Version 1.7l

This commit is contained in:
nemunaire 2008-11-19 12:00:00 +01:00
commit aea537909a
42 changed files with 718 additions and 131 deletions

View file

@ -6,6 +6,7 @@ $titre = 'Vérification flottes';
//Vérification des flottes
if (!isset($_GET['ceil'])) $_GET['ceil'] = 5000;
$chapeau->connexion();
$req = mysql_query("SELECT * FROM `$table_flottes` ORDER BY `start_time` DESC");
$tableau = array();
while($resultat = mysql_fetch_array($req)) {

View file

@ -3,21 +3,34 @@ if(!defined('INDEX')) { header('Location: ../'); exit; }
$pagea = 'vip';
$titre = 'Vérification IP';
$timelimit = date('Y-m-d', mktime(0, 0, 0, date("m"), date("d"), date("Y"))); //2008-06-17 18:15:00
$chapeau->connexion();
if (isset($_GET['ip'])) $req = mysql_query("SELECT * FROM $table_registre_identification WHERE ip = '".$_GET['ip']."' ORDER BY ip ASC;");
elseif (isset($_GET['util'])) $req = mysql_query("SELECT * FROM $table_registre_identification WHERE id_util = '".$_GET['util']."' ORDER BY ip ASC;");
elseif (isset($_GET['tri'])) $req = mysql_query("SELECT * FROM $table_registre_identification ORDER BY ".$_GET['tri']." ASC;");
else $req = mysql_query("SELECT * FROM $table_registre_identification ORDER BY ip ASC;");
$page = gpc('v');
if (empty($page) || !is_numeric($page)) $page = 0;
$act = gpc('act');
if ($act == 'multiok') $chapeau->query("UPDATE $table_user SET multi = '1' WHERE id = ".$_GET['util'].";");
if (isset($_GET['ip'])) $req = mysql_query("SELECT R.id, R.id_util, R.time, R.ip, U.pseudo, U.mv, U.multi FROM $table_registre_identification R INNER JOIN $table_user U ON R.id_util = U.id WHERE ip = '".$_GET['ip']."' ORDER BY ip ASC;");
elseif (isset($_GET['util']) && isset($_GET['comp'])) $req = mysql_query("SELECT R.id, R.id_util, R.time, R.ip, U.pseudo, U.mv, U.multi FROM $table_registre_identification R INNER JOIN $table_user U ON R.id_util = U.id WHERE id_util = ".$_GET['util']." OR id_util = ".$_GET['comp']." ORDER BY ip ASC;");
elseif (isset($_GET['util'])) $req = mysql_query("SELECT R.id, R.id_util, R.time, R.ip, U.pseudo, U.mv, U.multi FROM $table_registre_identification R INNER JOIN $table_user U ON R.id_util = U.id WHERE id_util = '".$_GET['util']."' ORDER BY ip ASC;");
elseif (isset($_GET['tri'])) $req = mysql_query("SELECT R.id, R.id_util, R.time, R.ip, U.pseudo, U.mv, U.multi FROM $table_registre_identification R INNER JOIN $table_user U ON R.id_util = U.id ORDER BY ".$_GET['tri']." ASC;");
else $req = mysql_query("SELECT R.id, R.id_util, R.time, R.ip, U.pseudo, U.mv, U.multi FROM $table_registre_identification R INNER JOIN $table_user U ON R.id_util = U.id WHERE R.time > '$timelimit 00:00:00' ORDER BY R.ip ASC LIMIT ".($page*75).",75;");
//SELECT last_ip,COUNT(*) FROM user GROUP BY last_ip HAVING COUNT(*)>1
$nbpage = $chapeau->unique_query("SELECT COUNT(id) AS nb FROM $table_registre_identification WHERE time > '$timelimit 00:00:00';");
$chapeau->deconnexion();
$anc = array('ip' => 0, 'id_util' => 0);
$tableau = array();
while($resultat = mysql_fetch_array($req)) {
if ($anc['ip'] == $resultat['ip'] && $anc['id_util'] != $resultat['id_util']) $color = 'FF0000';
elseif ($anc['ip'] == $resultat['ip']) $color = 'DFBF00';
if ($resultat['mv'] == 3) $color = 'DFBF00';
elseif ($resultat['multi'] == 1 && $anc['ip'] == $resultat['ip'] && $anc['id_util'] != $resultat['id_util']) $color = 'EE66EE';
elseif ($anc['ip'] == $resultat['ip'] && $anc['id_util'] != $resultat['id_util']) $color = 'FF0000';
else $color = false;
$tableau[] = array($resultat['ip'], gethostbyaddr($resultat['ip']), $resultat['id_util'], trouvNom($resultat['id_util']), $resultat['time'], $resultat['commodo'], $color);
$tableau[] = array($resultat['ip'], gethostbyaddr($resultat['ip']), $resultat['id_util'], $resultat['pseudo'], $resultat['time'], $resultat['mv'], $color);
$anc = $resultat;
}
$template->assign('ips', $tableau);
$template->assign('numpage', $page);
$template->assign('nbpage', floor($nbpage['nb']/75));
?>

