login.php
<?PHP error_reporting(0); ini_set('display_errors',0); $DB_HOST="10.6.11.11,1433"; $DB_USER = "DragonNest"; $DB_PASSWORD="skQmsgozj!*sha"; $id = $_POST['id']; $password= $_POST['password']; if(isset($id)) { mssql_connect($DB_HOST,$DB_USER,$DB_PASSWORD); mssql_select_db("dnmembership"); $exists = mssql_query("select AccountID from dbo.Accounts where AccountName = '$id'"); if(mssql_num_rows($exists) > 0 ) { $exists = mssql_query("select AccountID from dbo.Accounts where AccountName = '$id' and NxLoginPw = '$password'"); if(mssql_num_rows($exists) > 0 ) { echo 'S000 OK 0'; } else { echo 'E203 OK 0'; } } else { echo 'E202 OK 0'; } } else { echo 'E205 OK 0'; } ?>
payment.php
<?PHP error_reporting(0); ini_set('display_errors',0); $DB_HOST="10.6.11.11,1433"; $DB_USER = "DragonNest"; $DB_PASSWORD="skQmsgozj!*sha"; function MakeResponse($status,$user,$balance) { $arr["RESULT-CODE"]=$status; $arr["RESULT-MESSAGE"]="Success"; $arr["SID"]="DRNEST"; $arr["CN"]="44820790"; $arr["UID"]=$user; $arr["CASH-BALANCE"] = $balance; return json_encode($arr); } $id = $_POST['BUYER-ID']; $Price= $_POST['TOTAL-PRICE']; if(isset($id)) { mssql_connect($DB_HOST,$DB_USER,$DB_PASSWORD); mssql_select_db("dnmembership"); $exists = mssql_query("select AccountID from dbo.Accounts where AccountName = '$id'"); if(mssql_num_rows($exists) > 0 ) { mssql_query('SET ANSI_NULLS ON'); mssql_query('SET ANSI_PADDING ON'); mssql_query('SET ANSI_WARNINGS ON'); mssql_query ('SET ARITHABORT ON'); mssql_query('SET CONCAT NULL YIELDS NULL ON'); mssql_query('SET QUOTED_IDENTIFIER ON'); $stmt = mssql_init('__NX__UpdateCashBalance'); $math = -1; $Price = $Price * $math; mssql_bind($stmt,'@nvcAccountName',$id,SQLVARCHAR,false); mssql_bind($stmt,'@intUpdateCash',$Price,SQLINT4,false); mssql_bind($stmt,'@intRemainCash',$outbalance,SQLINT4,true); mssql_execute($stmt) ; mssql_free_statement($stmt); echo MakeResponse("S000",$id,123); } else{ echo MakeResponse("E301",$id,0); } } ?>
balance.php
<?
error_reporting(0);
ini_set('display_errors',0);
$DB_HOST="10.6.11.11,1433";
$DB_USER = "DragonNest";
$DB_PASSWORD="skQmsgozj!*sha";
function MakeResponse($status,$user,$balance)
{
$arr["RESULT-CODE"]=$status;
$arr["RESULT-MESSAGE"]="Success";
$arr["SID"]="DRNEST";
$arr["CN"]="44820790";
$arr["UID"]=$user;
$arr["CASH-BALANCE"] = $balance;
return json_encode($arr);
}
$id = $_POST['UID'];
if(isset($id))
{
mssql_connect($DB_HOST,$DB_USER,$DB_PASSWORD);
mssql_select_db("dnmembership");
$exists = mssql_query("select AccountID from dbo.Accounts where AccountName = '$id'");
if(mssql_num_rows($exists) > 0 )
{
mssql_query('SET ANSI_NULLS ON');
mssql_query('SET ANSI_PADDING ON');
mssql_query('SET ANSI_WARNINGS ON');
mssql_query ('SET ARITHABORT ON');
mssql_query('SET CONCAT NULL YIELDS NULL ON');
mssql_query('SET QUOTED_IDENTIFIER ON');
$stmt = mssql_init('__NX__GetBalance');
mssql_bind($stmt,'@nvcAccountName',$id,SQLVARCHAR,false);
mssql_bind($stmt,'@intBalance',$balance,SQLINT4,true);
mssql_execute($stmt);
mssql_free_statement($stmt);
echo MakeResponse("S000",$id,$balance);
}
else{
echo MakeResponse("E301",$id,0);
}
}
?>
