2 /* Copyright 2006, 2007, 2008, 2009, 2010, 2011, 2012 Arun Persaud <arun@nubati.net>
4 * This file is part of e-DoKo.
6 * e-DoKo is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation, either version 3 of the License, or
9 * (at your option) any later version.
11 * e-DoKo is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with e-DoKo. If not, see <http://www.gnu.org/licenses/>.
21 /* make sure that we are not called from outside the scripts,
22 * use a variable defined in config.php to check this
35 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
36 $DB = @mysql_connect($DB_host,$DB_user, $DB_password);
39 mysql_select_db($DB_database) or die('Error: Could not select database');
43 echo mysql_errno() . ": " . mysql_error(). "\n";
47 $version = DB_get_version();
48 if ($version != $version_needed)
61 function DB_quote_smart($value)
64 if (get_magic_quotes_gpc()) {
65 $value = stripslashes($value);
67 /* Quote if not a number or a numeric string */
68 if (!is_numeric($value)) {
69 $value = "'" . mysql_real_escape_string($value) . "'";
76 $result = DB_query("SELECT * FROM User");
77 while($r = DB_fetch_array($result))
86 /* use Mysql in the background */
87 function DB_query($query)
89 /* debug/optimize the database
91 $return = mysql_query($query);
92 $time = $time - microtime();
94 if($time > 0.05) // this way we can find only the long ones
96 $logfile=fopen('/tmp/DBlog.log','a+');
97 fwrite($logfile,"EXPLAIN $query ;\n");
98 fwrite($logfile,"time of above query: $time\n");
105 return mysql_query($query);
108 function DB_fetch_array($result)
110 return mysql_fetch_array($result,MYSQL_NUM);
113 function DB_insert_id()
115 return mysql_insert_id();
118 function DB_num_rows($result)
120 return mysql_num_rows($result);
122 /* end Mysql functions */
124 function DB_query_array($query)
126 $result = DB_query($query);
127 $return = DB_fetch_array($result);
132 function DB_query_array_all($query)
136 $queryresult = DB_query($query);
137 while($row = DB_fetch_array($queryresult))
143 function DB_get_version()
145 $version = DB_query_array('SELECT version FROM Version');
149 function DB_get_passwd_by_name($name)
151 $r = DB_query_array("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
159 function DB_get_passwd_by_userid($id)
161 $r = DB_query_array("SELECT password FROM User WHERE id=".DB_quote_smart($id)."");
169 function DB_check_recovery_passwords($password,$email)
171 $r = DB_query_array("SELECT User.id FROM User".
172 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
173 " WHERE email=".DB_quote_smart($email).
174 " AND Recovery.password=".DB_quote_smart($password).
175 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
182 function DB_get_handid($type,$var1='',$var2='')
187 $r = DB_query_array("SELECT id FROM Hand WHERE hash=".DB_quote_smart($var1));
189 case 'gameid-position':
190 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
191 DB_quote_smart($var1)." AND position=".
192 DB_quote_smart($var2));
194 case 'gameid-userid':