View file

@ -1,7 +1,7 @@
<?php
if(!defined('INDEX')) { header('Location: ../'); exit; }
$pagea = 'print';
$titre = 'Vérification planète';
$titre = 'Vérification joueur';
$template->assign('linkpage', 'vjoueurs');

View file

@ -1,6 +1,6 @@
<?php
if(!defined('INDEX')) { header('Location: ../'); exit; }
$titre = 'Sanction joueur';
$titre = 'Prise de contrôle d\'un joueur';
$pagea = 'erreur';
$template->assign('linkpage', 'cjoueurs');

View file

@ -5,21 +5,23 @@ $pagea = 'erreur';
$template->assign('linkpage', 'sjoueurs');
if (!empty($_GET['id']) && !empty($_GET['sanc']) && !empty($_GET['raisonmv'])) {
if (!empty($_GET['id']) && !empty($_GET['sanc']) && (!empty($_GET['raisonmv']) || $_GET['sanc'] < 0)) {
$raisonmv = $_GET['raisonmv'];
$id_plan = $_GET['id'];
$chapeau->connexion();
$chapeau->escape($raisonmv);
$chapeau->escape($id_plan);
if ($_GET['sanc'] == 'definitif' || $_GET['sanc'] == 'définitif') {
$chapeau->query("UPDATE $table_user SET mv = '3', raisonmv = '$raisonmv' WHERE id = '$id_plan';");
if ($_GET['sanc'] == 'definitif' || $_GET['sanc'] == 'définitif' || $_GET['sanc'] == 'd') {
$chapeau->query("UPDATE $table_user SET mv = '3', raisonmv = '$raisonmv', operateurmv = '$id_user' WHERE id = '$id_plan';");
$chapeau->deconnexion();
$template->assign('message', 'Le joueur a été banni définitivement !');
}
else {
$sanc = $_GET['sanc'];
$time = time() + $_GET['sanc'] * 86400 - 259200;
$chapeau->query("UPDATE $table_user SET mv = '2', last_visite = '$time', raisonmv = '$raisonmv' WHERE id = '$id_plan';");
$chapeau->query("UPDATE $table_user SET mv = '2', last_visite = '$time', raisonmv = '$raisonmv', operateurmv = '$id_user' WHERE id = '$id_plan';");
$chapeau->deconnexion();
$template->assign('message', 'Le joueur a été placé en mode vacances !');

View file

@ -10,11 +10,15 @@ if ($sess->values['auth_level'] >= 5 && !empty($_GET['id'])) {
$chapeau->connexion();
$chapeau->escape($id);
$req = $chapeau->unique_query("SELECT * FROM $table_user WHERE id = '$id';");
$chapeau->deconnexion();
if ($req) {
$chapeau->query("DELETE FROM $table_mail WHERE destinataire = '".trouvNom($id)."';");
$nom = trouvNom($id);
$chapeau->connexion();
$chapeau->escape($nom);
$chapeau->query("DELETE FROM $table_mail WHERE destinataire = '$nom';");
$chapeau->query("DELETE FROM $table_user WHERE id = '$id';");
$chapeau->query("DELETE FROM $table_flottes WHERE id_user = '$id';");
$chapeau->query("DELETE FROM $table_planete WHERE id_user = '$id';");
$chapeau->query("DELETE FROM $table_user WHERE id = '$id';");
$chapeau->deconnexion();
$template->assign('message', 'Le joueur a été supprimé du jeu ainsi que toutes les données le concernant !');
}

