2 /* make sure that we are not called from outside the scripts,
3 * use a variable defined in config.php to check this
14 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
15 $DB = @mysql_connect($DB_host,$DB_user, $DB_password);
18 mysql_select_db($DB_database) or die('Could not select database');
33 function DB_quote_smart($value)
36 if (get_magic_quotes_gpc()) {
37 $value = stripslashes($value);
39 /* Quote if not a number or a numeric string */
40 if (!is_numeric($value)) {
41 $value = "'" . mysql_real_escape_string($value) . "'";
48 $result = DB_query("SELECT * FROM User");
49 while($r = DB_fetch_array($result))
58 /* use Mysql in the background */
59 function DB_query($query)
61 return mysql_query($query);
64 function DB_fetch_array($result)
66 return mysql_fetch_array($result,MYSQL_NUM);
69 function DB_insert_id()
71 return mysql_insert_id();
74 function DB_num_rows($result)
76 return mysql_num_rows($result);
78 /* end Mysql functions */
80 function DB_query_array($query)
82 $result = DB_query($query);
83 $return = DB_fetch_array($result);
88 function DB_query_array_all($query)
92 $queryresult = DB_query($query);
93 while($row = DB_fetch_array($queryresult))
99 function DB_get_passwd_by_name($name)
101 $r = DB_query_array("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
109 function DB_get_passwd_by_userid($id)
111 $r = DB_query_array("SELECT password FROM User WHERE id=".DB_quote_smart($id)."");
119 function DB_check_recovery_passwords($password,$email)
121 $r = DB_query_array("SELECT User.id FROM User".
122 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
123 " WHERE email=".DB_quote_smart($email).
124 " AND Recovery.password=".DB_quote_smart($password).
125 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
132 function DB_get_handid($type,$var1='',$var2='')
137 $r = DB_query_array("SELECT id FROM Hand WHERE hash=".DB_quote_smart($var1));
139 case 'gameid-position':
140 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
141 DB_quote_smart($var1)." AND position=".
142 DB_quote_smart($var2));
144 case 'gameid-userid':
145 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
146 DB_quote_smart($var1)." AND user_id=".
147 DB_quote_smart($var2));
157 function DB_get_pos_by_hash($hash)
159 $r= DB_query_array("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
167 function DB_get_status_by_hash($hash)
169 $r= DB_query_array("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
177 function DB_set_game_status_by_gameid($id,$status)
179 DB_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
183 function DB_set_sickness_by_gameid($id,$status)
185 DB_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
188 function DB_get_sickness_by_gameid($id)
190 $r = DB_query_array("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
198 function DB_get_game_status_by_gameid($id)
200 $r = DB_query_array("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
208 function DB_set_hand_status_by_hash($hash,$status)
210 DB_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
214 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
216 $r = DB_query_array("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
217 " AND game_id=".DB_quote_smart($gid));
224 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
226 $r = DB_query_array("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
227 " AND game_id=".DB_quote_smart($gid));
234 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
236 $r = DB_query_array("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
237 " AND game_id=".DB_quote_smart($gid));
244 function DB_get_gameid_by_hash($hash)
246 $r = DB_query_array("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
254 function DB_cancel_game($hash)
256 $gameid = DB_get_gameid_by_hash($hash);
261 /* get the IDs of all players */
262 $result = DB_query("SELECT id FROM Hand WHERE game_id=".DB_quote_smart($gameid));
263 while($r = DB_fetch_array($result))
267 $tmp = DB_query_array("SELECT id FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
268 DB_query("DELETE FROM Play WHERE hand_card_id=".DB_quote_smart($tmp[0]));
270 DB_query("DELETE FROM Hand_Card WHERE hand_id=".DB_quote_smart($id));
271 DB_query("DELETE FROM Hand WHERE id=".DB_quote_smart($id));
275 DB_query("DELETE FROM User_Game_Prefs WHERE game_id=".DB_quote_smart($gameid));
276 DB_query("DELETE FROM Trick WHERE game_id=".DB_quote_smart($gameid));
