From 917e27d82f70f4270dd5c2b666071a68531bb93e Mon Sep 17 00:00:00 2001
From: aozhiwei <aozhiwei@kingsome.cn>
Date: Fri, 23 Aug 2019 15:15:53 +0800
Subject: [PATCH 1/3] 1

---
 webapp/controller/PayController.class.php | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/webapp/controller/PayController.class.php b/webapp/controller/PayController.class.php
index e75538d..eb2e102 100644
--- a/webapp/controller/PayController.class.php
+++ b/webapp/controller/PayController.class.php
@@ -433,17 +433,14 @@ class PayController{
 
     public function buyItem()
     {
-        $account_id = $_REQUEST['account_id'];
         //登录校验
-        $login = loginVerify($account_id, $_REQUEST['session_id']);
+        $login = loginVerify($_REQUEST['account_id'], $_REQUEST['session_id']);
         if (!$login) {
             phpcommon\sendError(ERR_USER_BASE + 1, 'session无效');
             return;
         }
         $itemid = $_REQUEST['itemid'];
         $itemnum = $_REQUEST['itemnum'];
-        //        $itemid = 16002;
-        //        $itemnum = 1;
 
         $item_meta_table = require('../res/item@item.php');
         $item_meta = getItemConfig($item_meta_table, $itemid);
@@ -456,7 +453,7 @@ class PayController{
             'account_id' => $_REQUEST['account_id'],
             'itemid' => $itemid,
             'itemnum' => 1,
-            'price' => SERVER_ENV != _ONLINE ? 0.01 : (float)$item_meta['rmbprice']
+            'price' => (float)$item_meta['rmbprice']
         );
         $timestamp = time();
         $params['sign'] = phpcommon\md5Sign($params, '06ba97e28ea905b0b7ed5477746b07f1', $timestamp);

From bca520f22fbb44a9a6c00b5cbed514cbf2429a0e Mon Sep 17 00:00:00 2001
From: aozhiwei <aozhiwei@kingsome.cn>
Date: Fri, 23 Aug 2019 15:53:27 +0800
Subject: [PATCH 2/3] 1

---
 webapp/controller/PayController.class.php | 13 ++-----------
 1 file changed, 2 insertions(+), 11 deletions(-)

diff --git a/webapp/controller/PayController.class.php b/webapp/controller/PayController.class.php
index eb2e102..394dbed 100644
--- a/webapp/controller/PayController.class.php
+++ b/webapp/controller/PayController.class.php
@@ -477,7 +477,7 @@ class PayController{
         }
 
         $conn = $this->getMysql($_REQUEST['account_id']);
-        $row = $conn->execQueryOne('SELECT orderid, status FROM orderinfo WHERE orderid=:orderid;',
+        $row = $conn->execQueryOne('SELECT orderid, status, item_list FROM orderinfo WHERE orderid=:orderid;',
                                    array(
                                        ':orderid' => $_REQUEST['orderid']
                                    ));
@@ -495,16 +495,7 @@ class PayController{
             'order_state' => 0,
             'buy_itemid' => 0,
             'buy_itemnum' => 0,
-            'item_list' => array(
-                array(
-                    'itemid' => 10001,
-                    'itemnum' => 1000,
-                ),
-                array(
-                    'itemid' => 10003,
-                    'itemnum' => 1000,
-                ),
-            )
+            'item_list' => json_decode($row[2], true)
         ));
     }
 

From 782348b1ef40b1144009f547b6610dcbd7845ccb Mon Sep 17 00:00:00 2001
From: aozhiwei <aozhiwei@kingsome.cn>
Date: Fri, 23 Aug 2019 16:35:21 +0800
Subject: [PATCH 3/3] 1

---
 webapp/controller/PayController.class.php | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/webapp/controller/PayController.class.php b/webapp/controller/PayController.class.php
index 394dbed..5a1624d 100644
--- a/webapp/controller/PayController.class.php
+++ b/webapp/controller/PayController.class.php
@@ -477,7 +477,8 @@ class PayController{
         }
 
         $conn = $this->getMysql($_REQUEST['account_id']);
-        $row = $conn->execQueryOne('SELECT orderid, status, item_list FROM orderinfo WHERE orderid=:orderid;',
+        $row = $conn->execQueryOne('SELECT orderid, status, item_list, itemid ' .
+                                   'FROM orderinfo WHERE orderid=:orderid;',
                                    array(
                                        ':orderid' => $_REQUEST['orderid']
                                    ));
@@ -493,8 +494,8 @@ class PayController{
             'errcode' => 0,
             'errmsg'=> '',
             'order_state' => 0,
-            'buy_itemid' => 0,
-            'buy_itemnum' => 0,
+            'buy_itemid' => $row[3],
+            'buy_itemnum' => 1,
             'item_list' => json_decode($row[2], true)
         ));
     }