<?php

include_once "../data.php";
include_once "../functions/gamefunctions.php";
include_once "../functions/tablefunctions.php";
$db = new database();
$db->connect($db_server, $db_login, $db_password);
$db->select_db($db_database);
if (!$action) {
    fTitle("speed.php");
    fText("Action:", "action");
    fTextarea("Add:", "text");
    fEnd("Add");
}
if ($action == "orbs") {
    $lines = explode("\n", $text);
    $counter = 0;
    // create buildings
    foreach ($lines as $line) {
        $values = explode("\t", $line);
        foreach ($values as $key => $value) {
            $values[$key] = trim($value);
        }
        $sql = "\r\n\t\t\tINSERT INTO orbs (color, cost, min_gems, max_gems, min_uses, max_uses, rarity_mod, rarity_description) \r\n\t\t\tVALUES ('{$values['0']}', '{$values['1']}', '{$values['2']}', '{$values['3']}', '{$values['4']}', '{$values['5']}', '" . str_replace(",", ".", $values[6]) . "', '{$values['7']}')\r\n\t\t\t";
        $result = $db->query($sql);
        $counter++;
    }
    echo "{$counter} added.";
}
if ($action == "signs") {
    $lines = explode("\n", $text);

    if (!$action) {
        echo '
			You face an immense wall. Your eyes try to grasp where it ends, 
			but in neither of the directions you can see and ending. Curious you touch 
			the wall and feel that it\'s made out of the same smooth black stone as the 
			narrow walls you were walking before. You walk a whole time alongside it, 
			until your reach small holes in the wall. You can\'t see inside them, because 
			it\'s darker as hell inside these hallways. You figure you can crawl through 
			one of these small tunnels to the other side of that wall.<br>
			You find about 10 holes right next to each other.<br><br>
			
			Which one will you enter?
			';
        fTitle("index.php?page=Maze&action=enter");
        fText("Entrance:", "entrance");
        fEnd("Enter");
    }
    if ($action == "enter") {
        if ($entrance == 5) {
            $sql = "UPDATE mazestatus SET status = '4' WHERE account = '{$acc['id']}'";
            $result = $db->query($sql);
            echo '
				You enter the dark passage. Before you know it, you have passed underneath the huge wall. You are standing in a gigantic hall.<br><br>
				
				As you wander through the Great Room, as you\'ve come to call it, you suddenly see, in the distance, a great structure. Running towards it, your anxiety grows, because you feel power emerging from that place, you can feel the greatness that once was.
				When you\'ve almost reached the structure, you gasp in awe at the colossal building in front of you, made entirely out of a low pulsing and gleaming material which emits a strange scent, one you\'ve never smelled before. When you\'re standing a few yards away from it, you realize this is some sort of tomb. A tomb that no man could build, for it seems entirely made out of one piece. Looking up at it, you see no end and circling the grave looks nearly impossible, because in the distance there is nothing to be seen but the giant wall.
				Surrounding the huge block of stone, there are little rooms. When you enter a few of those, you can see walls full of strange glowing symbols, huge ornaments with a frightening look, but nothing you can use. Several other rooms are completely empty, creating the feeling that this fascinating tomb is not yet finished - as if the creators were interupted in the middle of their work.<br><br>
				
				You feel lost in an eternal space.<br><br>
				
				Your fingers want to run along the surface of the walls of the huge tombstone, to feel if there are bricks, panels, some sort of building method you can understand. The moment you touch the stone wall, you are overwhelmed by visions of something great, something your mind cannot possibly grasp at this point. You feel pain, victory, more pain and ... a loss. You tear your hands away from the wall, because the feeling of pain is ripping your mind apart. Sinking down in fear, you start crying and the strain of the hours and hours of continued walking get the better of you and the feeling of sleep is overwhelming. <br><br>