277 DB_query("DELETE FROM Game WHERE id=".DB_quote_smart($gameid));
282 function DB_get_hand($me)
286 $handid = DB_get_handid('hash',$me);
288 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
289 while($r = DB_fetch_array($result))
295 function DB_get_all_hand($me)
299 $handid = DB_get_handid('hash',$me);
301 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
302 while($r = DB_fetch_array($result))
308 function DB_get_cards_by_trick($id)
313 $result = DB_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
314 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
316 DB_quote_smart($id)." ORDER BY sequence ASC");
317 while($r = DB_fetch_array($result))
319 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
327 function DB_set_solo_by_hash($hash,$solo)
329 DB_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
333 function DB_set_solo_by_gameid($id,$solo)
335 DB_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
339 function DB_set_sickness_by_hash($hash,$sickness)
341 DB_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
345 function DB_get_current_trickid($gameid)
351 $result = DB_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
352 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
353 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
354 "GROUP BY Trick.id");
355 while( $r = DB_fetch_array($result) )
362 if(!$sequence || $sequence==4)
364 DB_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).",NULL)");
365 $trickid = DB_insert_id();
374 return array($trickid,$sequence,$number);
377 function DB_get_max_trickid($gameid)
379 $r = DB_query_array("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
381 return ($r?$r[0]:NULL);
384 function DB_play_card($trickid,$handcardid,$sequence)
386 DB_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
387 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
389 $playid = DB_insert_id();
393 function DB_get_all_names_by_gameid($id)
397 $result = DB_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
398 DB_quote_smart($id)." ORDER BY position ASC");
399 while($r = DB_fetch_array($result))
405 function DB_get_all_userid_by_gameid($id)
409 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
410 DB_quote_smart($id)." ORDER BY position ");
411 while($r = DB_fetch_array($result))
417 function DB_get_hash_from_game_and_pos($id,$pos)
419 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
427 function DB_get_hash_from_gameid_and_userid($id,$user)
429 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
437 function DB_get_all_names()
441 $result = DB_query("SELECT fullname FROM User");
443 while($r = DB_fetch_array($result))
449 function DB_get_all_user_names_open_for_games()
453 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
454 DB_query("CREATE TEMPORARY TABLE Usertmp SELECT id,fullname FROM User;");
455 DB_query("DELETE FROM Usertmp WHERE id IN (SELECT user_id FROM User_Prefs WHERE pref_key='open for games' and value='no')");
457 $result = DB_query("SELECT fullname FROM Usertmp");
458 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
460 while($r = DB_fetch_array($result))
466 function DB_get_names_of_last_logins($N)
470 $result = DB_query("SELECT fullname FROM User ORDER BY last_login DESC LIMIT $N");
471 while($r = DB_fetch_array($result))
477 function DB_get_names_of_new_logins($N)
481 $result = DB_query("SELECT fullname FROM User ORDER BY create_date DESC, id DESC LIMIT $N");
482 while($r = DB_fetch_array($result))
488 function DB_update_game_timestamp($gameid)
490 DB_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
495 function DB_update_user_timestamp($userid)
497 DB_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
501 function DB_get_user_timestamp($userid)
503 $r = DB_query_array("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
510 function DB_get_user_timezone($userid)
512 $r = DB_query_array("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
517 return "Europe/London";
520 function DB_insert_comment($comment,$playid,$userid)
522 DB_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid, ".DB_quote_smart($comment).")");
527 function DB_insert_note($comment,$gameid,$userid)
529 DB_query("INSERT INTO Notes VALUES (NULL,NULL,NULL,$userid,$gameid, ".DB_quote_smart($comment).")");
534 function DB_get_notes_by_userid_and_gameid($userid,$gameid)
538 $result = DB_query("SELECT comment FROM Notes WHERE user_id=".DB_quote_smart($userid) .
