<?php
include("config.php");
include("core.php");
//session_start();
header("Content-type: text/vnd.wap.wml");
header("Cache-Control: no-store, no-cache, must-revalidate");
print "<?xml version=\"1.0\" encoding=\"utf-8\"?>";
echo "<!DOCTYPE wml PUBLIC \"-//WAPFORUM//DTD WML 1.1//EN\"". " \"http://www.wapforum.org/DTD/wml_1.1.xml\">";

?>

<wml>


<?php

$bcon = connectdb();
if (!$bcon)
{
    echo "<card id=\"main\" title=\"(ERROR!)\">";
    echo "<p align=\"center\">";
    echo "<img src=\"images/exit.gif\" alt=\"*\"/><br/>";
    echo "ERROR! cannot connect to database<br/><br/>";
    echo "This error happens usually when backing up the database, please be patient, The site will be up any minute<br/><br/>";
    echo "<b>THANK YOU VERY MUCH</b>";
    echo "</p>";
    echo "</card>";
    echo "</wml>";
    exit();
}
$brws = explode(" ",$HTTP_USER_AGENT);
$brws2 = explode("(",$HTTP_USER_AGENT); 
$brws3 = explode(")",$brws2[1]);
$brws4 = $brws2[0]."/".$brws3[0]."/".$brws3[1];
$ubr = $brws[0];
$uip = getip();
$action = $_GET["action"];
$sid = $_GET["sid"];
$page = $_GET["page"];
$who = $_GET["who"];
$sitename = mysql_fetch_array(mysql_query("SELECT value FROM ibwf_settings WHERE name='sitename'"));
$sitename = $sitename[0];  

$uid = getuid_sid($sid);

cleardata();
if(isipbanned($uip,$ubr))
    {
      if(!isshield(getuid_sid($sid)))
      {
        echo "<card id=\"main\" title=\"$sitename\">";
      echo "<p align=\"center\">";
      echo "<img src=\"images/notok.gif\" alt=\"x\"/><br/>";
      echo "This IP address is blocked<br/>";
      echo "<br/>";
      echo "How ever we grant a shield against IP-Ban for our great users, you can try to see if you are shielded by trying to log-in, if you kept coming to this page that means you are not shielded, so come back when the ip-ban period is over<br/><br/>";
      $banto = mysql_fetch_array(mysql_query("SELECT  timeto FROM ibwf_penalties WHERE  penalty='2' AND ipadd='".$uip."' AND browserm='".$ubr."' LIMIT 1 "));
      //echo mysql_error();
      $remain =  $banto[0] - time();
      $rmsg = gettimemsg($remain);
      echo " IP: $rmsg<br/><br/>";
      
      echo "</p>";
      echo "<p>";
  echo "UserID: <input name=\"loguid\" format=\"*x\" maxlength=\"30\"/><br/>";
  echo "Password: <input type=\"password\" name=\"logpwd\"  maxlength=\"30\"/><br/>";
  echo "<anchor>LOGIN<go href=\"login.php\" method=\"get\">";
  echo "<postfield name=\"loguid\" value=\"$(loguid)\"/>";
  echo "<postfield name=\"logpwd\" value=\"$(logpwd)\"/>";
  echo "</go></anchor>";
  echo "</p>";
      echo "</card>";
      echo "</wml>";
      exit();
      }
    }
if(($action != "") && ($action!="terms"))
{
    $uid = getuid_sid($sid);
    if((islogged($sid)==false)||($uid==0))
    {
        echo "<card id=\"main\" title=\"$sitename\">";
      echo "<p align=\"center\">";
      echo "You are not logged in<br/>";
      echo "Or Your session has been expired<br/><br/>";
      echo "<a href=\"index.php\">Login</a>";
      echo "</p>";
      echo "</card>";
      echo "</wml>";
      exit();
    }
    
    
    