195 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
196 DB_quote_smart($var1)." AND user_id=".
197 DB_quote_smart($var2));
207 function DB_get_pos_by_hash($hash)
209 $r= DB_query_array("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
217 function DB_get_status_by_hash($hash)
219 $r= DB_query_array("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
227 function DB_set_game_status_by_gameid($id,$status)
229 DB_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
233 function DB_set_sickness_by_gameid($id,$status)
235 DB_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
238 function DB_get_sickness_by_gameid($id)
240 $r = DB_query_array("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
248 function DB_get_game_status_by_gameid($id)
250 $r = DB_query_array("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
258 function DB_set_hand_status_by_hash($hash,$status)
260 DB_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
264 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
266 $r = DB_query_array("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
267 " AND game_id=".DB_quote_smart($gid));
274 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
276 $r = DB_query_array("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
277 " AND game_id=".DB_quote_smart($gid));
284 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
286 $r = DB_query_array("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
287 " AND game_id=".DB_quote_smart($gid));
294 function DB_get_gameid_by_hash($hash)
296 $r = DB_query_array("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
304 function DB_get_hand($me)
308 $handid = DB_get_handid('hash',$me);
310 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
311 while($r = DB_fetch_array($result))
317 function DB_get_all_hand($me)
321 $handid = DB_get_handid('hash',$me);
323 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
324 while($r = DB_fetch_array($result))
330 function DB_get_cards_by_trick($id)
335 $result = DB_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
336 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
338 DB_quote_smart($id)." ORDER BY sequence ASC");
339 while($r = DB_fetch_array($result))
341 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
349 function DB_set_solo_by_hash($hash,$solo)
351 DB_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
355 function DB_set_solo_by_gameid($id,$solo)
357 DB_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
361 function DB_set_sickness_by_hash($hash,$sickness)
363 DB_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
367 function DB_get_current_trickid($gameid)
373 $result = DB_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
374 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
375 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
376 "GROUP BY Trick.id");
377 while( $r = DB_fetch_array($result) )
384 if(!$sequence || $sequence==4)
386 DB_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).",NULL)");
387 $trickid = DB_insert_id();
396 return array($trickid,$sequence,$number);
399 function DB_get_max_trickid($gameid)
401 $r = DB_query_array("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
403 return ($r?$r[0]:NULL);
406 function DB_play_card($trickid,$handcardid,$sequence)
408 DB_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
409 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
411 $playid = DB_insert_id();
415 function DB_get_all_names_by_gameid($id)
419 $result = DB_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
420 DB_quote_smart($id)." ORDER BY position ASC");
421 while($r = DB_fetch_array($result))
427 function DB_get_all_userid_by_gameid($id)
431 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
432 DB_quote_smart($id)." ORDER BY position ");
433 while($r = DB_fetch_array($result))
439 function DB_get_hash_from_game_and_pos($id,$pos)
441 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
449 function DB_get_hash_from_gameid_and_userid($id,$user)
451 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
459 function DB_get_all_names()
463 $result = DB_query("SELECT fullname FROM User");
465 while($r = DB_fetch_array($result))
471 function DB_get_all_user_names_open_for_games()
475 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
476 DB_query("CREATE TEMPORARY TABLE Usertmp SELECT id,fullname FROM User;");
477 DB_query("DELETE FROM Usertmp WHERE id IN (SELECT user_id FROM User_Prefs WHERE pref_key='open for games' and value='no')");
479 $result = DB_query("SELECT fullname FROM Usertmp");
480 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
482 while($r = DB_fetch_array($result))
488 function DB_get_names_of_last_logins($N)
492 $result = DB_query("SELECT fullname FROM User ORDER BY last_login DESC LIMIT $N");
493 while($r = DB_fetch_array($result))
499 function DB_get_emails_of_last_logins($N)
503 $result = DB_query("SELECT email FROM User ORDER BY last_login DESC LIMIT $N");
504 while($r = DB_fetch_array($result))
510 function DB_get_names_of_new_logins($N)
514 $result = DB_query("SELECT fullname FROM User ORDER BY create_date DESC, id DESC LIMIT $N");
515 while($r = DB_fetch_array($result))
521 function DB_update_game_timestamp($gameid)
523 DB_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
527 function DB_get_game_timestamp($gameid)
529 $r = DB_query_array("SELECT mod_date FROM Game WHERE id=".DB_quote_smart($gameid));
537 function DB_update_user_timestamp($userid)
539 DB_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
543 function DB_get_user_timestamp($userid)
545 $r = DB_query_array("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
553 function DB_get_user_creation_date($userid)
555 $r = DB_query_array("SELECT create_date FROM User WHERE id=".DB_quote_smart($userid));
563 function DB_get_user_timezone($userid)
565 $r = DB_query_array("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
570 return "Europe/London";
573 function DB_insert_comment($comment,$playid,$gameid,$userid)
575 DB_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid,$gameid, ".DB_quote_smart($comment).")");
580 function DB_get_pre_comment($gameid)
582 $r = DB_query_array_all("SELECT comment, User.fullname FROM Comment".