539 " AND game_id=".DB_quote_smart($gameid));
541 while($r = DB_fetch_array($result))
548 function DB_get_gametype_by_gameid($id)
550 $r = DB_query_array("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
558 function DB_set_gametype_by_gameid($id,$p)
560 DB_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
564 function DB_get_solo_by_gameid($id)
566 $r = DB_query_array("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
575 function DB_get_startplayer_by_gameid($id)
577 $r = DB_query_array("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
585 function DB_set_startplayer_by_gameid($id,$p)
587 DB_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
591 function DB_get_player_by_gameid($id)
593 $r = DB_query_array("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
600 function DB_set_player_by_gameid($id,$p)
602 DB_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
608 function DB_get_ruleset_by_gameid($id)
610 $r = DB_query_array("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
618 function DB_get_session_by_gameid($id)
620 $r = DB_query_array("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
628 function DB_get_max_session()
630 $r = DB_query_array("SELECT MAX(session) FROM Game");
638 function DB_get_hashes_by_session($session,$user)
642 $result = DB_query("SELECT Hand.hash FROM Hand".
643 " LEFT JOIN Game ON Game.id=Hand.game_id ".
644 " WHERE Game.session=".DB_quote_smart($session).
645 " AND Hand.user_id=".DB_quote_smart($user).
646 " ORDER BY Game.create_date ASC");
647 while($t = DB_fetch_array($result))
653 function DB_get_ruleset($dullen,$schweinchen,$call)
657 $result = DB_query("SELECT id FROM Rulesets WHERE".
658 " dullen=".DB_quote_smart($dullen)." AND ".
659 " Rulesets.call=".DB_quote_smart($call)." AND ".
660 " schweinchen=".DB_quote_smart($schweinchen));
662 $r = DB_fetch_array($result);
665 return $r[0]; /* found ruleset */
669 $result = DB_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
670 DB_quote_smart($dullen).",".
671 DB_quote_smart($schweinchen).",".
672 DB_quote_smart($call).
675 return DB_insert_id();
678 return -1; /* something went wrong */
681 function DB_get_party_by_hash($hash)
683 $r = DB_query_array("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
691 function DB_get_party_by_gameid_and_userid($gameid,$userid)
693 $r = DB_query_array("SELECT party FROM Hand".
694 " WHERE game_id=".DB_quote_smart($gameid).
695 " AND user_id=".DB_quote_smart($userid));
702 function DB_set_party_by_hash($hash,$party)
704 DB_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
708 function DB_get_PREF($myid)
711 $r = DB_query_array("SELECT value from User_Prefs".
712 " WHERE user_id='$myid' AND pref_key='cardset'" );
715 /* licence only valid until then */
716 if($r[0]=="altenburg" && (time()-strtotime( "2009-12-31 23:59:59")<0) )
717 $PREF["cardset"]="altenburg";
719 $PREF["cardset"]="english";
722 $PREF["cardset"]="english";
725 $r = DB_query_array("SELECT value FROM User_Prefs".
726 " WHERE user_id='$myid' AND pref_key='email'" );
729 if($r[0]=="emailaddict")
730 $PREF["email"]="emailaddict";
732 $PREF["email"]="emailnonaddict";
735 $PREF["email"]="emailnonaddict";
738 $r = DB_query_array("SELECT value FROM User_Prefs".
739 " WHERE user_id='$myid' AND pref_key='autosetup'" );
743 $PREF['autosetup']='yes';
745 $PREF['autosetup']='no';
748 $PREF['autosetup']='no';
751 $r = DB_query_array("SELECT value FROM User_Prefs".
752 " WHERE user_id='$myid' AND pref_key='sorting'" );
754 $PREF['sorting'] = $r[0];
756 $PREF['sorting']='high-low';
758 /* Open for new games */
759 $r = DB_query_array("SELECT value FROM User_Prefs".
760 " WHERE user_id='$myid' AND pref_key='open for games'" );
762 $PREF['open_for_games'] = $r[0];
764 $PREF['open_for_games']='yes';
770 function DB_get_RULES($gameid)
772 $r = DB_query_array("SELECT * FROM Rulesets".
773 " LEFT JOIN Game ON Game.ruleset=Rulesets.id ".
