<?
if(isset($_GET['del'])){
	$id=abs(intval($_GET['del']));
	if(isset($_GET['ok'])){
		mysql_query("DELETE FROM `rice_shop` WHERE `id` = '$id'");
		mysql_query("UPDATE `rice` SET `id_rice` = '0' WHERE `id_rice` = '$id'");
		$_SESSION['msg']=" ";
		header("location:/?admin=$admin");
		exit;
	}
	podtv("/?admin=$admin&del=$id&ok","/?admin=$admin");
	include_once'sys/foot.php';
}
if(isset($_GET['edit'])){
	$id=abs(intval($_GET['edit']));
	$edit=mysql_fetch_assoc(mysql_query("SELECT * FROM `rice_shop` WHERE `id` = '$id' LIMIT 1"));
	if(isset($_GET['change_img'])){
		echo "<div class='event'><h1><a href='?admin=$admin'>  </a> /  </h1></div>";
		echo '<div class="content"><div class="block">';
		if(isset($_POST['ok'])){
			if(isset($_FILES['file'])){
				$type = $_FILES['file']['type'];
				if ($type!=='image/jpeg' && $type!=='image/jpg' && $type!=='image/gif' && $type!=='image/png'){$err=1;err_game('  ');}
			} else {$err=1;err_game(' ');}
			if (!isset($err)){
				$tmp = $_FILES['file']['tmp_name'];
				unlink("inc/race/images/$edit[id].png");
				move_uploaded_file($tmp, "inc/race/images/$edit[id].png");
				header("Location:?admin=$admin");
			}
		}
		echo "<form method=\"post\" enctype='multipart/form-data'>\n";
		echo " :<br/><input type='file' name='file' /><br/>\n";
		echo "<input value='' type='submit' name='ok' /></form>";
		echo "</div>";
		include_once 'sys/foot.php';
		exit;
	}
	if(isset($_POST['edits'])){
		$name=mysql_real_escape_string($_POST['name']);
		$type=mysql_real_escape_string($_POST['type']);
		$price=abs(($_POST['price']));
		$speed=abs(intval($_POST['speed']));
		$speed_max=abs(intval($_POST['speed_max']));
		if(empty($err)){
			mysql_query("UPDATE `rice_shop` SET `type` = '$type',`speed_max` = '$speed_max', `name` = '$name', `speed` = '$speed',`price`= '$price' WHERE `id` = '$id'");
			header("location:/?admin=$admin");
			exit;
		}
	} 
	echo'<div class="block event"> <h3> <a href=/?admin='.$admin.'>  </a> /   </h3> </div>';
	echo'<div class="pan-4"> <form method="post" enctype="multipart/form-data"> 
	  :</br><input type="text" name="name" value="'.$edit['name'].'"></br>
	  :</br><input type="number" name="price" value="'.$edit['price'].'"></br>
	 :</br><select name="type">
	<option '.($edit['type']=="money"?'selected':null).' value="money">  </option>
	<option '.($edit['type']=="baks"?'selected':null).' value="baks">  </option>	
	</select></br>
	  :</br><input type="number" name="speed" value="'.$edit['speed'].'"></br>
	 .:</br><input type="number" name="speed_max" value="'.$edit['speed_max'].'"></br>
	<input type="submit" name="adds" value=" "></form></div>';
	echo'<div class="block"> <img width="16" height="16" src="/images/icons/delete.png"> <a href=/?admin='.$admin.'&del='.$id.'>   </a> </div>';
	include_once'sys/foot.php';
}
if(isset($_GET['add'])){
	if(isset($_POST['adds'])){
		$name=mysql_real_escape_string($_POST['name']);
		$type=mysql_real_escape_string($_POST['type']);
		$price=abs(($_POST['price']));
		$speed=abs(intval($_POST['speed']));
		$speed_max=abs(intval($_POST['speed_max']));
		if(isset($_FILES['images'])){
			$type = $_FILES['images']['type'];
			if ($type!=='image/jpeg' && $type!=='image/jpg' && $type!=='image/gif' && $type!=='image/png'){$err=1;err_game('  ');}
		} else {$err=1;err_game('  ');}
		if(empty($err)){
			mysql_query("INSERT INTO `rice_shop` SET `type` = '$type',`speed_max` = '$speed_max', `name` = '$name', `speed` = '$speed',`price`= '$price'");
			$id=mysql_insert_id();
			$tmp = $_FILES['images']['tmp_name'];
			move_uploaded_file($tmp, "inc/race/images/$id.png");
			header("location:/?admin=$admin");
			exit;
		}
	}
	echo'<div class="b-top"><h3> <a href=/?admin='.$admin.'>  </a> /   </h3> </div>';
	echo'<div class="pan-4"> <form method="post" enctype="multipart/form-data"> 
	  :</br><input type="text" name="name"></br>
	  :</br><input type="number" name="price"></br>
	 :</br><select name="type">
	<option value="money">  </option>
	<option value="baks">  </option>	
	</select></br>
	  :</br><input type="number" name="speed"></br>
	 .:</br><input type="number" name="speed_max"></br>
	 :</br><input type="file" name="images"></br>
	<input type="submit" name="adds" value=" "></form></div>';
	include_once'sys/foot.php';
}
echo'<div class="b-top"> <a href=/?admin>  </a> /  </h3> </div><div class="block">';
$k_post = mysql_result(mysql_query("SELECT COUNT(*) FROM `rice_shop`"),0);
if ($k_post==0){echo " ...";}
$k_page=k_page($k_post,$set['p_str']);
$page=page($k_page);
$start=$set['p_str']*$page-$set['p_str'];
$q=mysql_query("SELECT * FROM `rice_shop` ORDER BY `id` DESC LIMIT $start, $set[p_str]");
while($post=mysql_fetch_array($q)){
	echo "<div class='pan-4'>
		<a href='?admin=$admin&edit=$post[id]&change_img'><img width='48' height='48' src='inc/race/images/$post[id].png' alt='o' class='portrait'></a>
			<div> <span> <a href='?admin=$admin&edit=$post[id]'>".hsc($post['name'])."</a> </span> | : ".img_icons(16,16,$post['type']).span('title',$post['price'])." 
			<div>C: ".img_icons(16,16,'exp').span('title',$post['level'])." km/ | .: ".img_icons(16,16,'exp').span('title',$post['level'])."  </div>
		<div style='clear:both'></div>
	</div>";
}
echo "</ul>";
if ($k_page>1)str("?admin=$admin&",$k_page,$page); //  
echo'</div>';

echo'<div class="text-3"> >> <a href=/?admin='.$admin.'&add>  </a> </div>';
include_once'sys/foot.php';
?>