583 " LEFT JOIN User ON User.id=user_id".
585 " AND game_id=$gameid ");
589 function DB_get_pre_comment_call($gameid)
591 $r = DB_query_array_all("SELECT comment, User.fullname FROM Comment".
592 " LEFT JOIN User ON User.id=user_id".
594 " AND game_id=$gameid ");
598 function DB_insert_note($comment,$gameid,$userid)
600 DB_query("INSERT INTO Notes VALUES (NULL,NULL,NULL,$userid,$gameid, ".DB_quote_smart($comment).")");
605 function DB_get_notes_by_userid_and_gameid($userid,$gameid)
609 $result = DB_query("SELECT comment FROM Notes WHERE user_id=".DB_quote_smart($userid) .
610 " AND game_id=".DB_quote_smart($gameid));
612 while($r = DB_fetch_array($result))
619 function DB_get_gametype_by_gameid($id)
621 $r = DB_query_array("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
629 function DB_set_gametype_by_gameid($id,$p)
631 DB_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
635 function DB_get_solo_by_gameid($id)
637 $r = DB_query_array("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
646 function DB_get_startplayer_by_gameid($id)
648 $r = DB_query_array("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
656 function DB_set_startplayer_by_gameid($id,$p)
658 DB_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
662 function DB_get_player_by_gameid($id)
664 $r = DB_query_array("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
671 function DB_set_player_by_gameid($id,$p)
673 DB_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
679 function DB_get_ruleset_by_gameid($id)
681 $r = DB_query_array("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
689 function DB_get_session_by_gameid($id)
691 $r = DB_query_array("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
699 function DB_get_max_session()
701 $r = DB_query_array("SELECT MAX(session) FROM Game");
709 function DB_get_hashes_by_session($session,$user)
713 $result = DB_query("SELECT Hand.hash FROM Hand".
714 " LEFT JOIN Game ON Game.id=Hand.game_id ".
715 " WHERE Game.session=".DB_quote_smart($session).
716 " AND Hand.user_id=".DB_quote_smart($user).
717 " ORDER BY Game.create_date ASC");
718 while($t = DB_fetch_array($result))
724 function DB_get_ruleset($dullen,$schweinchen,$call,$lowtrump)
728 $result = DB_query("SELECT id FROM Rulesets WHERE".
729 " dullen=".DB_quote_smart($dullen)." AND ".
730 " Rulesets.call=".DB_quote_smart($call)." AND ".
731 " schweinchen=".DB_quote_smart($schweinchen)." AND ".
732 " lowtrump=".DB_quote_smart($lowtrump));
734 $r = DB_fetch_array($result);
737 return $r[0]; /* found ruleset */
741 $result = DB_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
742 DB_quote_smart($dullen).",".
743 DB_quote_smart($schweinchen).",".
744 DB_quote_smart($lowtrump).",".
745 DB_quote_smart($call).
748 return DB_insert_id();
751 return -1; /* something went wrong */
754 function DB_get_party_by_hash($hash)
756 $r = DB_query_array("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
764 function DB_get_party_by_gameid_and_userid($gameid,$userid)
766 $r = DB_query_array("SELECT party FROM Hand".
767 " WHERE game_id=".DB_quote_smart($gameid).
768 " AND user_id=".DB_quote_smart($userid));
775 function DB_get_party_by_session_and_userid($session,$userid)
777 /* used in score table by index. gameids are sorted by date, so we need to sort here too! */
778 $r = DB_query_array_all("SELECT party FROM Hand".
779 " LEFT JOIN Game ON Game.id = Hand.game_id".
780 " WHERE Game.session=".DB_quote_smart($session).
781 " AND user_id=".DB_quote_smart($userid)."".
