}
if($system == 3) {
$ps = "wm";
}
if($system == 4) {
$ps = "beeline";
}
if($system == 5) {
$ps = "megafon";
}
if($system == 6) {
$ps = "mts";
}
if($system == 7) {
$ps = "tele";
}
if($system == 8) {
$ps = "visa";
}
if($system == 9) {
$ps = "mc";
}
if($check_adm != 1) {
$error = 1;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($sum == '' || $wallet == '' || $login == '') {
$error = 2;
$mess = "Заполните все поля";
$fa = "error";
}
if(!is_numeric($sum)) {
$error = 3;
$mess = "Введите сумму корректно";
$fa = "error";
}
if($error == 0) {
$user_id = "";
$datas = date("d.m.Y");
$datass = date("H:i:s");
$data = "$datas $datass";
$insert_sql11 = "INSERT INTO `kot_withdraws` (`id`, `user_id`, `ps`, `wallet`, `sum`, `date`, `status`, `fake`, `login_fake`) VALUES (NULL, '$user_id', '$ps', '$wallet', '$sum', '$data', '1', '1', '$login');";
mysql_query($insert_sql11);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "editstatus") {
$id_edit = $_POST['id_edit'];
$status = $_POST['status'];
if($check_adm == 1) {
if($status == "error") {
$update_sql2 = "Update kot_withdraws set status = 2 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
if($status == "succes") {
$update_sql2 = "Update kot_withdraws set status = 1 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
if($status == "wait") {
$update_sql2 = "Update kot_withdraws set status = 3 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
if($status == "teh") {
$update_sql2 = "Update kot_withdraws set status = 5 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
if($status == "wblock") {
$update_sql2 = "Update kot_withdraws set status = 4 WHERE id='$id_edit'";
mysql_query($update_sql2);
$fa = "success";
}
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "creatpromo") {
$name = $_POST['promoname'];
$sum = $_POST['promosum'];
$act = $_POST['promoact'];
$dpromo = strlen($name);
$check = "SELECT COUNT(*) FROM kot_promo WHERE name = '$name'";
$result = mysql_query($check);
$row = mysql_fetch_array($result);
if($row)
{
$countprom = $row['COUNT(*)'];
}
$dpromo = strlen($name);
if($countprom > 0) {
$error = 1;
$mess = "Такой промокод уже существует";
$fa = "error";
}
if($name == '' || $sum == '' || $act == '') {
$error = 2;
$mess = "Заполните все поля";
$fa = "error";
}
if($check_adm != 1) {
$error = 3;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($dpromo < 1) {
$error = 4;
$mess = "Длина промокода от 1 символа";
$fa = "error";
}
if(!is_numeric($sum)) {
$error = 5;
$mess = "Введите сумму корректно";
$fa = "error";
}
if(!is_numeric($act)) {
$error = 6;
$mess = "Введите кол-во корректно";
$fa = "error";
}
if($sum < 1) {
$error = 7;
$mess = "Сумма промокода от 1";
$fa = "error";
}
if($act < 1) {
$error = 8;
$mess = "Кол-во от 1";
$fa = "error";
}
if($dpromo > 15) {
$error = 9;
$mess = "Длина промокода до 15 символов";
$fa = "error";
}
if($error == 0) {
$datas = date("d.m.Y");
$datass = date("H:i:s");
$data = "$datas $datass";
$insert_sql111 = "INSERT INTO `kot_promo` (`id`, `date`, `is_admin`, `name`, `sum`, `active`, `actived`, `id_active`) VALUES (NULL, '$data', '1', '$name', '$sum', '$act', '0', '');";
mysql_query($insert_sql111);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess",
'promoname' => "$name"
);
}
if($type == "saveInfo") {
$id = $_POST['id'];
$new_log = $_POST['username'];
$new_pass = $_POST['userpass'];
$new_bal = $_POST['userbal'];
$win = $_POST['userwin'];
$lose = $_POST['userlose'];
if($check_adm != 1) {
$error = 1;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($check_adm == 1) {
if($win == 1) {
$update_sql11 = "Update kot_user set win = 1 WHERE id='$id'";
mysql_query($update_sql11);
}
if($lose == 1) {
$update_sql12 = "Update kot_user set sliv = 1 WHERE id='$id'";
mysql_query($update_sql12);
}
if($win == 0) {
$update_sql111 = "Update kot_user set win = 0 WHERE id='$id'";
mysql_query($update_sql111);
}
if($lose == 0) {
$update_sql112 = "Update kot_user set sliv = 0 WHERE id='$id'";
mysql_query($update_sql112);
}
$update_sql1 = "Update kot_user set login = '$new_log' WHERE id='$id'";
mysql_query($update_sql1);
$update_sql2 = "Update kot_user set pass = '$new_pass' WHERE id='$id'";
mysql_query($update_sql2);
$update_sql3 = "Update kot_user set balance = '$new_bal' WHERE id='$id'";
mysql_query($update_sql3);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess",
'log' => "$login",
'pass' => "$pass",
'bal' => "$balance",
'id' => "$id"
);
}
if($type == "getInfo") {
$id = $_POST['id'];
$selecter = "SELECT * FROM kot_user WHERE id = '$id'";
$result_select = mysql_query($selecter);
$row = mysql_fetch_array($result_select);
if($row)
{
$login = $row['login'];
$pass = $row['pass'];
$balance = $row['balance'];
}
if($check_adm == 1) {
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess",
'log' => "$login",
'pass' => "$pass",
'bal' => "$balance",
'id' => "$id"
);
}
if($type == "ban") {
$hash_ban = $_POST['hashuser'];
if($check_adm != 1) {
$error = 1;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($check_adm == 1) {
$update_sql4 = "Update kot_user set ban=1 WHERE id='$hash_ban'";
mysql_query($update_sql4);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
if($type == "unban") {
$hash_ban = $_POST['hashuser'];
if($check_adm != 1) {
$error = 1;
$mess = "Вы не являетесь администратором";
$fa = "error";
}
if($check_adm == 1) {
$update_sql4 = "Update kot_user set ban=0 WHERE id='$hash_ban'";
mysql_query($update_sql4);
$fa = "success";
}
$result = array(
'success' => "$fa",
'error' => "$mess"
);
}
echo json_encode($result);
?>