<?php
/**
 * 商品支付点数
 * 
 * @version        $Id:shops_point.php 1 8:38 2010年7月9日Z tianya $
 * @package        DedeBIZ.Member
 * @copyright      Copyright (c) 2022, DedeBIZ.COM
 * @license        https://www.dedebiz.com/license
 * @link           https://www.dedebiz.com
 */
require_once(dirname(__FILE__)."/config.php");
if (isset($oid)) {
    $oid = preg_replace("#[^-0-9A-Z]#i", "", $oid);
    $rs = $dsql->GetOne("SELECT paytype,priceCount FROM `#@__shops_orders` WHERE userid='".$cfg_ml->M_ID."' AND oid='$oid'");
    if ($rs['paytype'] != 5) {
        ShowMsg("订单不支持该支付方式", "javascript:;");
        exit();
    }
    $priceCount = $row['priceCount'];

    $members = $dsql->GetOne("SELECT `money` FROM `#@__member` WHERE mid='".$cfg_ml->M_ID."'");
    if ($members['money'] < $priceCount) {
        ShowMsg("支付失败点数不够", "-1");
        exit();
    }

    if ($dsql->ExecuteNoneQuery("UPDATE `#@__shops_orders` SET `state`='1' WHERE `oid`='$oid' AND `userid`='".$cfg_ml->M_ID."' AND `state`<1")) {
        $res = $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET money=money-$priceCount WHERE mid='{$cfg_ml->M_ID}'");
        ShowMsg("下单,支付成功,等待商家发货", "../member/shops_products.php?oid=".$oid);
        exit();
    } else {
        ShowMsg("支付失败,请联系管理员", "-1");
        exit();
    }
} else {
    exit("403 Forbidden!");
}