        echo 'That text is too long.<br>';
    } else {
        $sql = "UPDATE accounts SET private = '{$private}' WHERE id = '{$acc['id']}'";
        $result = $db->query($sql);
        echo 'Private notes successfully changed!<br>';
        $acc["private"] = stripslashes($private);
        unset($action);
    }
}
if ($action == "raiseskill") {
    $availablepoints = gGetSkillPointsLeft();
    $raise = $gdClass[$class]["value"] == $acc["class"] ? 2 : 1;
    echo 'How many skill points do you want to spend on your ', strtolower($gdClass[$class]["name"]), ' skill? (maximum ', $availablepoints, ', skill raises by ', $raise, ' for every point spent)<br><br><br>';
    fTitle("index.php?page=character&action=raise&class={$class}");
    fText("Skill points:", "amount", "0", 5);
    fEnd("Raise skill");
}
if (!$action) {
    tBegin("Character Development");
    $togo = $acc["nextlevelxp"] - $acc["xp"];
    $previous = gCalcXp($acc["level"] - 1, $gdXpVar, $gdStartXp);
    $percent = round(($acc["xp"] - $previous) * 100 / ($acc["nextlevelxp"] - $previous));
    $xpbar = '<table border="0" cellspacing="0" cellpadding="0"><tr>';
    for ($m = 0; $m < 50; $m++) {
        if ($m < $percent / 2) {
            $xpbar .= '<td width="1" class="alert">';
        } else {
            $xpbar .= '<td width="1" class="head">';
        }
        $xpbar .= '|</td>';
    }

          Registration is disabled until the next age starts.<br>
          ';
      }*/
}
if ($action == "reactivate") {
    include_once "functions/gamefunctions.php";
    echo '
		Normally, you should have received a mail with a reactivation code for your account.
		But some people didn\'t receive it because their e-mail account was invalid or they exceeded their maximum storage amount.
		These people can now receive their reactivation code by entering their old username and password below.
		If you don\'t know the username or password anymore and the activation e-mail hasn\'t arrived by now, your account will be lost and you will have to register again when the game goes up.<br><br>
		';
    fTitle("indexnl.php?page=nl_newaccount&action=reactivate2");
    fText("Login name:", "name");
    fText("Password:", "password", "", 20, TRUE);
    fEnd("Get reactivation key");
}
if ($action == "reactivate2") {
    include_once "functions/gamefunctions.php";
    $sql = "SELECT activatekey FROM reactivation WHERE name = '{$name}' AND password = PASSWORD('{$password}')";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'Invalid login name or password.<br>';
        $no = 1;
    } else {
        $key = $db->result($result, 0);
        echo 'Click on the following url to activate your account:<br><br>';
        $url = $cq2url . "indexnl.php?page=nl_newaccount&key=" . $key;
        echo '<a href="', $url, '">', $url, '</a><br>';
    }

        echo 'Invalid bid.';
        $no = 1;
    }
    if ($no == 0) {
        $sql = "DELETE FROM changelog WHERE id = '{$bid}'";
        $result = $db->query($sql);
        echo 'changelog deleted.';
    }
}
if ($action == "changechangelog") {
    $sql = "SELECT * FROM changelog WHERE id = '{$bid}'";
    $result = $db->query($sql);
    $row = $db->fetch_array($result);
    fTitle("index.php?page=changelog&action=submitchangechangelog&bid=" . $row["id"]);
    fTextarea("Text:", "text", $row["text"]);
    fEnd("Change");
}
if ($action == "submitchangechangelog") {
    $no = 0;
    if (!$text) {
        echo 'Data is incomplete.';
        $no = 1;
    }
    $sql = "SELECT * FROM changelog WHERE id = '{$bid}'";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'Invalid bid.';
        $no = 1;
    }
    if ($no == 0) {

