9 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
10 $DB = @mysql_connect($DB_host,$DB_user, $DB_password);
13 mysql_select_db($DB_database) or die('Could not select database');
28 function DB_quote_smart($value)
31 if (get_magic_quotes_gpc()) {
32 $value = stripslashes($value);
34 /* Quote if not a number or a numeric string */
35 if (!is_numeric($value)) {
36 $value = "'" . mysql_real_escape_string($value) . "'";
44 $result = mysql_query("SELECT * FROM User");
45 while($r = mysql_fetch_array($result,MYSQL_NUM))
54 function DB_get_email_by_name($name)
56 $result = mysql_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($name)."");
57 $r = mysql_fetch_array($result,MYSQL_NUM);
65 function DB_get_email_by_userid($id)
67 $result = mysql_query("SELECT email FROM User WHERE id=".DB_quote_smart($id)."");
68 $r = mysql_fetch_array($result,MYSQL_NUM);
76 function DB_get_email_by_pos_and_gameid($pos,$gameid)
78 $result = mysql_query("SELECT email FROM User ".
79 "LEFT JOIN Hand ON User.id=Hand.user_id ".
80 "LEFT JOIN Game ON Game.id=Hand.game_id ".
81 "WHERE Game.id=".DB_quote_smart($gameid)." ".
82 "AND Hand.position=".DB_quote_smart($pos)."");
83 $r = mysql_fetch_array($result,MYSQL_NUM);
91 function DB_get_email_by_hash($hash)
93 $result = mysql_query("SELECT User.email FROM User LEFT JOIN Hand ON Hand.user_id=User.id WHERE Hand.hash=".DB_quote_smart($hash)."");
94 $r = mysql_fetch_array($result,MYSQL_NUM);
102 function DB_get_userid_by_name($name)
104 $result = mysql_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($name));
105 $r = mysql_fetch_array($result,MYSQL_NUM);
112 function DB_get_userid_by_passwd($passwd)
114 $result = mysql_query("SELECT id FROM User WHERE password=".DB_quote_smart($passwd));
115 $r = mysql_fetch_array($result,MYSQL_NUM);
122 function DB_get_userid_by_email($email)
124 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email));
125 $r = mysql_fetch_array($result,MYSQL_NUM);
132 function DB_get_userid_by_email_and_password($email,$password)
134 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email)." AND password=".DB_quote_smart($password));
135 $r = mysql_fetch_array($result,MYSQL_NUM);
137 /* test if a recovery password has been set */
140 $result = mysql_query("SELECT User.id FROM User".
141 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
142 " WHERE email=".DB_quote_smart($email).
143 " AND Recovery.password=".DB_quote_smart($password).
144 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
145 $r = mysql_fetch_array($result,MYSQL_NUM);
154 function DB_get_handid_by_hash($hash)
156 $result = mysql_query("SELECT id FROM Hand WHERE hash=".DB_quote_smart($hash));
157 $r = mysql_fetch_array($result,MYSQL_NUM);
165 function DB_get_handid_by_gameid_and_position($gameid,$pos)
167 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
168 DB_quote_smart($gameid)." AND position=".
169 DB_quote_smart($pos));
170 $r = mysql_fetch_array($result,MYSQL_NUM);
177 function DB_get_userid_by_gameid_and_position($gameid,$pos)
179 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
180 DB_quote_smart($gameid)." AND position=".
181 DB_quote_smart($pos));
182 $r = mysql_fetch_array($result,MYSQL_NUM);
191 function DB_get_handid_by_gameid_and_userid($gameid,$userid)
