9 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
10 $DB = @mysql_connect($DB_host,$DB_user, $DB_password);
13 mysql_select_db($DB_database) or die('Could not select database');
28 function DB_quote_smart($value)
31 if (get_magic_quotes_gpc()) {
32 $value = stripslashes($value);
34 /* Quote if not a number or a numeric string */
35 if (!is_numeric($value)) {
36 $value = "'" . mysql_real_escape_string($value) . "'";
44 $result = mysql_query("SELECT * FROM User");
45 while($r = mysql_fetch_array($result,MYSQL_NUM))
54 function DB_get_email_by_name($name)
56 $result = mysql_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($name)."");
57 $r = mysql_fetch_array($result,MYSQL_NUM);
64 function DB_get_passwd_by_name($name)
66 $result = mysql_query("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
67 $r = mysql_fetch_array($result,MYSQL_NUM);
75 function DB_get_email_by_userid($id)
77 $result = mysql_query("SELECT email FROM User WHERE id=".DB_quote_smart($id)."");
78 $r = mysql_fetch_array($result,MYSQL_NUM);
86 function DB_get_email_by_pos_and_gameid($pos,$gameid)
88 $result = mysql_query("SELECT email FROM User ".
89 "LEFT JOIN Hand ON User.id=Hand.user_id ".
90 "LEFT JOIN Game ON Game.id=Hand.game_id ".
91 "WHERE Game.id=".DB_quote_smart($gameid)." ".
92 "AND Hand.position=".DB_quote_smart($pos)."");
93 $r = mysql_fetch_array($result,MYSQL_NUM);
101 function DB_get_email_by_hash($hash)
103 $result = mysql_query("SELECT User.email FROM User LEFT JOIN Hand ON Hand.user_id=User.id WHERE Hand.hash=".DB_quote_smart($hash)."");
104 $r = mysql_fetch_array($result,MYSQL_NUM);
112 function DB_get_userid_by_name($name)
114 $result = mysql_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($name));
115 $r = mysql_fetch_array($result,MYSQL_NUM);
122 function DB_get_userid_by_passwd($passwd)
124 $result = mysql_query("SELECT id FROM User WHERE password=".DB_quote_smart($passwd));
125 $r = mysql_fetch_array($result,MYSQL_NUM);
132 function DB_get_userid_by_email($email)
134 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email));
135 $r = mysql_fetch_array($result,MYSQL_NUM);
142 function DB_get_userid_by_email_and_password($email,$password)
144 $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email)." AND password=".DB_quote_smart($password));
145 $r = mysql_fetch_array($result,MYSQL_NUM);
147 /* test if a recovery password has been set */
150 $result = mysql_query("SELECT User.id FROM User".
151 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
152 " WHERE email=".DB_quote_smart($email).
153 " AND Recovery.password=".DB_quote_smart($password).
154 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
155 $r = mysql_fetch_array($result,MYSQL_NUM);
164 function DB_get_handid_by_hash($hash)
166 $result = mysql_query("SELECT id FROM Hand WHERE hash=".DB_quote_smart($hash));
167 $r = mysql_fetch_array($result,MYSQL_NUM);
175 function DB_get_handid_by_gameid_and_position($gameid,$pos)
177 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
178 DB_quote_smart($gameid)." AND position=".
179 DB_quote_smart($pos));
180 $r = mysql_fetch_array($result,MYSQL_NUM);
187 function DB_get_userid_by_gameid_and_position($gameid,$pos)
189 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
190 DB_quote_smart($gameid)." AND position=".
191 DB_quote_smart($pos));
192 $r = mysql_fetch_array($result,MYSQL_NUM);
201 function DB_get_handid_by_gameid_and_userid($gameid,$userid)