782 " AND Game.status='gameover' ".
783 " ORDER BY Game.create_date ASC");
787 function DB_set_party_by_hash($hash,$party)
789 DB_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
793 function DB_get_PREF($myid)
796 $PREF['cardset'] = 'english';
797 $PREF['email'] = 'emailnonaddict';
798 $PREF['digest'] = 'digest-off';
799 $PREF['autosetup'] = 'no';
800 $PREF['sorting'] = 'high-low';
801 $PREF['open_for_games'] = 'yes';
802 $PREF['vacation_start'] = NULL;
803 $PREF['vacation_stop'] = NULL;
804 $PREF['vacation_comment'] = '';
805 $PREF['language'] = 'en';
807 /* get all preferences */
808 $r = DB_query('SELECT pref_key, value FROM User_Prefs'.
809 " WHERE user_id='$myid' " );
810 while($pref = DB_fetch_array($r) )
815 /* licence only valid until then */
816 if($pref[1]=='altenburg' && (time()-strtotime( '2012-12-31 23:59:59')<0) )
817 $PREF['cardset']='altenburg';
821 if($pref[1]=='emailaddict')
822 $PREF['email']='emailaddict';
827 $PREF['digest'] = $pref[1];
832 $PREF['autosetup']='yes';
837 $PREF['sorting'] = $pref[1];
840 case 'open for games':
842 $PREF['open_for_games'] = $pref[1];
845 case 'vacation start':
847 $PREF['vacation_start'] = $pref[1];
850 case 'vacation stop':
852 $PREF['vacation_stop'] = $pref[1];
855 case 'vacation comment':
857 $PREF['vacation_comment'] = $pref[1];
862 $PREF['language'] = $pref[1];
870 function DB_get_RULES($gameid)
872 $r = DB_query_array("SELECT * FROM Rulesets".
873 " LEFT JOIN Game ON Game.ruleset=Rulesets.id ".
874 " WHERE Game.id='$gameid'" );
876 $RULES['dullen'] = $r[2];
877 $RULES['schweinchen'] = $r[3];
878 $RULES['lowtrump'] = $r[4];
879 $RULES['call'] = $r[5];
884 function DB_get_email_pref_by_hash($hash)
886 $r = DB_query_array("SELECT value FROM Hand".
887 " LEFT JOIN User_Prefs ON Hand.user_id=User_Prefs.user_id".
888 " WHERE hash='$hash' AND pref_key='email'" );
891 if($r[0]=="emailaddict")
892 return "emailaddict";
894 return "emailnonaddict";
897 return "emailnonaddict";
900 function DB_get_email_pref_by_uid($uid)
902 $r = DB_query_array("SELECT value FROM User_Prefs ".
903 " WHERE user_id='$uid' AND pref_key='email'" );
906 if($r[0]=="emailaddict")
907 return "emailaddict";
909 return "emailnonaddict";
912 return "emailnonaddict";
915 function DB_get_unused_randomnumbers($userstr)
917 /* optimized version of this query using temporary tables (perhaps we should use a procedure here?).
918 First we create a copy of the Game table using just the gameid and the cards.
919 Then in a second round we delete all the gameids of games where our players are in.
920 At the end we return only the first entry in the temporary table.
922 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
923 DB_query("CREATE TEMPORARY TABLE gametmp SELECT id,randomnumbers FROM Game;");
924 DB_query("DELETE FROM gametmp WHERE randomnumbers IN (SELECT randomnumbers FROM Hand LEFT JOIN Game ON Game.id=game_id WHERE user_id IN (".$userstr."));");
926 $r = DB_query_array("SELECT randomnumbers FROM gametmp LIMIT 1;");
927 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
935 function DB_get_number_of_passwords_recovery($user)
937 $r = DB_query_array("SELECT COUNT(*) FROM Recovery ".
938 " WHERE user_id=$user ".