193 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
194 DB_quote_smart($gameid)." AND user_id=".
195 DB_quote_smart($userid));
196 $r = mysql_fetch_array($result,MYSQL_NUM);
204 function DB_get_userid_by_hash($hash)
206 $result = mysql_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($hash));
207 $r = mysql_fetch_array($result,MYSQL_NUM);
215 function DB_get_pos_by_hash($hash)
217 $result = mysql_query("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
218 $r = mysql_fetch_array($result,MYSQL_NUM);
226 function DB_get_name_by_hash($hash)
228 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($hash));
229 $r = mysql_fetch_array($result,MYSQL_NUM);
237 function DB_get_name_by_email($email)
239 $result = mysql_query("SELECT fullname FROM User WHERE email=".DB_quote_smart($email));
240 $r = mysql_fetch_array($result,MYSQL_NUM);
248 function DB_get_name_by_userid($id)
250 $result = mysql_query("SELECT fullname FROM User WHERE id=".DB_quote_smart($id));
251 $r = mysql_fetch_array($result,MYSQL_NUM);
259 function DB_get_status_by_hash($hash)
261 $result = mysql_query("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
262 $r = mysql_fetch_array($result,MYSQL_NUM);
270 function DB_set_game_status_by_gameid($id,$status)
272 mysql_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
276 function DB_set_sickness_by_gameid($id,$status)
278 mysql_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
281 function DB_get_sickness_by_gameid($id)
283 $result = mysql_query("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
284 $r = mysql_fetch_array($result,MYSQL_NUM);
292 function DB_get_game_status_by_gameid($id)
294 $result = mysql_query("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
295 $r = mysql_fetch_array($result,MYSQL_NUM);
303 function DB_set_hand_status_by_hash($hash,$status)
305 mysql_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
309 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
311 $result = mysql_query("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
312 " AND game_id=".DB_quote_smart($gid));
313 $r = mysql_fetch_array($result,MYSQL_NUM);
321 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
323 $result = mysql_query("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
324 " AND game_id=".DB_quote_smart($gid));
325 $r = mysql_fetch_array($result,MYSQL_NUM);
333 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
335 $result = mysql_query("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
336 " AND game_id=".DB_quote_smart($gid));
337 $r = mysql_fetch_array($result,MYSQL_NUM);
345 function DB_get_gameid_by_hash($hash)
347 $result = mysql_query("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
348 $r = mysql_fetch_array($result,MYSQL_NUM);
356 function DB_cancel_game($hash)
358 $gameid = DB_get_gameid_by_hash($hash);
363 /* get the IDs of all players */
364 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".DB_quote_smart($gameid));
365 while($r = mysql_fetch_array($result,MYSQL_NUM))
369 $tmp = mysql_query("SELECT id FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
370 $tmp = mysql_fetch_array($tmp,MYSQL_NUM);
371 mysql_query("DELETE FROM Play WHERE hand_card_id=".DB_quote_smart($tmp[0]));
374 mysql_query("DELETE FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
375 mysql_query("DELETE FROM Score WHERE hand_id=".DB_quote_smart($id));
376 mysql_query("DELETE FROM Hand WHERE id=".DB_quote_smart($id));
380 mysql_query("DELETE FROM User_Game_Prefs WHERE game_id=".DB_quote_smart($gameid));
381 mysql_query("DELETE FROM Trick WHERE game_id=".DB_quote_smart($gameid));
382 mysql_query("DELETE FROM Game WHERE id=".DB_quote_smart($gameid));
387 function DB_get_hand($me)
391 $handid = DB_get_handid_by_hash($me);
393 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
394 while($r = mysql_fetch_array($result,MYSQL_NUM))
400 function DB_get_all_hand($me)
404 $handid = DB_get_handid_by_hash($me);
406 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
407 while($r = mysql_fetch_array($result,MYSQL_NUM))
413 function DB_get_cards_by_trick($id)
418 $result = mysql_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
419 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
421 DB_quote_smart($id)." ORDER BY sequence ASC");
422 while($r = mysql_fetch_array($result,MYSQL_NUM))
424 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
432 function DB_set_solo_by_hash($hash,$solo)
434 mysql_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
438 function DB_set_solo_by_gameid($id,$solo)
440 mysql_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
444 function DB_set_sickness_by_hash($hash,$sickness)
446 mysql_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
450 function DB_get_current_trickid($gameid)
456 $result = mysql_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
457 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
458 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
459 "GROUP BY Trick.id");
460 while( $r = mysql_fetch_array($result,MYSQL_NUM) )
467 if(!$sequence || $sequence==4)
469 mysql_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).")");
470 $trickid = mysql_insert_id();
479 return array($trickid,$sequence,$number);
482 function DB_get_max_trickid($gameid)
484 $result = mysql_query("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
485 $r = mysql_fetch_array($result,MYSQL_NUM) ;
488 return ($r?$r[0]:NULL);
491 function DB_play_card($trickid,$handcardid,$sequence)
