9 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
10 $DB = @mysql_connect($DB_host,$DB_user, $DB_password);
13 mysql_select_db($DB_database) or die('Could not select database');
28 function DB_quote_smart($value)
31 if (get_magic_quotes_gpc()) {
32 $value = stripslashes($value);
34 /* Quote if not a number or a numeric string */
35 if (!is_numeric($value)) {
36 $value = "'" . mysql_real_escape_string($value) . "'";
44 $result = mysql_query("SELECT * FROM User");
45 while($r = mysql_fetch_array($result,MYSQL_NUM))
54 function DB_get_email_by_name($name)
56 $result = mysql_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($name)."");
57 $r = mysql_fetch_array($result,MYSQL_NUM);
64 function DB_get_passwd_by_name($name)
66 $result = mysql_query("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
67 $r = mysql_fetch_array($result,MYSQL_NUM);
75 function DB_get_email_by_userid($id)
77 $result = mysql_query("SELECT email FROM User WHERE id=".DB_quote_smart($id)."");
78 $r = mysql_fetch_array($result,MYSQL_NUM);
86 function DB_get_email_by_pos_and_gameid($pos,$gameid)
88 $result = mysql_query("SELECT email FROM User ".
89 "LEFT JOIN Hand ON User.id=Hand.user_id ".
90 "LEFT JOIN Game ON Game.id=Hand.game_id ".
91 "WHERE Game.id=".DB_quote_smart($gameid)." ".
92 "AND Hand.position=".DB_quote_smart($pos)."");
93 $r = mysql_fetch_array($result,MYSQL_NUM);
101 function DB_get_email_by_hash($hash)
103 $result = mysql_query("SELECT User.email FROM User LEFT JOIN Hand ON Hand.user_id=User.id WHERE Hand.hash=".DB_quote_smart($hash)."");
104 $r = mysql_fetch_array($result,MYSQL_NUM);
112 function DB_get_userid_by_name($name)
114 $result = mysql_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($name));
115 $r = mysql_fetch_array($result,MYSQL_NUM);
122 function DB_get_userid_by_passwd($passwd)
124 $result = mysql_query("SELECT id FROM User WHERE password=".DB_quote_smart($passwd));
125 $r = mysql_fetch_array($result,MYSQL_NUM);
132 function DB_get_userid_by_email($email)
134 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email));
135 $r = mysql_fetch_array($result,MYSQL_NUM);
142 function DB_get_userid_by_email_and_password($email,$password)
144 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email)." AND password=".DB_quote_smart($password));
145 $r = mysql_fetch_array($result,MYSQL_NUM);
147 /* test if a recovery password has been set */
150 $result = mysql_query("SELECT User.id FROM User".
151 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
152 " WHERE email=".DB_quote_smart($email).
153 " AND Recovery.password=".DB_quote_smart($password).
154 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
155 $r = mysql_fetch_array($result,MYSQL_NUM);
164 function DB_check_recovery_passwords($password,$email)
166 $result = mysql_query("SELECT User.id FROM User".
167 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
168 " WHERE email=".DB_quote_smart($email).
169 " AND Recovery.password=".DB_quote_smart($password).
170 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
171 $r = mysql_fetch_array($result,MYSQL_NUM);
180 function DB_get_handid_by_hash($hash)
182 $result = mysql_query("SELECT id FROM Hand WHERE hash=".DB_quote_smart($hash));
183 $r = mysql_fetch_array($result,MYSQL_NUM);
191 function DB_get_handid_by_gameid_and_position($gameid,$pos)
193 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
194 DB_quote_smart($gameid)." AND position=".
195 DB_quote_smart($pos));
196 $r = mysql_fetch_array($result,MYSQL_NUM);
203 function DB_get_userid_by_gameid_and_position($gameid,$pos)