939 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
940 " GROUP BY user_id " );
947 function DB_set_recovery_password($user,$newpw)
949 DB_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
950 ",".DB_quote_smart($newpw).",NULL)");
954 function DB_delete_recovery_passwords($userid)
956 DB_query("DELETE FROM Recovery WHERE user_id=".DB_quote_smart($userid));
960 function DB_get_card_name($card)
965 $r = DB_query_array("SELECT strength,suite FROM Card WHERE id='$card'");
968 return $r[0]." of ".$r[1];
970 return "Error during get_card_name ".$card;
973 function DB_get_current_playid($gameid)
975 /* return playid or -1 for pre-game phase */
976 $trick = DB_get_max_trickid($gameid);
978 if(!$trick) return -1;
980 $r = DB_query_array("SELECT id FROM Play WHERE trick_id='$trick' ORDER BY create_date DESC LIMIT 1");
988 function DB_get_call_by_hash($hash)
990 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash='$hash'");
998 function DB_get_partner_call_by_hash($hash)
1000 $partner = DB_get_partner_hash_by_hash($hash);
1004 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash='$partner'");
1013 function DB_get_partner_hash_by_hash($hash)
1015 $gameid = DB_get_gameid_by_hash($hash);
1016 $party = DB_get_party_by_hash($hash);
1018 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id='$gameid' AND party='$party' AND hash<>'$hash'");
1026 function DB_format_gameid($gameid)
1028 /* get session and create date */
1029 $r = DB_query_array("SELECT session, create_date FROM Game WHERE id='$gameid' ");
1033 /* get number of game */
1034 $r = DB_query_array("SELECT SUM(TIME_TO_SEC(TIMEDIFF(create_date, '$date'))<=0) ".
1036 " WHERE session='$session' ");
1037 return $session.'.'.$r[0];
1040 function DB_get_reminder($user,$gameid)
1042 $r = DB_query_array("SELECT COUNT(*) FROM Reminder ".
1043 " WHERE user_id=$user ".
1044 " AND game_id=$gameid ".
1045 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
1046 " GROUP BY user_id " );
1053 function DB_set_reminder($user,$gameid)
1055 DB_query("INSERT INTO Reminder ".
1056 " VALUES(NULL, ".DB_quote_smart($user).", ".DB_quote_smart($gameid).
1061 function DB_is_session_active($session)
1063 $r = DB_query_array("SELECT COUNT(*) FROM Game ".
1064 " WHERE session=$session ".
1065 " AND status IN ('pre','play') ");
1072 function DB_get_gameids_of_finished_games_by_session($session)
1076 if($session==0) /* return all games */
1077 $queryresult = DB_query_array_all("SELECT Game.id,SUM(IF(STRCMP(Score.party,'re'),-1,1)),Game.type FROM Game ".
1078 " LEFT JOIN Score on game_id=Game.id".
1079 " WHERE status='gameover' ".
1080 " GROUP BY Game.id");
1081 else /* return games in a session */
1082 $queryresult = DB_query_array_all("SELECT Game.id,SUM(IF(STRCMP(Score.party,'re'),-1,1)),Game.type FROM Game ".
1083 " LEFT JOIN Score on game_id=Game.id".
1084 " WHERE session=$session ".
1085 " AND status='gameover' ".
1086 " GROUP BY Game.id".
1087 " ORDER BY Game.create_date ASC");
1089 return $queryresult;
1092 function DB_get_card_value_by_cardid($id)
1094 $r = DB_query_array("SELECT points FROM Card ".
1103 function DB_get_userid($type,$var1="",$var2="")
1105 /* get the userid of a user
1106 * this can be done several ways, which are all handled below
1107 * if a email/password combination is given and it doesn't work, we also
1108 * need to check the recovery table for additional passwords
1116 $result = DB_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($var1));
1119 $result = DB_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($var1));
1122 $result = DB_query("SELECT id FROM User WHERE password=".DB_quote_smart($var1));
1125 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1));
1127 case 'email-password':
1128 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1)." AND password=".DB_quote_smart($var2));
1129 $r = DB_fetch_array($result);
1130 /* test if a recovery password has been set */
1133 /* testing alternative password */
1134 $result = DB_query("SELECT User.id FROM User".