493 mysql_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
494 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
496 $playid = mysql_insert_id();
500 function DB_get_all_names_by_gameid($id)
504 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
505 DB_quote_smart($id)." ORDER BY position ASC");
506 while($r = mysql_fetch_array($result,MYSQL_NUM))
512 function DB_get_all_userid_by_gameid($id)
516 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
517 DB_quote_smart($id)." ORDER BY position ");
518 while($r = mysql_fetch_array($result,MYSQL_NUM))
524 function DB_get_hash_from_game_and_pos($id,$pos)
526 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
527 $r = mysql_fetch_array($result,MYSQL_NUM);
535 function DB_get_hash_from_gameid_and_userid($id,$user)
537 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
538 $r = mysql_fetch_array($result,MYSQL_NUM);
546 function DB_get_all_names()
550 $result = mysql_query("SELECT fullname FROM User");
551 while($r = mysql_fetch_array($result,MYSQL_NUM))
557 function DB_update_game_timestamp($gameid)
559 mysql_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
564 function DB_update_user_timestamp($userid)
566 mysql_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
570 function DB_get_user_timestamp($userid)
572 $result = mysql_query("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
573 $r = mysql_fetch_array($result,MYSQL_NUM);
580 function DB_get_user_timezone($userid)
582 $result = mysql_query("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
583 $r = mysql_fetch_array($result,MYSQL_NUM);
591 function DB_insert_comment($comment,$playid,$userid)
593 mysql_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid, ".DB_quote_smart($comment).")");
597 function DB_get_gametype_by_gameid($id)
599 $result = mysql_query("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
600 $r = mysql_fetch_array($result,MYSQL_NUM);
608 function DB_set_gametype_by_gameid($id,$p)
610 mysql_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
614 function DB_get_solo_by_gameid($id)
616 $result = mysql_query("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
617 $r = mysql_fetch_array($result,MYSQL_NUM);
626 function DB_get_startplayer_by_gameid($id)
628 $result = mysql_query("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
629 $r = mysql_fetch_array($result,MYSQL_NUM);
637 function DB_set_startplayer_by_gameid($id,$p)
639 mysql_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
643 function DB_get_player_by_gameid($id)
645 $result = mysql_query("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
646 $r = mysql_fetch_array($result,MYSQL_NUM);
653 function DB_set_player_by_gameid($id,$p)
655 mysql_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
661 function DB_get_ruleset_by_gameid($id)
663 $result = mysql_query("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
664 $r = mysql_fetch_array($result,MYSQL_NUM);
672 function DB_get_session_by_gameid($id)
674 $result = mysql_query("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
675 $r = mysql_fetch_array($result,MYSQL_NUM);
683 function DB_get_max_session()
685 $result = mysql_query("SELECT MAX(session) FROM Game");
686 $r = mysql_fetch_array($result,MYSQL_NUM);
694 function DB_get_hashes_by_session($session,$user)
698 $result = mysql_query("SELECT Hand.hash FROM Hand".
699 " LEFT JOIN Game ON Game.id=Hand.game_id ".
700 " WHERE Game.session=".DB_quote_smart($session).
701 " AND Hand.user_id=".DB_quote_smart($user));
702 while($t = mysql_fetch_array($result,MYSQL_NUM))
708 function DB_get_ruleset($dullen,$schweinchen)
712 $result = mysql_query("SELECT id FROM Rulesets WHERE".
713 " dullen=".DB_quote_smart($dullen)." AND ".
714 " schweinchen=".DB_quote_smart($schweinchen));
716 $r = mysql_fetch_array($result,MYSQL_NUM);
719 return $r[0]; /* found ruleset */
723 $result = mysql_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
724 DB_quote_smart($dullen).",".
725 DB_quote_smart($schweinchen).
728 return mysql_insert_id();
731 return -1; /* something went wrong */
734 function DB_get_party_by_hash($hash)
736 $result = mysql_query("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
737 $r = mysql_fetch_array($result,MYSQL_NUM);
744 function DB_set_party_by_hash($hash,$party)
746 mysql_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
750 function DB_get_PREF($myid)
754 $result = mysql_query("SELECT value from User_Prefs".
755 " WHERE user_id='$myid' AND pref_key='cardset'" );
756 $r = mysql_fetch_array($result,MYSQL_NUM);
759 if($r[0]=="germancards" && (time()-strtotime( "2009-12-31 23:59:59")<0) ) /* licence only valid until then */
760 $PREF["cardset"]="altenburg";
762 $PREF["cardset"]="english";
765 $PREF["cardset"]="english";
770 function DB_get_unused_randomnumbers($userstr)
772 $queryresult = mysql_query("SELECT randomnumbers,Game.id FROM Game ".
773 " LEFT JOIN Hand ON Hand.game_id=Game.id ".
774 " AND user_id not in (".$userstr.")".
775 " GROUP BY Game.id ".
778 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
785 function DB_get_number_of_passwords_recovery($user)
787 $queryresult = mysql_query("SELECT COUNT(*) FROM Recovery ".
788 " WHERE user_id=$user ".
789 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
790 " GROUP BY user_id " );
792 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
799 function DB_set_recovery_password($user,$newpw)
801 mysql_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
802 ",".DB_quote_smart($newpw).",NULL)");