}
//echo isbanned($uid);
if(isbanned($uid))
    {
        echo "<card id=\"main\" title=\"$sitename\">";
      echo "<p align=\"center\">";
      echo "<img src=\"images/notok.gif\" alt=\"x\"/><br/>";
      echo "You are <b>Banned</b><br/>";
      $banto = mysql_fetch_array(mysql_query("SELECT timeto FROM ibwf_penalties WHERE uid='".$uid."' AND penalty='1'"));
	  $banres = mysql_fetch_array(mysql_query("SELECT lastpnreas FROM ibwf_users WHERE id='".$uid."'"));
	  
      $remain = $banto[0]- time();
      $rmsg = gettimemsg($remain);
      echo "Time to finish your penalty: $rmsg<br/><br/>";
	  echo "Ban Reason: $banres[0]";
      //echo "<a href=\"index.php\">Login</a>";
      echo "</p>";
      echo "</card>";
      echo "</wml>";
      exit();
    }
$res = mysql_query("UPDATE ibwf_users SET browserm='".$brws4."', ipadd='".$uip."' WHERE id='".getuid_sid($sid)."'");

////////////////////////////////////////MAIN PAGE
if($action=="shop")

{
  addvisitor();
  addonline(getuid_sid($sid),"Shop","");
  //saveuinfo($sid);
  
      echo "<card id=\"main\" title=\"$sitename\">";
  echo "<p align=\"center\">";
  $plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$uid."'"));
  Echo "Welcome To The Plusses Shop, Here You Can Spend Your Hard Earned Plusses To Get Special Features On Site<br/>";
  echo "You Currently Have $plusses[0] Plusses";
  echo "</p>";
  echo "<p align=\"center\">";
  echo "The Items You Can Buy Are Listed Below:</p>";
    
    echo "<p align=\"center\">";
    echo "Your Own Personal Avatar<br/>";
    echo "Cost: 1000 Plusses<br/>";
    echo "<a href=\"shop.php?action=peravat&amp;sid=$sid&amp;who=$plusses[1]&amp;whoid=$uid\">Buy Now</a>";
    echo "</p>";    
    
  echo "<p align=\"center\">";
    echo "Your Own Personal Smilie<br/>";
    echo "Cost: 2000 Plusses<br/>";
    echo "<a href=\"shop.php?action=persmile&amp;sid=$sid&amp;who=$plusses[1]&amp;whoid=$uid\">Buy Now</a>";
    echo "</p>";   
    
  echo "<p align=\"center\">";
    echo "Your Own Public Chatroom<br/>";
    echo "Cost: 4000 Plusses<br/>";
    echo "<a href=\"shop.php?action=pubchat&amp;sid=$sid&amp;who=$plusses[1]&amp;whoid=$uid\">Buy Now</a>";
    echo "</p>";
    
  echo "<p align=\"center\">";
    echo "Your Own Forum<br/>";
    echo "Cost: 5000 Plusses<br/>";
    echo "<a href=\"shop.php?action=pubforum&amp;sid=$sid&amp;who=$plusses[1]&amp;whoid=$uid\">Buy Now</a>";
    echo "</p>";
   
 echo "<p align=\"center\">";
    echo "Your Own Personal Avatar<br/>";
    echo "Cost: 1000 Plusses<br/>";
    echo "<a href=\"shop.php?action=peravat&amp;sid=$sid&amp;who=$plusses[1]&amp;whoid=$uid\">Buy Now</a>";
    echo "</p>";    
  
echo "<p align=\"center\">";
   echo "Your Own Status<br/>";
    echo "Cost: 900 Plusses<br/>";
    echo "<a href=\"shop.php?action=perstaus?sid=$sid\">Buy Now</a><br/>";
    echo "</p>";

    
  echo "<p align=\"center\">";