<?php

if ($action == "summoncreatures") {
    $sql = "SELECT name FROM creatures WHERE id = '{$cid}'";
    $result = $db->query($sql);
    $name = $db->result($result, 0);
    echo 'How many ', $name, ' amulets do you want to summon?<br><br><br>';
    fTitle("index.php?page=spellbook&action=submitsummoncreatures&cid={$cid}");
    fText("Amount:", "amount", 1, 5);
    fEnd("Summon Amulets");
}
if ($action == "race" || $action == "race_as") {
    $no = 0;
    if (!$rid) {
        echo 'Invalid data.<br>';
        $no = 1;
    } else {
        $sql = "SELECT class FROM races WHERE id = '{$rid}'";
        $result = $db->query($sql);
        $class = $db->result($result, 0);
        $value = $acc[strtolower($gdClass[$class - 1]["name"])];
        $core = "ROUND(((( c.damage * 2) + (2/30*(( r.forest + r.death + r.air + r.earth )/40* c.health ) + 2/3* c.health )) * (1 - (c.skillbonus / 100))), 0)";
        $maincheck = "({$core} /100* (100 - {$gdSkillDifference}))";
        $check = "(ROUND({$maincheck}) <= {$value})";
        $end = "ORDER BY {$core} ASC";
        $sql = "SELECT {$gdTravelChallengeCreatureSelect}, b.name AS buildingname FROM (creatures AS c, races AS r) LEFT JOIN accbuildings AS ab ON c.building = ab.building AND ab.account = '{$acc['id']}' LEFT JOIN buildings AS b ON b.id = c.building WHERE c.race = r.id AND r.id = '{$rid}' AND (c.building = '0' OR ab.building = c.building) AND c.type = '0' AND ({$check}) {$end}";
        $result = $db->query($sql);
        $numrows = $db->num_rows($result);
        if ($numrows == 0) {
            echo 'Invalid race.';
            $no = 1;

    fSelect("Enchantment:", "genchantment", $array, $default);
    unset($default);
    $array = array();
    $array[] = array("name" => "Any Quality", "value" => "ANY");
    if ($gquality == "ANY" || !isset($gquality)) {
        $default = 0;
    }
    for ($m = 0; $m < count($gdGemQuality); $m++) {
        $name = $gdGemQuality[$m]["name"];
        $array[] = array("name" => $name, "value" => $m);
        if (!isset($default) && $gquality == $m) {
            $default = count($array) - 1;
        }
    }
    fSelect("Quality:", "gquality", $array, $default);
    fEnd("Filter");
    tEnd();
}
// **********************
// *	Buildings		*
// **********************
include_once "actions/kd_hatcheries.php";
if ($action == "buildings") {
    // kingdom check
    if (is_null($acc[x]) && is_null($acc[y])) {
        $kingdom = $acc["kingdom"];
    } elseif ($acc["tkdrelation"] == 2) {
        $kingdom = $acc["tkd"];
    } else {
        die("Messing around?");
    }

        } else {
            if ($row["timelimit"] == 0) {
                $addon = " for unlimited time";
            } else {
                $dif = gCalcTimeDif($row["timelimit"], $row["time"]);
                $addon = " for {$dif['days']} days";
            }
            $addon .= ", <a href=\"index.php?page=kingdom&action=changebandays&aid={$row['aid']}\">change</a>";
        }
        echo '<a href="index.php?page=playerinfo&action=viewinfo&aid=', $row["aid"], '">', $row["name"], '</a> by <a href="index.php?page=playerinfo&action=viewinfo&aid=', $row["banner"], '">', $row["bannername"], '</a> (since ', $date, '', $addon, ') - <a href="index.php?page=kingdom&action=unban&pbid=', $row["id"], '">unban</a><br>';
    }
    tEnd();
    tBegin("Ban Account");
    fTitle("index.php?page=kingdom&action=ban");
    fText("Name:", "name");
    fEnd("Ban");
    tEnd();
    if (in_array($acc["id"], $moderators)) {
        tBegin("Violations");
        $sql = "SELECT id, subject, days FROM violations ORDER BY subject ASC";
        $result = $db->query($sql);
        while ($row = $db->fetch_array($result)) {
            echo $row["subject"], ' (', $row["days"], '): <a href="index.php?page=kingdom&action=editviolation&vid=', $row["id"], '">edit</a>, <a href="index.php?page=kingdom&action=deleteviolation&vid=', $row["id"], '">delete</a><br>';
        }
        echo '<br><a href="index.php?page=kingdom&action=addviolation">Add violation.</a><br>';
        tEnd();
        tBegin("Violation Logs");
        echo '<a href="index.php?page=kingdom&action=violationlogs">View logs.</a>';
        tEnd();
    }
}