203 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
204 DB_quote_smart($gameid)." AND user_id=".
205 DB_quote_smart($userid));
206 $r = mysql_fetch_array($result,MYSQL_NUM);
214 function DB_get_userid_by_hash($hash)
216 $result = mysql_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($hash));
217 $r = mysql_fetch_array($result,MYSQL_NUM);
225 function DB_get_pos_by_hash($hash)
227 $result = mysql_query("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
228 $r = mysql_fetch_array($result,MYSQL_NUM);
236 function DB_get_name_by_hash($hash)
238 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($hash));
239 $r = mysql_fetch_array($result,MYSQL_NUM);
247 function DB_get_name_by_email($email)
249 $result = mysql_query("SELECT fullname FROM User WHERE email=".DB_quote_smart($email));
250 $r = mysql_fetch_array($result,MYSQL_NUM);
258 function DB_get_name_by_userid($id)
260 $result = mysql_query("SELECT fullname FROM User WHERE id=".DB_quote_smart($id));
261 $r = mysql_fetch_array($result,MYSQL_NUM);
269 function DB_get_status_by_hash($hash)
271 $result = mysql_query("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
272 $r = mysql_fetch_array($result,MYSQL_NUM);
280 function DB_set_game_status_by_gameid($id,$status)
282 mysql_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
286 function DB_set_sickness_by_gameid($id,$status)
288 mysql_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
291 function DB_get_sickness_by_gameid($id)
293 $result = mysql_query("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
294 $r = mysql_fetch_array($result,MYSQL_NUM);
302 function DB_get_game_status_by_gameid($id)
304 $result = mysql_query("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
305 $r = mysql_fetch_array($result,MYSQL_NUM);
313 function DB_set_hand_status_by_hash($hash,$status)
315 mysql_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
319 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
321 $result = mysql_query("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
322 " AND game_id=".DB_quote_smart($gid));
323 $r = mysql_fetch_array($result,MYSQL_NUM);
331 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
333 $result = mysql_query("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
334 " AND game_id=".DB_quote_smart($gid));
335 $r = mysql_fetch_array($result,MYSQL_NUM);
343 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
345 $result = mysql_query("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
346 " AND game_id=".DB_quote_smart($gid));
347 $r = mysql_fetch_array($result,MYSQL_NUM);
355 function DB_get_gameid_by_hash($hash)
357 $result = mysql_query("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
358 $r = mysql_fetch_array($result,MYSQL_NUM);
366 function DB_cancel_game($hash)
368 $gameid = DB_get_gameid_by_hash($hash);
373 /* get the IDs of all players */
374 $result = mysql_query("SELECT id FROM Hand WHERE game_id=".DB_quote_smart($gameid));
375 while($r = mysql_fetch_array($result,MYSQL_NUM))
379 $tmp = mysql_query("SELECT id FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
380 $tmp = mysql_fetch_array($tmp,MYSQL_NUM);
381 mysql_query("DELETE FROM Play WHERE hand_card_id=".DB_quote_smart($tmp[0]));
384 mysql_query("DELETE FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
385 mysql_query("DELETE FROM Score WHERE hand_id=".DB_quote_smart($id));
386 mysql_query("DELETE FROM Hand WHERE id=".DB_quote_smart($id));
390 mysql_query("DELETE FROM User_Game_Prefs WHERE game_id=".DB_quote_smart($gameid));
391 mysql_query("DELETE FROM Trick WHERE game_id=".DB_quote_smart($gameid));
392 mysql_query("DELETE FROM Game WHERE id=".DB_quote_smart($gameid));
397 function DB_get_hand($me)
401 $handid = DB_get_handid_by_hash($me);
403 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
404 while($r = mysql_fetch_array($result,MYSQL_NUM))
410 function DB_get_all_hand($me)
414 $handid = DB_get_handid_by_hash($me);
416 $result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
417 while($r = mysql_fetch_array($result,MYSQL_NUM))
423 function DB_get_cards_by_trick($id)
428 $result = mysql_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
429 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
431 DB_quote_smart($id)." ORDER BY sequence ASC");
432 while($r = mysql_fetch_array($result,MYSQL_NUM))
434 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
442 function DB_set_solo_by_hash($hash,$solo)
444 mysql_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
448 function DB_set_solo_by_gameid($id,$solo)
450 mysql_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
454 function DB_set_sickness_by_hash($hash,$sickness)
456 mysql_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
460 function DB_get_current_trickid($gameid)
466 $result = mysql_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
467 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
468 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
469 "GROUP BY Trick.id");
470 while( $r = mysql_fetch_array($result,MYSQL_NUM) )
477 if(!$sequence || $sequence==4)
479 mysql_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).",NULL)");
480 $trickid = mysql_insert_id();
489 return array($trickid,$sequence,$number);
492 function DB_get_max_trickid($gameid)
494 $result = mysql_query("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
495 $r = mysql_fetch_array($result,MYSQL_NUM) ;
497 return ($r?$r[0]:NULL);
500 function DB_play_card($trickid,$handcardid,$sequence)
502 mysql_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
503 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
505 $playid = mysql_insert_id();
509 function DB_get_all_names_by_gameid($id)
513 $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
514 DB_quote_smart($id)." ORDER BY position ASC");
