By the way, I wanted to point out that this script for the paid buff feature looks like it has the potential to be exploited. For example, it is storing data in memory that someone paid, but it does not store who. A simple fix for this would be to use quest globals, instead of storing it in a var. After they receive the buff, delete the quest global.
Right now, it seems to me that someone can pay - then someone else could steal the buffs that the other player paid for.
I guess it wouldn't matter if this was a private server, but it could cause issues on a public server. Just heads up!
(Also, I may have read it wrong since I haven't tested this exact script myself - it is just what it appeared to me.)
|