forked from halo-battle/game
34 lines
1.2 KiB
PHP
34 lines
1.2 KiB
PHP
|
<?php
|
|||
|
|
session_start();
|
|||
|
|
|
|||
|
|
$id=$_SESSION['id'];
|
|||
|
|
$galaxy=$_SESSION['galaxy'];
|
|||
|
|
$ss=$_SESSION['ss'];
|
|||
|
|
$pos=$_SESSION['pos'];
|
|||
|
|
|
|||
|
|
require_once('../connectBDD.php');
|
|||
|
|
|
|||
|
|
$x = mysql_query("SELECT * FROM user WHERE id='$id'");
|
|||
|
|
$donnees = mysql_fetch_array($x);
|
|||
|
|
|
|||
|
|
$race = $donnees['race'];
|
|||
|
|
$pseudodes = $donnees['pseudo'];
|
|||
|
|
$temps = time();
|
|||
|
|
|
|||
|
|
if (isset($_POST['message_destinataire']) && $_POST['message_destinataire'] !='') {
|
|||
|
|
$resultat = mysql_query("SELECT pseudo FROM user WHERE pseudo='".$_POST['message_destinataire']."'"); // on v<>rifie l'existance
|
|||
|
|
if(mysql_num_rows($resultat)>=1) { // si c'est bon on passe a la suite
|
|||
|
|
if (isset($_POST['sujet_message']) && $_POST['sujet_message'] !='' ) {
|
|||
|
|
$message_destinataire = htmlspecialchars($_POST['message_destinataire']);
|
|||
|
|
$sujet_message = htmlspecialchars($_POST['sujet_message']);
|
|||
|
|
$message = htmlspecialchars($_POST['message']);
|
|||
|
|
mysql_query("INSERT INTO mail VALUES('', '1', '$message_destinataire', '$pseudodes', '$sujet_message', '$message', '$temps')") or die ("erreur sql ".mysql_error());
|
|||
|
|
}
|
|||
|
|
else echo "Pr<EFBFBD>cisez le nom du sujet";
|
|||
|
|
}
|
|||
|
|
else echo "Pr<EFBFBD>cisez le nom du destinataire";
|
|||
|
|
}
|
|||
|
|
else "Ce joueur n'existe pas";
|
|||
|
|
mysql_close();
|
|||
|
|
@header("Location: envoyer_message.php?ok=1");
|
|||
|
|
?>
|