515 while($r = mysql_fetch_array($result,MYSQL_NUM))
521 function DB_get_all_userid_by_gameid($id)
525 $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
526 DB_quote_smart($id)." ORDER BY position ");
527 while($r = mysql_fetch_array($result,MYSQL_NUM))
533 function DB_get_hash_from_game_and_pos($id,$pos)
535 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
536 $r = mysql_fetch_array($result,MYSQL_NUM);
544 function DB_get_hash_from_gameid_and_userid($id,$user)
546 $result = mysql_query("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
547 $r = mysql_fetch_array($result,MYSQL_NUM);
555 function DB_get_all_names()
559 $result = mysql_query("SELECT fullname FROM User");
560 while($r = mysql_fetch_array($result,MYSQL_NUM))
566 function DB_update_game_timestamp($gameid)
568 mysql_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
573 function DB_update_user_timestamp($userid)
575 mysql_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
579 function DB_get_user_timestamp($userid)
581 $result = mysql_query("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
582 $r = mysql_fetch_array($result,MYSQL_NUM);
589 function DB_get_user_timezone($userid)
591 $result = mysql_query("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
592 $r = mysql_fetch_array($result,MYSQL_NUM);
600 function DB_insert_comment($comment,$playid,$userid)
602 mysql_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid, ".DB_quote_smart($comment).")");
607 function DB_get_gametype_by_gameid($id)
609 $result = mysql_query("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
610 $r = mysql_fetch_array($result,MYSQL_NUM);
618 function DB_set_gametype_by_gameid($id,$p)
620 mysql_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
624 function DB_get_solo_by_gameid($id)
626 $result = mysql_query("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
627 $r = mysql_fetch_array($result,MYSQL_NUM);
636 function DB_get_startplayer_by_gameid($id)
638 $result = mysql_query("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
639 $r = mysql_fetch_array($result,MYSQL_NUM);
647 function DB_set_startplayer_by_gameid($id,$p)
649 mysql_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
653 function DB_get_player_by_gameid($id)
655 $result = mysql_query("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
656 $r = mysql_fetch_array($result,MYSQL_NUM);
663 function DB_set_player_by_gameid($id,$p)
665 mysql_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
671 function DB_get_ruleset_by_gameid($id)
673 $result = mysql_query("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
674 $r = mysql_fetch_array($result,MYSQL_NUM);
682 function DB_get_session_by_gameid($id)
684 $result = mysql_query("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
685 $r = mysql_fetch_array($result,MYSQL_NUM);
693 function DB_get_max_session()
695 $result = mysql_query("SELECT MAX(session) FROM Game");
696 $r = mysql_fetch_array($result,MYSQL_NUM);
704 function DB_get_hashes_by_session($session,$user)
708 $result = mysql_query("SELECT Hand.hash FROM Hand".
709 " LEFT JOIN Game ON Game.id=Hand.game_id ".
710 " WHERE Game.session=".DB_quote_smart($session).
711 " AND Hand.user_id=".DB_quote_smart($user));
712 while($t = mysql_fetch_array($result,MYSQL_NUM))
718 function DB_get_ruleset($dullen,$schweinchen,$call)
722 $result = mysql_query("SELECT id FROM Rulesets WHERE".
723 " dullen=".DB_quote_smart($dullen)." AND ".
724 " call=".DB_quote_smart($call)." AND ".
725 " schweinchen=".DB_quote_smart($schweinchen));
727 $r = mysql_fetch_array($result,MYSQL_NUM);
730 return $r[0]; /* found ruleset */
734 $result = mysql_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
735 DB_quote_smart($dullen).",".
736 DB_quote_smart($schweinchen).",".
737 DB_quote_smart($call).
740 return mysql_insert_id();
743 return -1; /* something went wrong */
746 function DB_get_party_by_hash($hash)
748 $result = mysql_query("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
749 $r = mysql_fetch_array($result,MYSQL_NUM);
756 function DB_set_party_by_hash($hash,$party)
758 mysql_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
762 function DB_get_PREF($myid)
766 $result = mysql_query("SELECT value from User_Prefs".
767 " WHERE user_id='$myid' AND pref_key='cardset'" );
768 $r = mysql_fetch_array($result,MYSQL_NUM);
771 if($r[0]=="germancards" && (time()-strtotime( "2009-12-31 23:59:59")<0) ) /* licence only valid until then */
772 $PREF["cardset"]="altenburg";
774 $PREF["cardset"]="english";
777 $PREF["cardset"]="english";
782 function DB_get_unused_randomnumbers($userstr)
784 $queryresult = mysql_query("SELECT randomnumbers,Game.id, COUNT(*) as num FROM Game ".
785 " LEFT JOIN Hand ON Hand.game_id=Game.id ".
786 " AND user_id not in (".$userstr.")".
787 " GROUP BY Game.id ".
790 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
797 function DB_get_number_of_passwords_recovery($user)
799 $queryresult = mysql_query("SELECT COUNT(*) FROM Recovery ".
800 " WHERE user_id=$user ".
801 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
802 " GROUP BY user_id " );
804 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
811 function DB_set_recovery_password($user,$newpw)
813 mysql_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
814 ",".DB_quote_smart($newpw).",NULL)");
819 function DB_get_card_name($card)
821 $queryresult = mysql_query("SELECT strength,suite FROM Card WHERE id='$card'");
823 $r = mysql_fetch_array($queryresult,MYSQL_NUM);
825 return $r[0]." of ".$r[1];
827 return "Error during get_card_name ".$card;
830 function DB_get_current_playid($gameid)
832 $trick = DB_get_max_trickid($gameid);
834 if(!$trick) return NULL;
836 $queryresult = mysql_query("SELECT id FROM Play WHERE trick_id='$trick' ORDER BY create_date DESC LIMIT 1");
838 $r = mysql_fetch_array($queryresult,MYSQL_NUM);