774 " WHERE Game.id='$gameid'" );
776 $RULES["dullen"] = $r[2];
777 $RULES["schweinchen"] = $r[3];
778 $RULES["call"] = $r[4];
783 function DB_get_email_pref_by_hash($hash)
785 $r = DB_query_array("SELECT value FROM Hand".
786 " LEFT JOIN User_Prefs ON Hand.user_id=User_Prefs.user_id".
787 " WHERE hash='$hash' AND pref_key='email'" );
790 if($r[0]=="emailaddict")
791 return "emailaddict";
793 return "emailnonaddict";
796 return "emailnonaddict";
799 function DB_get_email_pref_by_uid($uid)
801 $r = DB_query_array("SELECT value FROM User_Prefs ".
802 " WHERE user_id='$uid' AND pref_key='email'" );
805 if($r[0]=="emailaddict")
806 return "emailaddict";
808 return "emailnonaddict";
811 return "emailnonaddict";
814 function DB_get_unused_randomnumbers($userstr)
816 /* optimized version of this query using temporary tables (perhaps we should use a procedure here?).
817 First we create a copy of the Game table using just the gameid and the cards.
818 Then in a second round we delete all the gameids of games where our players are in.
819 At the end we return only the first entry in the temporary table.
821 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
822 DB_query("CREATE TEMPORARY TABLE gametmp SELECT id,randomnumbers FROM Game;");
823 DB_query("DELETE FROM gametmp WHERE id IN (SELECT game_id FROM Hand WHERE user_id IN (".$userstr."));");
825 $r = DB_query_array("SELECT randomnumbers FROM gametmp LIMIT 1;");
826 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
834 function DB_get_number_of_passwords_recovery($user)
836 $r = DB_query_array("SELECT COUNT(*) FROM Recovery ".
837 " WHERE user_id=$user ".
838 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
839 " GROUP BY user_id " );
846 function DB_set_recovery_password($user,$newpw)
848 DB_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
849 ",".DB_quote_smart($newpw).",NULL)");
853 function DB_get_card_name($card)
855 $r = DB_query_array("SELECT strength,suite FROM Card WHERE id='$card'");
858 return $r[0]." of ".$r[1];
860 return "Error during get_card_name ".$card;
863 function DB_get_current_playid($gameid)
865 $trick = DB_get_max_trickid($gameid);
867 if(!$trick) return NULL;
869 $r = DB_query_array("SELECT id FROM Play WHERE trick_id='$trick' ORDER BY create_date DESC LIMIT 1");
877 function DB_get_call_by_hash($hash)
879 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash='$hash'");
887 function DB_get_partner_call_by_hash($hash)
889 $partner = DB_get_partner_hash_by_hash($hash);
893 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash='$partner'");
902 function DB_get_partner_hash_by_hash($hash)
904 $gameid = DB_get_gameid_by_hash($hash);
905 $party = DB_get_party_by_hash($hash);
907 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id='$gameid' AND party='$party' AND hash<>'$hash'");
915 function DB_format_gameid($gameid)
917 $session = DB_get_session_by_gameid($gameid);
919 /* get number of game */
920 $r = DB_query_array("SELECT SUM(TIME_TO_SEC(TIMEDIFF(create_date, (SELECT create_date FROM Game WHERE id='$gameid')))<=0) ".
922 " WHERE session='$session' ");
923 return $session.".".$r[0];
926 function DB_get_reminder($user,$gameid)
928 $r = DB_query_array("SELECT COUNT(*) FROM Reminder ".
929 " WHERE user_id=$user ".
930 " AND game_id=$gameid ".
931 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
932 " GROUP BY user_id " );
939 function DB_set_reminder($user,$gameid)
941 DB_query("INSERT INTO Reminder ".
942 " VALUES(NULL, ".DB_quote_smart($user).", ".DB_quote_smart($gameid).
947 function DB_is_session_active($session)
949 $r = DB_query_array("SELECT COUNT(*) FROM Game ".
950 " WHERE session=$session ".
951 " AND status<>'gameover' ");
958 function DB_get_score_by_gameid($gameid)
960 /* returns the points of a game from the point of the re parth (<0 if they lost) */
961 $queryresult = DB_query("SELECT COUNT(*),party FROM Score ".