205 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
206 DB_quote_smart($gameid)." AND position=".
207 DB_quote_smart($pos));
208 $r = mysql_fetch_array($result,MYSQL_NUM);
217 function DB_get_handid_by_gameid_and_userid($gameid,$userid)
219 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
220 DB_quote_smart($gameid)." AND user_id=".
221 DB_quote_smart($userid));
222 $r = mysql_fetch_array($result,MYSQL_NUM);
230 function DB_get_userid_by_hash($hash)
232 $result = mysql_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($hash));
233 $r = mysql_fetch_array($result,MYSQL_NUM);
241 function DB_get_pos_by_hash($hash)
243 $result = mysql_query("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
244 $r = mysql_fetch_array($result,MYSQL_NUM);
252 function DB_get_name_by_hash($hash)
254 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($hash));
255 $r = mysql_fetch_array($result,MYSQL_NUM);
263 function DB_get_name_by_email($email)
265 $result = mysql_query("SELECT fullname FROM User WHERE email=".DB_quote_smart($email));
266 $r = mysql_fetch_array($result,MYSQL_NUM);
274 function DB_get_name_by_userid($id)
276 $result = mysql_query("SELECT fullname FROM User WHERE id=".DB_quote_smart($id));
277 $r = mysql_fetch_array($result,MYSQL_NUM);
285 function DB_get_status_by_hash($hash)
287 $result = mysql_query("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
288 $r = mysql_fetch_array($result,MYSQL_NUM);
296 function DB_set_game_status_by_gameid($id,$status)
298 mysql_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
302 function DB_set_sickness_by_gameid($id,$status)
304 mysql_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
307 function DB_get_sickness_by_gameid($id)
309 $result = mysql_query("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
310 $r = mysql_fetch_array($result,MYSQL_NUM);
318 function DB_get_game_status_by_gameid($id)
320 $result = mysql_query("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
321 $r = mysql_fetch_array($result,MYSQL_NUM);
329 function DB_set_hand_status_by_hash($hash,$status)
331 mysql_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
335 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
337 $result = mysql_query("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
338 " AND game_id=".DB_quote_smart($gid));
339 $r = mysql_fetch_array($result,MYSQL_NUM);
347 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
349 $result = mysql_query("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
350 " AND game_id=".DB_quote_smart($gid));
351 $r = mysql_fetch_array($result,MYSQL_NUM);
359 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
361 $result = mysql_query("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
362 " AND game_id=".DB_quote_smart($gid));
363 $r = mysql_fetch_array($result,MYSQL_NUM);
371 function DB_get_gameid_by_hash($hash)
373 $result = mysql_query("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
374 $r = mysql_fetch_array($result,MYSQL_NUM);
382 function DB_cancel_game($hash)
384 $gameid = DB_get_gameid_by_hash($hash);
389 /* get the IDs of all players */
390 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".DB_quote_smart($gameid));
391 while($r = mysql_fetch_array($result,MYSQL_NUM))
395 $tmp = mysql_query("SELECT id FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
396 $tmp = mysql_fetch_array($tmp,MYSQL_NUM);
397 mysql_query("DELETE FROM Play WHERE hand_card_id=".DB_quote_smart($tmp[0]));
400 mysql_query("DELETE FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
401 mysql_query("DELETE FROM Score WHERE hand_id=".DB_quote_smart($id));
402 mysql_query("DELETE FROM Hand WHERE id=".DB_quote_smart($id));
406 mysql_query("DELETE FROM User_Game_Prefs WHERE game_id=".DB_quote_smart($gameid));
407 mysql_query("DELETE FROM Trick WHERE game_id=".DB_quote_smart($gameid));
408 mysql_query("DELETE FROM Game WHERE id=".DB_quote_smart($gameid));
413 function DB_get_hand($me)
417 $handid = DB_get_handid_by_hash($me);
419 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
420 while($r = mysql_fetch_array($result,MYSQL_NUM))
426 function DB_get_all_hand($me)
430 $handid = DB_get_handid_by_hash($me);
432 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
433 while($r = mysql_fetch_array($result,MYSQL_NUM))
439 function DB_get_cards_by_trick($id)
444 $result = mysql_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
445 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
447 DB_quote_smart($id)." ORDER BY sequence ASC");
448 while($r = mysql_fetch_array($result,MYSQL_NUM))