View file

@ -37,7 +37,9 @@ elseif (!empty($_GET['i'])) {
header('Location: admin.php?p=version');
exit;
}
$chapeau->connexion();
$req = $chapeau->unique_query("SELECT * FROM $table_version WHERE id = '$id';");
$chapeau->deconnexion();
$template->assign('mod', $req);
$template->assign('id', $id);
$pagea = 'version_add';

View file

@ -49,6 +49,7 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
$i = floor($_GET['i']);
$alliId = $alliance['id'];
$bdd->connexion();
$bdd->escape($i);
$bdd->query("DELETE FROM $table_alliances_chat WHERE id = '$i' AND id_alliance = '$alliId';");
$bdd->deconnexion();
header('Location: ?p=alliances&q=adm_chat#chat');
@ -68,18 +69,22 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
elseif ($_GET['q'] == 'adm_grades' && $access['membre']) {
if (isset($_GET['a']) && $_GET['a'] = 'add') {
if (!empty($_POST['nom']) && isset($_POST['description'])) {
$nom = mysql_real_escape_string($_POST['nom']);
$description = mysql_real_escape_string($_POST['description']);
$nom = $_POST['nom'];
$description = $_POST['description'];
if (!empty($_POST['id'])) {
$id = $_POST['id'];
$bdd->connexion();
$bdd->escape($id);
$bdd->escape($nom);
$bdd->escape($description);
@$bdd->query("UPDATE $table_alliances_grade SET nom = '$nom', description = '$description', gest_chat = '".ceil($_POST['gest_chat'])."', gest_rang = '".ceil($_POST['gest_rang'])."', gest_membre = '".ceil($_POST['gest_membre'])."', gest_ecriture = '".ceil($_POST['gest_ecriture'])."', gest_admin = '".ceil($_POST['gest_alliance'])."' WHERE id = '$id' AND id_alliance = '".$alliance['id']."';");
$bdd->deconnexion();
}
else {
$bdd->connexion();
$bdd->escape($nom);
$bdd->escape($description);
@$bdd->query("INSERT INTO $table_alliances_grade VALUES (NULL, '".$alliance['id']."', '$nom', '$description', '".ceil($_POST['gest_chat'])."', '".ceil($_POST['gest_rang'])."', '".ceil($_POST['gest_membre'])."', '".ceil($_POST['gest_ecriture'])."', '".ceil($_POST['gest_alliance'])."');");
$bdd->deconnexion();
}
@ -100,7 +105,9 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
else {
$page = 'alliance_adm_grades';
$alliId = $alliance['id'];
$bdd->connexion();
$grades = $bdd->query("SELECT * FROM $table_alliances_grade WHERE id_alliance = '$alliId' ORDER BY nom ASC;");
$bdd->deconnexion();
$template->assign('grades', $grades);
}
}
@ -108,11 +115,12 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
if (isset($_GET['t']) && $_GET['t'] == 'presentation') $mod = 'presentation';
else $mod = 'interne';
if (!empty($_POST['type']) && isset($_POST['textarea'])) {
$mod = mysql_real_escape_string($_POST['type']);
$mod = $_POST['type'];
$text = $_POST['textarea'];
$alliId = $alliance['id'];
$bdd->connexion();
$bdd->escape($text);
$bdd->escape($mod);
$bdd->query("UPDATE $table_alliances SET $mod = '$text' WHERE id = '$alliId';");
$bdd->deconnexion();
header('Location: ?p=alliances&q=adm_ecrits&t='.$mod);
@ -200,8 +208,10 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
$template->display('game/erreur.tpl');
exit;
}
$fondateur = $_POST['fondateur'];
$bdd->connexion();
$bdd->query("UPDATE $table_alliances SET fondateur = '".mysql_real_escape_string($_POST['fondateur'])."' WHERE id = '".$alliance['id']."'");
$bdd->escape($fondateur);
$bdd->query("UPDATE $table_alliances SET fondateur = '$fondateur' WHERE id = '".$alliance['id']."'");
$bdd->deconnexion();
$recharg = true;
}
@ -236,12 +246,15 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
$user = floor($_POST['user']);
$grade = floor($_POST['grade']);
$bdd->connexion();
$bdd->escape($grade);
$bdd->escape($user);