962 " WHERE game_id=$gameid ".
967 while($r = DB_fetch_array($queryresult) )
971 else if ($r[1] == "contra")
975 return ($re - $contra);
978 function DB_get_gameids_of_finished_games_by_session($session)
982 if($session==0) /* return all games */
983 $queryresult = DB_query("SELECT id FROM Game ".
984 " WHERE status='gameover' ".
985 " ORDER BY create_date ASC");
986 else /* return games in a session */
987 $queryresult = DB_query("SELECT id FROM Game ".
988 " WHERE session=$session ".
989 " AND status='gameover' ".
990 " ORDER BY create_date ASC");
993 while($r = DB_fetch_array($queryresult) )
1002 function DB_get_card_value_by_cardid($id)
1004 $r = DB_query_array("SELECT points FROM Card ".
1013 function DB_get_userid($type,$var1="",$var2="")
1015 /* get the userid of a user
1016 * this can be done several ways, which are all handled below
1017 * if a email/password combination is given and it doesn't work, we also
1018 * need to check the recovery table for additional passwords
1026 $result = DB_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($var1));
1029 $result = DB_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($var1));
1032 $result = DB_query("SELECT id FROM User WHERE password=".DB_quote_smart($var1));
1035 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1));
1037 case 'email-password':
1038 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1)." AND password=".DB_quote_smart($var2));
1039 $r = DB_fetch_array($result);
1040 /* test if a recovery password has been set */
1043 echo "testing alternative password";
1044 $result = DB_query("SELECT User.id FROM User".
1045 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
1046 " WHERE email=".DB_quote_smart($var1).
1047 " AND Recovery.password=".DB_quote_smart($var2).
1048 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
1051 case 'gameid-position':
1052 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
1053 DB_quote_smart($var1)." AND position=".
1054 DB_quote_smart($var2));
1059 $r = DB_fetch_array($result);
1067 function DB_get_email($type,$var1='',$var2='')
1069 /* return the email of a user
1070 * this is used for sending out emails, but also for
1071 * testing the login for example
1076 $result = DB_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($var1)."");
1079 $result = DB_query("SELECT email FROM User WHERE id=".DB_quote_smart($var1)."");
1082 $result = DB_query("SELECT User.email FROM User ".
1083 "LEFT JOIN Hand ON Hand.user_id=User.id ".
1084 "WHERE Hand.hash=".DB_quote_smart($var1)."");
1086 case 'position-gameid':
1087 $result = DB_query("SELECT email FROM User ".
1088 "LEFT JOIN Hand ON User.id=Hand.user_id ".
1089 "LEFT JOIN Game ON Game.id=Hand.game_id ".
1090 "WHERE Game.id=".DB_quote_smart($var2)." ".
1091 "AND Hand.position=".DB_quote_smart($var1)."");
1095 $r = DB_fetch_array($result);
1103 function DB_get_name($type,$var1='')
1105 /* get the full name of a user
1106 * a user can be uniquely identified several ways
1111 $r = DB_query_array("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($var1));
1114 $r = DB_query_array("SELECT fullname FROM User WHERE email=".DB_quote_smart($var1));
1117 $r = DB_query_array("SELECT fullname FROM User WHERE id=".DB_quote_smart($var1));
1126 function DB_add_exchanged_card($card,$old_hand_id,$new_hand_id)
1128 DB_query("INSERT INTO Card_Exchange VALUES (NULL,$new_hand_id,$old_hand_id,$card)");
1132 function DB_get_exchanged_cards($hash)
1136 $handid = DB_get_handid('hash',$hash);
1138 $result = DB_query("SELECT card_id FROM Card_Exchange WHERE orig_hand_id=".DB_quote_smart($handid));
1139 while($r = DB_fetch_array($result))
1145 function DB_played_by_others($gameid)
1148 $result = DB_query("SELECT id FROM Game WHERE randomnumbers=(SELECT randomnumbers FROM Game WHERE id=$gameid) AND status='gameover'");
1149 while($r = DB_fetch_array($result))