                $resource = "essence";
                break;
            case 7:
                $resource = "granite";
                break;
        }
        $maxres = round($acc[$resource] * gdGamblingDwarfMax);
        echo '
				You encounter ', $gdEncounters[$encounter][0], '.<br>
				He offers you a ', $resource, ' gambling challenge.<br>
				You can gain a lot of ', $resource, ' and you can lose a lot, but you can never lose more than you invest.<br>
				You can gamble for at most ', $maxres, ' ', $resource, ' in one game.<br>
				';
        fTitle("index.php?page=travel&action=encounter");
        fText("{$resource} to invest:", "amount", "", 5);
        fEnd("Gamble");
    }
    if ($encounter == 8) {
        echo '
				You encounter ', $gdEncounters[$encounter][0], '.<br>
				He is an unusually powerful dwarf.<br>
				If you give him a gem and some additional resources, he will give you some of his power.<br><br>
				';
        $sql = "SELECT g.id AS gid, g.level AS glevel, g.type AS gtype, g.quality, s.name AS signname, s.rarity, s.type AS signtype FROM gems AS g, signs AS s WHERE g.owner = 'mage' AND g.target = '{$acc['id']}' AND g.sign = s.id";
        $result = $db->query($sql);
        $numrows = $db->num_rows($result);
        if ($numrows == 0) {
            echo 'Unfortunately, you do not have any gems.<br>';
        } else {
            echo 'Select a gem from the list to give it to him.<br><br>';
        }

			';
        tEnd();
    }
    tEnd();
    tBegin("Pending Reports");
    $sql = "SELECT r.*, a.name, a2.name AS adminname FROM (reports AS r, accounts AS a) LEFT JOIN accounts AS a2 ON r.admin = a2.id WHERE r.admin != '{$acc['id']}' AND r.processed = 'no' AND r.reporter = a.id ORDER BY (r.admin = 1) ASC, r.date ASC";
    $result = $db->query($sql);
    while ($row = $db->fetch_array($result)) {
        if ($row["admin"] == 0) {
            echo ucfirst($row["type"]), ' by ', $row["name"], ' on ', $row["date"], ': <a href="index.php?page=admin&action=addreport&rid=', $row["id"], '">process this report</a>.<br>';
        } else {
            echo ucfirst($row["type"]), ' by ', $row["name"], ' on ', $row["date"], ' flagged by ', $row["adminname"], ': <a href="index.php?page=admin&action=viewreport&rid=', $row["id"], '">view this report</a>.<br>';
        }
    }
    tEnd();
    tBegin("Processed Reports");
    $sql = "SELECT r.*, a.name, a2.name AS adminname FROM reports AS r, accounts AS a, accounts AS a2 WHERE r.processed = 'yes' AND r.reporter = a.id AND r.admin = a2.id ORDER BY r.date DESC";
    $result = $db->query($sql);
    while ($row = $db->fetch_array($result)) {
        echo ucfirst($row["type"]), ' by ', $row["name"], ' on ', $row["date"], ' processed by ', $row["adminname"], ': <a href="index.php?page=admin&action=viewreport&rid=', $row["id"], '">view this report</a>.<br>';
    }
    tEnd();
}
if ($action == "editnotes") {
    $sql = "SELECT text FROM misctext WHERE name = 'adminnotes'";
    $result = $db->query($sql);
    $notes = $db->result($result, 0);
    fTitle("index.php?page=admin&action=submiteditnotes");
    fTextarea("Notes:", "notes", $notes);
    fEnd("Edit");
}

            $offset = 0;
        }
        echo '<a href="index.php?page=battles&outgoingreportoffset=', $offset, '">previous</a>';
    }
    if ($outgoingreportoffset != 0 && $counter > $gdDisplayBattles) {
        echo '<br>';
    }
    if ($counter > $gdDisplayBattles) {
        $offset = $outgoingreportoffset + $gdDisplayBattles;
        echo '<a href="index.php?page=battles&outgoingreportoffset=', $offset, '">next</a>';
    }
    tEnd();
    tBegin("Attack");
    fTitle("index.php?page=battles&action=attack");
    fText("Target:", "targetname");
    fEnd("Attack");
    tEnd();
}
if ($action == "battleinfo") {
    $no = 0;
    $sql = "SELECT b.*, a.name AS aname, a.id AS aid, a.gender AS agender, k.id AS kid, k.name AS kname FROM battles AS b, accounts AS a, kingdoms AS k WHERE b.id = '{$bid}' AND b.account = '{$acc['id']}' AND b.status = '1' AND b.target = a.id AND a.kingdom = k.id";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'Invalid data.<br>';
        $no = 1;
    }
    if ($no == 0) {
        $row = $db->fetch_array($result);
        tBegin("Status");
        if ($row["resource"] == "powerbalance") {