  echo "<a href=\"index.php?action=main&amp;sid=$sid\"><img src=\"images/home.gif\" alt=\"*\"/>";
  echo "Home</a>";
  echo "</p>";
  echo "</card>";
}
else if($action=="peravat")
{
    echo "<card id=\"main\" title=\"$sitename\">";
    echo "<p align=\"center\">";
    $ownid[0]=1;
     $who=$_GET["whoid"];
    $whoid=$_GET["who"];
    $plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
	$remainplus = $plusses[0] - 1000;
	$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
	$message = "A User Has visited The Plusses Shop and Ordered a Personal Avatar, the user is ".$whoid." Please Action This request as soon as possible.[br/][small][i]p.s: this is an automated pm[/i][/small]";
	autopm($message, $ownid[0]);
	echo "Thank You For Choosing To Purchase Your Personal Avatar. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
    echo "We Expect your personal avatar to be ready in 48hours or less<br/>";
    echo "You Now have $remainplus Plusses Remaining<br/></p>";
    echo "<p align=\"center\">";
    echo "<a href=\"index.php?action=main&amp;sid=$sid\"><img src=\"images/home.gif\" alt=\"*\"/>";
echo "Home</a>";
  echo "</p>";
    echo "</card>";
}
else if($action=="persmile")
{
    echo "<card id=\"main\" title=\"$sitename\">";
    echo "<p align=\"center\">";
    $ownid[0]=1;
    $who=$_GET["whoid"];
    $whoid=$_GET["who"];
    $plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
	$remainplus = $plusses[0] - 2000;
	$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
	$message = "A User Has visited The Plusses Shop and Ordered a Personal Smilie, the user is ".$whoid." Please Action This request as soon as possible.[br/][small][i]p.s: this is an automated pm[/i][/small]";
	autopm($message, $ownid[0]);
	echo "Thank You For Choosing To Purchase Your Personal Smilie. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
    echo "We Expect your Personal Smilie to be ready in 48hours or less<br/>";
    echo "You Now have $remainplus Plusses Remaining<br/></p>";
    echo "<p align=\"center\">";
    echo "<a href=\"index.php?action=main&amp;sid=$sid\"><img src=\"images/home.gif\" alt=\"*\"/>";
echo "Home</a>";
  echo "</p>";
    echo "</card>";
}
else if($action=="pubchat")
{
    echo "<card id=\"main\" title=\"$sitename\">";
    echo "<p align=\"center\">";
    $who=$_GET["whoid"];
    $whoid=$_GET["who"];
    $itm="chatroom";
    $dte=date("y m d-H:i:s");
    $plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
	$remainplus = $plusses[0] - 4000;
	$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
    $shpreq=mysql_query("INSERT INTO ibwf_shop SET uid='".$who."', item='".$itm."', date='".$dte."'");
	echo "Thank You For Choosing To Purchase Your Own Chatroom. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
    echo "We Expect your Room to be live within 48hours or less<br/>";
    echo "You Now have $remainplus Plusses Remaining<br/></p>";

    echo "<p align=\"center\">";
    echo "<a href=\"index.php?action=main&amp;sid=$sid\"><img src=\"images/home.gif\" alt=\"*\"/>";
echo "Home</a>";
  echo "</p>";
    echo "</card>";
}
else if($action=="pubforum")
{
    echo "<card id=\"main\" title=\"$sitename\">";
    echo "<p align=\"center\">";
    $who=$_GET["whoid"];
    $whoid=$_GET["who"];
    $itm="forum";
    $dte=date("y m d-H:i:s");
    $plusses = mysql_fetch_array(mysql_query("SELECT plusses, name FROM ibwf_users WHERE id='".$who."'"));
	$remainplus = $plusses[0] - 5000;
	$plussupdate = mysql_query("UPDATE ibwf_users SET plusses='".$remainplus."' WHERE id='".$who."'");
    $shpreq=mysql_query("INSERT INTO ibwf_shop SET uid='".$who."', item='".$itm."', date='".$dte."'");
	echo "Thank You For Choosing To Purchase a Public Forum. Your Plusses Have Been Debited and your request sent to the staff for processing.<br/>";
    echo "We Expect your forum will be live within 48hours or less<br/>";
    echo "You Now have $remainplus Plusses Remaining<br/></p>";

    echo "<p align=\"center\">";
    echo "<a href=\"index.php?action=main&amp;sid=$sid\"><img src=\"images/home.gif\" alt=\"*\"/>";
echo "Home</a>";
  echo "</p>";
    echo "</card>";
}
?>
</wml>