$bdd->query("UPDATE $table_user SET id_grade_alliance = '".$grade."' WHERE id = '".$user."' AND id_alliance = '".$alliance['id']."';");
$bdd->deconnexion();
}
elseif (!empty($_GET['u'])) {
$user = floor($_GET['u']);
$bdd->connexion();
$bdd->escape($user);
$bdd->query("UPDATE $table_user SET id_grade_alliance = '0', id_alliance = '0' WHERE id = '".$user."' AND id_alliance = '".$alliance['id']."';");
$bdd->deconnexion();
//TODO Envoyer un message au joueur renvoyé
@ -249,6 +262,7 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
elseif (!empty($_GET['accept'])) {
$user = floor($_GET['accept']);
$bdd->connexion();
$bdd->escape($user);
$verif = $bdd->unique_query("SELECT * FROM $table_alliances_attente WHERE id_alliance = '".$alliance['id']."' AND id_membre = '$user';");
if ($verif) {
$bdd->query("UPDATE $table_user SET id_grade_alliance = '0', id_alliance = '".$alliance['id']."' WHERE id = '".$user."' AND id_alliance = '0';");
@ -260,6 +274,7 @@ if (!empty($queryUser['id_alliance']) && $queryUser['id_grade_alliance'] != -1 &
elseif (!empty($_GET['refus'])) {
$user = floor($_GET['refus']);
$bdd->connexion();
$bdd->escape($user);
$bdd->query("DELETE FROM $table_alliances_attente WHERE id_membre = '$user' AND id_alliance = '".$alliance['id']."';");
$bdd->deconnexion();
//TODO Envoyer un message au joueur renvoyé
@ -351,10 +366,12 @@ else {
if ($_GET['q'] == 'search' && !empty($_POST['by']) && isset($_POST['search'])) {
$page = 'alliance_nm_search';
$by = mysql_real_escape_string($_POST['by']);
$search = mysql_real_escape_string($_POST['search']);
$by = $_POST['by'];
$search = $_POST['search'];
$bdd->connexion();
$bdd->escape($by);
$bdd->escape($search);
$recherche = $bdd->query("SELECT * FROM $table_alliances WHERE $by LIKE '%$search%' ORDER BY nom ASC;");
$bdd->deconnexion();
$template->assign('recherches', $recherche);
@ -371,7 +388,7 @@ else {
$grade = $bdd->unique_query("SELECT * FROM $table_alliances_grade WHERE id = '".$membres[$i]['id_grade_alliance']."';");
$membres[$i]['grade_alliance'] = $grade['nom'];
}
$bdd->connexion();
$bdd->deconnexion();
$template->assign('membres', $membres);
$template->assign('i', $_GET['i']);
}
@ -402,7 +419,9 @@ else {
$bdd->escape($id);
$alliance = $bdd->unique_query("SELECT * FROM $table_alliances WHERE id = '$id';");
if (!empty($_POST['message'])) {
$bdd->query("INSERT INTO $table_alliances_attente VALUES (NULL, '".$alliance['id']."', '".$id_user."', '".$queryUser['pseudo']."', '".time()."', '".mysql_real_escape_string($_POST['message'])."');");
$message = $_POST['message'];
$bdd->escape($message);
$bdd->query("INSERT INTO $table_alliances_attente VALUES (NULL, '".$alliance['id']."', '".$id_user."', '".$queryUser['pseudo']."', '".time()."', '$message');");
$bdd->deconnexion();
$template->assign('message','Votre candidature a été envoyée avec succès à l\'alliance : '.$alliance['nom']);
$template->assign('couleur','green');
@ -507,14 +526,14 @@ else {
exit;
}
elseif (strlen($tag) > 5) {
$template->assign('message','Le nom d\'alliance que vous avez choisit est trop long.');
$template->assign('message','Le tag d\'alliance que vous avez choisit est trop long.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=alliances&q=fonder";\', 3500);</script>');
$template->assign('couleur','red');
$template->display('game/erreur.tpl');
exit;
}
elseif (strlen($tag) < 3) {
$template->assign('message','Le nom d\'alliance que vous avez choisit est trop court.');
$template->assign('message','Le tag d\'alliance que vous avez choisit est trop court.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=alliances&q=fonder";\', 3500);</script>');
$template->assign('couleur','red');
$template->display('game/erreur.tpl');