        if ($creature->data["baselevel"] == 0) {
            $creature->data["baselevel"] = 1;
        }
        $cost = round($basecost * $creature->data["baselevel"] * $gdGemSpells[$gemspell]["multiplier"] * gdGemSpellKDBCostMultiplier);
        // minimum/maximum investment
        $mincost = $cost;
        $maxcost = round($cost * gdGemSpellKDBMaxLevelBonusCostIncrease);
        echo '
			You are going to cast a ', $gdGemSpells[$gemspell]["name"], ' wave enchant on the ', $creature->data["creaturename"], ' creatures in the wave.<br>
			The quality of the spell depends on the amount of ', $creature->data["creaturename"], ' creatures in your kingdom and on the amount of resources you use for it.<br>
			The more resources you use, the higher your chance of casting a better spell.<br>
			You can invest between ', $mincost, ' and ', $maxcost, ' resources in this spell.<br>
			';
        fTitle("index.php?page=kingdom&action=submitcastenchantment&kdbid={$kdbid}&wave={$wave}&cid=" . $creature->data["cid"] . "&gemspell={$gemspell}");
        fText("Kingdom Resources:", "resources", "0");
        fEnd("Cast Enchantment");
    }
}
if ($action == "submitcastenchantment") {
    $no = 0;
    // get kingdom battle
    $sql = "SELECT * FROM kdbattles WHERE id = '{$kdbid}' AND (kingdom = '{$acc['kingdom']}' OR target = '{$acc['kingdom']}') AND building != '0'";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'Invalid kingdom battle.<br>';
        $no = 1;
    } else {
        $kdbattle = $db->fetch_array($result);
        // we are the attackers -> we can only cast an enchantment during battle setup, and on any wave
        if ($kdbattle["kingdom"] == $acc["kingdom"]) {

        tEnd();
    } else {
        if ($acc["level"] >= $gdCurseLevelMin) {
            tBegin("Shard Pool");
            $sql = "SELECT value FROM misc WHERE name = 'pool'";
            $result = $db->query($sql);
            $totallvl = $db->result($result, 0);
            echo '
				As you near the magical pool, you start to hear faint voices coming from the water. These voices are caused by the hundreds of trapped creature souls in the water. The souls give the pool magical properties that can crystallize raw resources into powerful shards.<br><br>
				';
            fTitle("index.php?page=Stonehenge&action=pool2");
            fText("Brimstone:", "brimstone");
            fText("Crystal:", "crystal");
            fText("Essence:", "essence");
            fText("Granite:", "granite");
            fEnd("Throw in pool");
            tEnd();
        } else {
            echo 'You are not powerful enough to use the shard pool.';
        }
    }
}
if ($action == "pool2" && $totallvl >= $gdPoolRequiredLevel) {
    $no = 0;
    if (!$brimstone && !$crystal && !$essence && !$granite) {
        echo 'Invalid resources.<br>';
        $no = 1;
    } else {
        if ($brimstone && !gCheckInt($brimstone) || $crystal && !gCheckInt($crystal) || $essence && !gCheckInt($essence) || $granite && !gCheckInt($granite)) {
            echo 'Invalid resources.<br>';
            $no = 1;

    }
} else {
    if ($hometeam && $awayteam) {
        $array = array(array("value" => "H", "name" => $hometeam), array("value" => "A", "name" => $awayteam));
        echo 'We are currently trying to predict the result of the game between ' . $hometeam . ' and ' . $awayteam . '.<p>
			