1135 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
1136 " WHERE email=".DB_quote_smart($var1).
1137 " AND Recovery.password=".DB_quote_smart($var2).
1138 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
1141 case 'gameid-position':
1142 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
1143 DB_quote_smart($var1)." AND position=".
1144 DB_quote_smart($var2));
1149 $r = DB_fetch_array($result);
1157 function DB_get_email($type,$var1='',$var2='')
1159 /* return the email of a user
1160 * this is used for sending out emails, but also for
1161 * testing the login for example
1166 $result = DB_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($var1)."");
1169 $result = DB_query("SELECT email FROM User WHERE id=".DB_quote_smart($var1)."");
1172 $result = DB_query("SELECT User.email FROM User ".
1173 "LEFT JOIN Hand ON Hand.user_id=User.id ".
1174 "WHERE Hand.hash=".DB_quote_smart($var1)."");
1176 case 'position-gameid':
1177 $result = DB_query("SELECT email FROM User ".
1178 "LEFT JOIN Hand ON User.id=Hand.user_id ".
1179 "LEFT JOIN Game ON Game.id=Hand.game_id ".
1180 "WHERE Game.id=".DB_quote_smart($var2)." ".
1181 "AND Hand.position=".DB_quote_smart($var1)."");
1185 $r = DB_fetch_array($result);
1193 function DB_get_name($type,$var1='')
1195 /* get the full name of a user
1196 * a user can be uniquely identified several ways
1201 $r = DB_query_array("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($var1));
1204 $r = DB_query_array("SELECT fullname FROM User WHERE email=".DB_quote_smart($var1));
1207 $r = DB_query_array("SELECT fullname FROM User WHERE id=".DB_quote_smart($var1));
1216 function DB_add_exchanged_card($card,$old_hand_id,$new_hand_id)
1218 DB_query("INSERT INTO Card_Exchange VALUES (NULL,$new_hand_id,$old_hand_id,$card)");
1222 function DB_get_exchanged_cards($hash)
1226 $handid = DB_get_handid('hash',$hash);
1228 $result = DB_query("SELECT card_id FROM Card_Exchange WHERE orig_hand_id=".DB_quote_smart($handid));
1229 while($r = DB_fetch_array($result))
1235 function DB_played_by_others($gameid)
1238 $result = DB_query("SELECT id FROM Game WHERE randomnumbers=(SELECT randomnumbers FROM Game WHERE id=$gameid) AND status='gameover'");
1239 while($r = DB_fetch_array($result))
1245 function DB_get_number_of_tricks($gameid,$position)
1247 $r = DB_query_array("SELECT COUNT(winner) FROM Trick Where game_id='$gameid' and winner='$position'");
1251 function DB_digest_insert_email($To,$message,$type,$gameid)
1253 if($type == GAME_YOUR_TURN)
1254 DB_query("INSERT INTO digest_email VALUES (NULL,".DB_quote_smart($To).",NULL,'your_turn',$gameid,".DB_quote_smart($message).")");
1256 DB_query("INSERT INTO digest_email VALUES (NULL,".DB_quote_smart($To).",NULL,'misc',NULL,".DB_quote_smart($message).")");
1260 function DB_get_digest_users()
1264 $result = DB_query("SELECT user_id FROM User_Prefs WHERE pref_key='digest' and value <> 'digest-off'");
1265 while($r = DB_fetch_array($result))
1271 function DB_get_digest_message_by_email($email)
1273 $messages = array();
1275 $result = DB_query("SELECT id,content,type,game_id FROM digest_email Where email='$email'");
1276 while($r = DB_fetch_array($result))
1282 function DB_digest_delete_message($id)
1284 DB_query("Delete from digest_email where id='$id'");