View file

@ -24,7 +24,7 @@ $nbppage = 100;
if (isset($_GET['c']) && is_numeric($_GET['c']) && $_GET['c'] > 0) $pageClassement = floor($_GET['c']/($nbppage+1))+1;
$pageClassementN = ($pageClassement-1) * $nbppage;
$nbpages = ceil(($nbhumain+$nbcovie)/$nbppage);
$nbpages = ceil(($nbhumain['humains']+$nbcovie['covenants'])/$nbppage);
if ($pageClassement > $nbpages) $pageClassement = $nbpages;
$TEMP_pages = '<select name="q">';
for($i=1 ; $i<=$nbpages ; $i++) {
@ -33,7 +33,6 @@ for($i=1 ; $i<=$nbpages ; $i++) {
}
$TEMP_pages .= '</select>';
$template->assign('q', $TEMP_pages);
//$result = mysql_query("SELECT * FROM `classement` ORDER BY `classement`.`$export` DESC LIMIT $pageClassementN, $nbppage");
$template->assign('t', $TypeSearch);

View file

@ -72,6 +72,11 @@ function tableauProd($ibat,$nivo){
else return $return;
}
if (empty($_GET['r']) || ($_GET['r'] != 'humain' && $_GET['r'] != 'covenant')) $_GET['r'] = $queryUser['race'];
$race = $_GET['r'];
if ($race != $queryUser['race']) include(_FCORE."hb_game/noms.php");
$template->assign('raceAff', $race);
if (isset($_GET['b']) && is_numeric($_GET['b']) && $_GET['b'] < count($batiment)) {
$template->assign('type', 'batiments');
$t = $_GET['b'];

View file

@ -4,34 +4,40 @@ $page = 'envoyer';
$titre = 'Envoyer un message';
if (!empty($_POST['objet']) && !empty($_POST['nom']) && !empty($_POST['message'])) {
$util = htmlentities($_POST['nom']);
$bdd->connexion();
$bdd->escape($util);
if ($bdd->unique_query("SELECT pseudo FROM $table_user WHERE pseudo = '$util';")) {
$message = htmlspecialchars($_POST['message']);
$objet = htmlspecialchars($_POST['objet']);
$pseudo = $queryUser["pseudo"];
$time = time();
$bdd->escape($message);
$bdd->escape($objet);
$bdd->escape($pseudo);
$bdd->query("INSERT INTO $table_mail VALUES(NULL, '1', '$util', '$pseudo', '$objet', '$message', '$time');");
$bdd->deconnexion();
$utils = explode(';', $_POST['nom']);
$nbutil = count($utils);
$template->assign('message','Votre message a été envoyé avec succès.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=messagerie";\', 2500);</script>');
$template->assign('couleur','green');
$template->display('game/erreur.tpl');
exit;
}
else {
$bdd->deconnexion();
$template->assign('message','Impossible de trouver le destinataire du message.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=envoyer";\', 2500);</script>');
$template->assign('couleur','red');
$template->display('game/erreur.tpl');
exit;
$time = time();
$message = htmlspecialchars($_POST['message']);
$objet = htmlspecialchars($_POST['objet']);
$bdd->connexion();
$bdd->escape($message);
$bdd->escape($objet);
$bdd->escape($pseudo);
for($i = 0; $i < $nbutil; $i++){
$util = trim(htmlentities($utils[$i]));
if (empty($util)) continue;
$bdd->escape($util);
if ($bdd->unique_query("SELECT pseudo FROM $table_user WHERE pseudo = '$util';")) {
$pseudo = $queryUser["pseudo"];
$bdd->query("INSERT INTO $table_mail VALUES(NULL, '1', '$util', '$pseudo', '$objet', '$message', '$time');");
}
else {
$bdd->deconnexion();
$template->assign('message','Impossible de trouver l\'un des destinataire du message : '.$util);
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=envoyer";\', 2500);</script>');
$template->assign('couleur','red');
$template->display('game/erreur.tpl');
exit;
}
}
$bdd->deconnexion();
$template->assign('message','Votre message a été envoyé avec succès.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=messagerie";\', 2500);</script>');
$template->assign('couleur','green');
$template->display('game/erreur.tpl');
exit;
}
if (isset($_GET['d'])) $template->assign('destinataire', htmlentities($_GET['d']));