			You have to bet ' . $betamount . ' resources, and you\'re only allowed to wager once on each game.<br>
			In the form below you can enter the score, who scores first and in which minute this will happen.<br>
			If you predict a 0-0 result, enter which team will get a yellow card first and again in which minute this will happen.<br>
			For more information and rules, check the <a href=index.php?page=help&topic=Football%20gambling>help</a>.<p><br>';
        fTitle("index.php?page=lotto&action=gamble");
        fText("Brimstone:", "brimstone", "0");
        fText("Crystal:", "crystal", "0");
        fText("Essence:", "essence", "0");
        fText("Granite:", "granite", "0");
        echo '<tr><td><br><td></tr>';
        fText($hometeam . " score:", "homescore", "0");
        fText($awayteam . " score:", "awayscore", "0");
        echo '<tr><td><br><td></tr>';
        fRadio("First goal or yellow card:", "firstscore", $array);
        fText("In which minute?", "minute", "0");
        echo '<tr><td><br><td></tr>';
        fEnd("Place bet");
    } else {
        echo 'There is currently no game to bet on.';
    }
}
?>

        echo gGetOrbDescription($orb), '<br><br>';
        echo 'Please select exactly one gem for each sign required for this orb.<br><br><br>';
        $sql = "SELECT g.id, s.name AS signname, g.level AS glevel, g.type AS gtype, g.quality, s.type AS signtype FROM gems AS g, signs AS s WHERE g.owner = 'mage' AND g.target = '{$acc['id']}' AND g.sign = s.id ORDER BY s.name, g.level, g.type, g.quality ASC";
        $result = $db->query($sql);
        $numrows = $db->num_rows($result);
        fTitle("index.php?page=items&action=castitherian3&aoid={$aoid}&itid={$itid}");
        $counter = 0;
        while ($row = $db->fetch_array($result)) {
            $counter++;
            echo '<input type="checkbox" name="gemsselected[', $row["id"], ']">';
            echo gEchoGem($row), '<br>';
        }
        if ($numrows == 0) {
            echo 'You don\'t have any gems right now.<br><br>';
        }
        fEnd("Cast Itherian Orb Spell!");
        tEnd();
    }
}
if ($action == "castitherian3") {
    $no = 0;
    // get orb
    $sql = "SELECT o.color, ao.* FROM accorbs AS ao, orbs AS o WHERE ao.id = '{$aoid}' AND ao.account = '{$acc['id']}' AND ao.orb = o.id";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'Invalid aoid.<br>';
        $no = 1;
    } else {
        $orb = $db->fetch_array($result);
        // get signs

<?php

include_once "functions/tablefunctions.php";
if (!$action) {
    fTitle("random.php?action=generate");
    fText("Amount of numbers to generate:", "amount", "1");
    fText("Min value to generate:", "min", "1");
    fText("Max value to generate:", "max", "100");
    fText("Lower or equal than:", "lower", "50");
    fEnd("Generate");
}
if ($action == "generate") {
    // generate results
    $results = array_fill($min, $max - $min + 1, 0);
    for ($i = 0; $i < $amount; $i++) {
        $pick = rand($min, $max);
        $results[$pick]++;
    }
    // print all results
    echo '<table width="55" border="0" cellspacing="0" cellpadding="0">';
    $total = 0;
    for ($i = $min; $i <= $max; $i++) {
        echo '
			<tr><td width="25" align="right">
			', $i, '
			</td><td width="5"></td><td width="25">
			</td><td width="25" align="left">
			', $results[$i], '
			</td></tr>
			';
        if ($i <= $lower) {

<?php

topic("Creature And Item Database");
if (!$action) {
    echo '
		Enter the name of a creature or item in the field below to get information about that spell.
		You can only get information about the spells that are somewhat in your reach.
		Only creatures and items that have a usage level lower than your own will be available here.
		<br><br>
		';
    fTitle("index.php?page=spellinfo&action=viewinfo");
    fText("Spell Name:", "name");
    fEnd("Search");
}
if ($action == "viewinfo") {
    $no = 1;
    if ($type && $sid) {
        if ($type == "creature") {
            $sql = "SELECT count(*) FROM creatures WHERE id = '{$sid}'";
            $result = $db->query($sql);
            $numrows = $db->result($result, 0);
            if ($numrows == 1) {
                $no = 0;
            }
        }
        if ($type == "item") {
            $sql = "SELECT count(*) FROM items WHERE id = '{$sid}'";
            $result = $db->query($sql);
            $numrows = $db->result($result, 0);
            if ($numrows == 1) {
                $no = 0;