450 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
458 function DB_set_solo_by_hash($hash,$solo)
460 mysql_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
464 function DB_set_solo_by_gameid($id,$solo)
466 mysql_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
470 function DB_set_sickness_by_hash($hash,$sickness)
472 mysql_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
476 function DB_get_current_trickid($gameid)
482 $result = mysql_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
483 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
484 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
485 "GROUP BY Trick.id");
486 while( $r = mysql_fetch_array($result,MYSQL_NUM) )
493 if(!$sequence || $sequence==4)
495 mysql_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).",NULL)");
496 $trickid = mysql_insert_id();
505 return array($trickid,$sequence,$number);
508 function DB_get_max_trickid($gameid)
510 $result = mysql_query("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
511 $r = mysql_fetch_array($result,MYSQL_NUM) ;
513 return ($r?$r[0]:NULL);
516 function DB_play_card($trickid,$handcardid,$sequence)
518 mysql_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
519 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
521 $playid = mysql_insert_id();
525 function DB_get_all_names_by_gameid($id)
529 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
530 DB_quote_smart($id)." ORDER BY position ASC");
531 while($r = mysql_fetch_array($result,MYSQL_NUM))
537 function DB_get_all_userid_by_gameid($id)
541 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
542 DB_quote_smart($id)." ORDER BY position ");
543 while($r = mysql_fetch_array($result,MYSQL_NUM))
549 function DB_get_hash_from_game_and_pos($id,$pos)
551 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
552 $r = mysql_fetch_array($result,MYSQL_NUM);
560 function DB_get_hash_from_gameid_and_userid($id,$user)
562 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
563 $r = mysql_fetch_array($result,MYSQL_NUM);
571 function DB_get_all_names()
575 $result = mysql_query("SELECT fullname FROM User");
576 while($r = mysql_fetch_array($result,MYSQL_NUM))
582 function DB_update_game_timestamp($gameid)
584 mysql_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
589 function DB_update_user_timestamp($userid)
591 mysql_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
595 function DB_get_user_timestamp($userid)
597 $result = mysql_query("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
598 $r = mysql_fetch_array($result,MYSQL_NUM);
605 function DB_get_user_timezone($userid)
607 $result = mysql_query("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
608 $r = mysql_fetch_array($result,MYSQL_NUM);
616 function DB_insert_comment($comment,$playid,$userid)
618 mysql_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid, ".DB_quote_smart($comment).")");
623 function DB_get_gametype_by_gameid($id)
625 $result = mysql_query("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
626 $r = mysql_fetch_array($result,MYSQL_NUM);
634 function DB_set_gametype_by_gameid($id,$p)
636 mysql_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
640 function DB_get_solo_by_gameid($id)
642 $result = mysql_query("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
643 $r = mysql_fetch_array($result,MYSQL_NUM);
652 function DB_get_startplayer_by_gameid($id)
654 $result = mysql_query("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
655 $r = mysql_fetch_array($result,MYSQL_NUM);
663 function DB_set_startplayer_by_gameid($id,$p)
665 mysql_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
669 function DB_get_player_by_gameid($id)
671 $result = mysql_query("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
672 $r = mysql_fetch_array($result,MYSQL_NUM);
679 function DB_set_player_by_gameid($id,$p)
681 mysql_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
687 function DB_get_ruleset_by_gameid($id)
689 $result = mysql_query("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
690 $r = mysql_fetch_array($result,MYSQL_NUM);
698 function DB_get_session_by_gameid($id)
700 $result = mysql_query("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
701 $r = mysql_fetch_array($result,MYSQL_NUM);
709 function DB_get_max_session()
711 $result = mysql_query("SELECT MAX(session) FROM Game");
712 $r = mysql_fetch_array($result,MYSQL_NUM);
720 function DB_get_hashes_by_session($session,$user)
724 $result = mysql_query("SELECT Hand.hash FROM Hand".