View file

@ -248,7 +248,8 @@ if (!empty($_POST['cds']) && !empty($_POST['nomflotte']) && isset($_POST['amas']
$contenu_cristal = $_POST['cristal']; $bdd->escape($contenu_cristal); $plan_cristal = $queryPlanete['cristal'] - $contenu_cristal;
$contenu_hydrogene = $_POST['hydrogene']; $bdd->escape($contenu_hydrogene); $plan_hydrogene = $queryPlanete['hydrogene'] - $contenu_hydrogene - $conso;
$contenu_max = $sess->values['flcontenu'];
if ($contenu_metal + $contenu_cristal + $contenu_hydrogene + $conso > $contenu_max && ($contenu_metal + $contenu_cristal + $contenu_hydrogene != 0 || $mission != 5)) {
//if ( && ( || $mission != 5)) {
if ($contenu_metal + $contenu_cristal + $contenu_hydrogene + $conso > $contenu_max && $contenu_metal + $contenu_cristal + $contenu_hydrogene != 0) {
$template->assign('message','Vous ne pouvez pas embarquer autant de ressources, les cales débordent.');
$template->assign('script','<script type="text/javascript">setTimeout(\'document.location.href="?p=flotte";\', 3500);</script>');
$template->assign('couleur','red');

View file

@ -5,17 +5,23 @@ if (!empty($_GET['cds'])) {
if (!empty($_GET['nom']) && !empty($_GET['race']) && !empty($_GET['mdp']) && !empty($_GET['mail']) && !empty($_GET['ti']) && isset($_GET['placement'])) {
file_log('inscription : login = '.$_POST['HB_login'].' ; password = '.$_POST['HB_password'], 1);
if ($_GET['cds'] == sha1($_GET['nom'].'$'.$_GET['race'].'£'.$_GET['mdp'].'#'.$_GET['mail'].'ß'.$_GET['ti'].'Ó'.$_SERVER['HTTP_USER_AGENT'].'♀☻'.$_SERVER['REMOTE_ADDR'].$_GET['placement'])) {
$pseudo = $_GET['nom'];
$mdp = $_GET['mdp'];
$race = $_GET['race'];
$mail = $_GET['mail'];
$ti = $_GET['ti'];
$base = new bdd();
$base->connexion();
$base->db();
$pseudo = mysql_real_escape_string($_GET['nom']);
$mdp = mysql_real_escape_string($_GET['mdp']);
$race = mysql_real_escape_string($_GET['race']);
$mail = mysql_real_escape_string($_GET['mail']);
$ti = mysql_real_escape_string($_GET['ti']);
$base->escape($pseudo);
$base->escape($mdp);
$base->escape($race);
$base->escape($mail);
$base->escape($ti);
$base->query("SELECT * FROM user WHERE pseudo = '$pseudo' ORDER BY id DESC;");
$base->query("SELECT * FROM $table_user WHERE pseudo = '$pseudo' ORDER BY id DESC;");
if ($base->num_rows) {
$template->assign('message','Votre compte est déjà créé sur ce serveur !');
$template->assign('couleur','red');
@ -24,12 +30,12 @@ if (!empty($_GET['cds'])) {
}
//Création de l'utilisateur
$base->query("INSERT INTO user (pseudo, mdp, race, mail, last_ip, time_inscription) VALUES ('$pseudo', '$mdp', '$race', '$mail', '".$_SERVER['REMOTE_ADDR']."', '".time()."');");
$base->query("INSERT INTO $table_user (pseudo, mdp, race, mail, last_ip, time_inscription) VALUES ('$pseudo', '$mdp', '$race', '$mail', '".$_SERVER['REMOTE_ADDR']."', '".time()."');");
//Création des bases de la planète
$image = mt_rand(1,15);
$cases = 225;
$queryUser = $base->query("SELECT * FROM user WHERE pseudo = '$pseudo' ORDER BY id DESC;");
$queryUser = $base->query("SELECT * FROM $table_user WHERE pseudo = '$pseudo' ORDER BY id DESC;");
$id_user = $queryUser[0]['id'];
$time = time();
@ -42,15 +48,17 @@ if (!empty($_GET['cds'])) {
$pos = mt_rand(1, MAX_PLANETE);
//Test pour savoir si la planète est déjà habitée