            $cost = round($row["glevel"] * $basecost * $gdGemSpells[$eid]["multiplier"]);
            echo gEchoGem($row), ' (', $cost, ' resources)<br>';
            $totalcost += $cost;
        }
        echo '<br><br>Total spell cost: ', $totalcost, ' kingdom resources.<br>';
        $sql = "SELECT resources FROM kingdoms WHERE id = '{$acc['kingdom']}'";
        $result = $db->query($sql);
        $resources = $db->result($result, 0);
        if ($resources < $totalcost) {
            echo 'Your kingdom doesn\'t have enough resources to cast that spell.<br>';
        } else {
            fTitle("index.php?page=kingdom&action=submitenchantgems&eid={$eid}");
            for ($m = 0; $m < count($gems); $m++) {
                echo '<input type="hidden" name="gem[', $gems[$m]["gid"], ']" value="on">';
            }
            fEnd("Enchant Gems");
        }
    }
}
if ($action == "submitenchantgems") {
    $no = 0;
    $sql = "SELECT g.id AS gid, g.level AS glevel, g.type AS gtype, g.quality FROM gems AS g WHERE g.owner = 'mage' AND g.target = '{$acc['id']}'";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows == 0) {
        echo 'You don\'t have enough gems.<br>';
        $no = 1;
    } else {
        $gems = array();
        while ($row = $db->fetch_array($result)) {
            if ($gem[$row["gid"]] == "on") {

<?php

topic("Report Abuse");
if (!$action) {
    fTitle("index.php?page=reportabuse&action=submitabuse");
    fText("Account name of abuser:", "name");
    fTextArea("Abuse Description:", "description");
    fEnd("Submit");
    echo '
		You can report anything abusive you encounter here.<br>
		Typical abuse can be the use of offensive language or a player with more than one account.<br>
		';
}
if ($action == "submitabuse") {
    $no = 0;
    if (!$description) {
        echo 'You have to enter a description and an account name.<br>';
        $no = 1;
    }
    $sql = "SELECT id, name FROM accounts WHERE name = '{$name}'";
    $result = $db->query($sql);
    $numrows = $db->num_rows($result);
    if ($numrows != 1) {
        echo 'You have to enter a valid account name.<br>';
        $no = 1;
    } else {
        $row = $db->fetch_array($result);
        $name = "{$row['name']} (" . $cq2url . "index.php?page=playerinfo&action=viewinfo&aid={$row['id']}";
    }
    if ($no == 0) {
        $date = date("Y-m-d @ H:i");

    tBegin("Mathematics Dwarf");
    $cache = md5(uniqid(rand()));
    echo '
		While giving orders to your minions you suddenly notice a strange little guy messing around with your creatures and counting their toes, tails and teeth, amongst other things.<br>
		
		<i>"I really need a duplicate of a rare number I discovered here...<br>
		Please, can you copy it for me?"</i><br><br>
		
		<img src="travelcounter.php?cache=', $cache, '"><br><br>
		
		Just refresh the page if you\'re not sure about the number.<br><br>
		';
    fTitle("index.php?page=playerinfo&action=submitnumber&aid={$aid}");
    fText("Copy:", "number", "", 5);
    echo '<input type="hidden" name="formtype" value="submitnumber">';
    fEnd("Give Number");
    tEnd();
}
if ($action == "attack") {
    $no = 0;
    if ($targetname) {
        $sql = "SELECT id FROM accounts WHERE name = '" . trim($targetname) . "'";
        $result = $db->query($sql);
        $numrows = $db->num_rows($result);
        if ($numrows != 1) {
            echo 'That mage doesn\'t exist.<br>';
            $no = 1;
        } else {
            $target = $db->result($result, 0);
            if (in_array($target["id"], $gdSecretMages)) {
                echo 'That mage doesn\'t exist.<br>';