725 " LEFT JOIN Game ON Game.id=Hand.game_id ".
726 " WHERE Game.session=".DB_quote_smart($session).
727 " AND Hand.user_id=".DB_quote_smart($user));
728 while($t = mysql_fetch_array($result,MYSQL_NUM))
734 function DB_get_ruleset($dullen,$schweinchen,$call)
738 $result = mysql_query("SELECT id FROM Rulesets WHERE".
739 " dullen=".DB_quote_smart($dullen)." AND ".
740 " call=".DB_quote_smart($call)." AND ".
741 " schweinchen=".DB_quote_smart($schweinchen));
743 $r = mysql_fetch_array($result,MYSQL_NUM);
746 return $r[0]; /* found ruleset */
750 $result = mysql_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
751 DB_quote_smart($dullen).",".
752 DB_quote_smart($schweinchen).",".
753 DB_quote_smart($call).
756 return mysql_insert_id();
759 return -1; /* something went wrong */
762 function DB_get_party_by_hash($hash)
764 $result = mysql_query("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
765 $r = mysql_fetch_array($result,MYSQL_NUM);
772 function DB_set_party_by_hash($hash,$party)
774 mysql_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
778 function DB_get_PREF($myid)
782 $result = mysql_query("SELECT value from User_Prefs".
783 " WHERE user_id='$myid' AND pref_key='cardset'" );
784 $r = mysql_fetch_array($result,MYSQL_NUM);
787 if($r[0]=="germancards" && (time()-strtotime( "2009-12-31 23:59:59")<0) ) /* licence only valid until then */
788 $PREF["cardset"]="altenburg";
790 $PREF["cardset"]="english";
793 $PREF["cardset"]="english";
798 function DB_get_unused_randomnumbers($userstr)
800 $queryresult = mysql_query("SELECT randomnumbers,Game.id, COUNT(*) as num FROM Game ".
801 " LEFT JOIN Hand ON Hand.game_id=Game.id ".
802 " AND user_id not in (".$userstr.")".
803 " GROUP BY Game.id ".
806 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
813 function DB_get_number_of_passwords_recovery($user)
815 $queryresult = mysql_query("SELECT COUNT(*) FROM Recovery ".
816 " WHERE user_id=$user ".
817 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
818 " GROUP BY user_id " );
820 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
827 function DB_set_recovery_password($user,$newpw)
829 mysql_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
830 ",".DB_quote_smart($newpw).",NULL)");
835 function DB_get_card_name($card)
837 $queryresult = mysql_query("SELECT strength,suite FROM Card WHERE id='$card'");
839 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
841 return $r[0]." of ".$r[1];
843 return "Error during get_card_name ".$card;
846 function DB_get_current_playid($gameid)
848 $trick = DB_get_max_trickid($gameid);
850 if(!$trick) return NULL;
852 $queryresult = mysql_query("SELECT id FROM Play WHERE trick_id='$trick' ORDER BY create_date DESC LIMIT 1");
854 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
861 function DB_get_call_by_hash($hash)
863 $queryresult = mysql_query("SELECT point_call FROM Hand WHERE hash='$hash'");
865 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
872 function DB_get_partner_call_by_hash($hash)
874 $partner = DB_get_partner_hash_by_hash($hash);
878 $queryresult = mysql_query("SELECT point_call FROM Hand WHERE hash='$partner'");
880 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
888 function DB_get_partner_hash_by_hash($hash)
890 $gameid = DB_get_gameid_by_hash($hash);
891 $party = DB_get_party_by_hash($hash);
893 $queryresult = mysql_query("SELECT hash FROM Hand WHERE game_id='$gameid' AND party='$party' AND hash<>'$hash'");
895 $r = mysql_fetch_array($queryresult,MYSQL_NUM);