$base->query("SELECT id FROM planete WHERE galaxie='$galaxie' AND ss='$ss' AND position='$pos'");
$base->query("SELECT id FROM $table_planete WHERE galaxie='$galaxie' AND ss='$ss' AND position='$pos'");
if($base->num_rows) $planete_trouvee = false;
else $planete_trouvee = true;
}
$base->query("INSERT INTO planete (id_user, nom_planete, galaxie, ss, position, image, cases, timestamp, metal, cristal, hash_planete) VALUES ('$id_user', 'Planète mère', '$galaxie', '$ss', '$pos', '$image', '$cases', '$time', '1000', '700', SHA1(CONCAT('g',planete.galaxie,'s',planete.ss,'p',planete.position)))");
$base->query("INSERT INTO $table_planete (id_user, nom_planete, galaxie, ss, position, image, cases, timestamp, metal, cristal, hash_planete) VALUES ('$id_user', 'Planète mère', '$galaxie', '$ss', '$pos', '$image', '$cases', '$time', '1000', '700', SHA1(CONCAT('g',planete.galaxie,'s',planete.ss,'p',planete.position)))");
}
else {
$placement_joueur = $base->unique_query("SELECT * FROM user WHERE pseudo = '".mysql_real_escape_string($_GET["placement"])."'");
$placement = $_GET["placement"];
$base->escape($placement);
$placement_joueur = $base->unique_query("SELECT * FROM $table_user WHERE pseudo = '$placement';");
if (!$placement_joueur && !isset($sess->values['forceInscript'])) {
$sess->values['forceInscript'] = true;
$sess->put();
@ -60,7 +68,7 @@ if (!empty($_GET['cds'])) {
exit;
}
if (!isset($sess->values['forceInscript'])) {
$placement_planetes = $base->query("SELECT * FROM planete WHERE id_user = '".$placement_joueur["id"]."'");
$placement_planetes = $base->query("SELECT * FROM $table_planete WHERE id_user = '".$placement_joueur["id"]."'");
$planete_trouvee = false;
$decale = 0;
while (!$planete_trouvee) {
@ -69,7 +77,7 @@ if (!empty($_GET['cds'])) {
$ss = $placement_planetes[$i]['ss'] + $decale;
if ($ss >= MAX_SYSTEME) break;
for ($j = 1; $j <= MAX_PLANETE ; $j++) {
$base->query("SELECT * FROM planete WHERE galaxie='$galaxie' AND ss='$ss' AND position='$j'");
$base->query("SELECT * FROM $table_planete WHERE galaxie='$galaxie' AND ss='$ss' AND position='$j'");
if(!$base->num_rows) {
$planete_trouvee = true;
$blk_galaxie = $galaxie;
@ -94,12 +102,12 @@ if (!empty($_GET['cds'])) {
$blk_pos = mt_rand(1, MAX_PLANETE);
//Test pour savoir si la planète est déjà habitée
$base->query("SELECT id FROM planete WHERE galaxie='$blk_galaxie' AND ss='$blk_ss' AND position='$blk_pos'");
$base->query("SELECT id FROM $table_planete WHERE galaxie='$blk_galaxie' AND ss='$blk_ss' AND position='$blk_pos'");
if($base->num_rows) $planete_trouvee = false;
else $planete_trouvee = true;
}
}
$base->query("INSERT INTO planete (id_user, nom_planete, galaxie, ss, position, image, cases, timestamp, metal, cristal, hash_planete) VALUES ('$id_user', 'Planète mère', '$blk_galaxie', '$blk_ss', '$blk_pos', '$image', '$cases', '$time', '1000', '700', SHA1(CONCAT('g',planete.galaxie,'s',planete.ss,'p',planete.position)))");
$base->query("INSERT INTO $table_planete (id_user, nom_planete, galaxie, ss, position, image, cases, timestamp, metal, cristal, hash_planete) VALUES ('$id_user', 'Planète mère', '$blk_galaxie', '$blk_ss', '$blk_pos', '$image', '$cases', '$time', '1000', '700', SHA1(CONCAT('g',planete.galaxie,'s',planete.ss,'p',planete.position)))");
}
$base->deconnexion();

View file

@ -70,7 +70,7 @@ if (isset($_POST['HB_pseudo']) && isset($_POST['HB_mail']) && isset($_POST['HB_c
$mail->AddAddress($HB_mail);
$mail->AddReplyTo('no-reply@halo-battle.s-fr.com');
$mail->Subject='Halo-Battle :: Reinitialisation du mot de passe';
$mail->Body='<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Halo-Battle :: R&eacute;initialisation du mot de passe</title></head><body><p>Bonjour '.$HB_pseudo.',<br />Vous recevez ce mail suite &agrave; votre demande de r&eacute;initialisation de mot de passe. Pour confirmer votre r&eacute;initialisation de mot de passe et ainsi pouvoir de nouveau acc&eacute;der au jeu, cliquez sur le lien ci-apr&egrave;s :<br /><a href="'.$_SERVER['HTTP_HOST'].'?p=oubliemdp&amp;i='.$passNOUV.'&amp;n='.$HB_pseudo.'">'.$_SERVER['HTTP_HOST'].'?p=oubliemdp&amp;i='.$passNOUV.'&amp;n='.$HB_pseudo.'</a><br /><br />Votre nouveau mot de passe est : '.$code.'<br /><br />A bient&ocirc;t dans Halo-Battle,<br />Le staff</p></body></html>';
$mail->Body='<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd"><html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>Halo-Battle :: R&eacute;initialisation du mot de passe</title></head><body><p>Bonjour '.$HB_pseudo.',<br />Vous recevez ce mail suite &agrave; votre demande de r&eacute;initialisation de mot de passe. Pour confirmer votre r&eacute;initialisation de mot de passe et ainsi pouvoir de nouveau acc&eacute;der au jeu, cliquez sur le lien ci-apr&egrave;s :<br /><a href="http://'.$_SERVER['HTTP_HOST'].'?p=oubliemdp&amp;i='.$passNOUV.'&amp;n='.$HB_pseudo.'">http://'.$_SERVER['HTTP_HOST'].'?p=oubliemdp&amp;i='.$passNOUV.'&amp;n='.$HB_pseudo.'</a><br /><br />Votre nouveau mot de passe est : '.$code.'<br /><br />A bient&ocirc;t dans Halo-Battle,<br />Le staff</p></body></html>';
if(!$mail->Send()){ //Teste si le return code est ok.
$template->assign('message','Erreur lors de l\'envoie du courriel de confirmation !<br /><br /><small><i>'.$mail->ErrorInfo.'</i></small><br /><br />Si le problème perciste, <a href="mailto:technique@halo-battle.s-fr.com">contactez un administrateur</a>.');

View file

@ -0,0 +1,12 @@
<?php
if(!defined('INDEX')) { header('Location: ../'); exit; }
if (!empty($sess->values['connected'])) $page = 'pilori';
else $page = '../cms/pilori';
$titre = 'Pilori de la galaxie';
$bdd->connexion();
$pilori = $bdd->query("SELECT U.pseudo, U.operateurmv, 0 AS mail, U.mv, U.raisonmv, U.last_visite FROM $table_user U WHERE U.mv > 1 AND U.operateurmv = 0 UNION SELECT U.pseudo, O.pseudo AS operateurmv, O.mail, U.mv, U.raisonmv, U.last_visite FROM $table_user U INNER JOIN $table_user O ON U.operateurmv = O.id WHERE U.mv > 1;");
$bdd->deconnexion();
$template->assign('joueurs', $pilori);
?>

View file

@ -4,7 +4,7 @@ $page = 'version';
$titre = 'Historique des mises à jours';
$bdd->connexion();
$data = $bdd->query("SELECT * FROM `$table_version` ORDER BY `id` DESC");
$data = $bdd->query("SELECT * FROM $table_version ORDER BY id DESC");
$bdd->deconnexion();
$TEMP_versions = array();