2 /* Copyright 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013 Arun Persaud <arun@nubati.net>
4 * This file is part of e-DoKo.
6 * e-DoKo is free software: you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation, either version 3 of the License, or
9 * (at your option) any later version.
11 * e-DoKo is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with e-DoKo. If not, see <http://www.gnu.org/licenses/>.
21 /* make sure that we are not called from outside the scripts,
22 * use a variable defined in config.php to check this
35 global $DB,$DB_user,$DB_host,$DB_database,$DB_password;
36 $DB = new mysqli($DB_host,$DB_user, $DB_password, $DB_database);
37 if ( $DB->connect_errno )
39 echo "Failed to connect to Mysql ".$DB->connect_error." (".$DB->connect_errno.")\n";
43 $version = DB_get_version();
44 if ($version != $version_needed)
57 function DB_quote_smart($value)
61 if (get_magic_quotes_gpc()) {
62 $value = stripslashes($value);
64 /* Quote if not a number or a numeric string */
65 if (!is_numeric($value)) {
66 $value = "'" . $DB->real_escape_string($value) . "'";
67 $value = addcslashes($value, '%_');
74 $result = DB_query("SELECT * FROM User");
75 while($r = DB_fetch_array($result))
84 /* use Mysql in the background */
85 function DB_query($query)
88 /* debug/optimize the database
90 $return = $DB->query($query);
91 $time = microtime() - $time;
93 if($time > 0.15) // this way we can find only the long ones
95 $logfile=fopen('DBlog.log','a+');
96 fwrite($logfile,"time of query: $time\n");
97 fwrite($logfile,wordwrap(" EXPLAIN $query ;\n", 60, "\n "));
100 $queryresult = mysql_query("EXPLAIN $query ;");
102 while($row = DB_fetch_array($queryresult))
103 $result .= " |".implode("|",$row)."|\n";
105 fwrite($logfile,"$result \n\n");
112 return $DB->query($query);
115 function DB_fetch_array($result)
118 return $result->fetch_array(MYSQLI_NUM);
123 function DB_insert_id()
126 return $DB->insert_id;
128 /* end Mysql functions */
130 function DB_query_array($query)
132 $result = DB_query($query);
133 $return = DB_fetch_array($result);
138 function DB_query_array_all($query)
142 $queryresult = DB_query($query);
143 while($row = DB_fetch_array($queryresult))
149 function DB_get_version()
151 $version = DB_query_array('SELECT version FROM Version');
155 function DB_get_passwd_by_userid($id)
157 $r = DB_query_array("SELECT password FROM User WHERE id=".DB_quote_smart($id)."");
165 function DB_check_recovery_passwords($password,$email)
167 $r = DB_query_array("SELECT User.id FROM User".
168 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
169 " WHERE email=".DB_quote_smart($email).
170 " AND Recovery.password=".DB_quote_smart($password).
171 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
178 function DB_get_handid($type,$var1='',$var2='')
183 $r = DB_query_array("SELECT id FROM Hand WHERE hash=".DB_quote_smart($var1));
185 case 'gameid-position':
186 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
187 DB_quote_smart($var1)." AND position=".
188 DB_quote_smart($var2));
190 case 'gameid-userid':
191 $r = DB_query_array("SELECT id FROM Hand WHERE game_id=".
192 DB_quote_smart($var1)." AND user_id=".
193 DB_quote_smart($var2));
203 function DB_get_pos_by_hash($hash)
205 $r= DB_query_array("SELECT position FROM Hand WHERE hash=".DB_quote_smart($hash));
213 function DB_get_status_by_hash($hash)
215 $r= DB_query_array("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
223 function DB_set_game_status_by_gameid($id,$status)
225 DB_query("UPDATE Game SET status='".$status."' WHERE id=".DB_quote_smart($id));
229 function DB_set_sickness_by_gameid($id,$status)
231 DB_query("UPDATE Game SET sickness='".$status."' WHERE id=".DB_quote_smart($id));
234 function DB_get_sickness_by_gameid($id)
236 $r = DB_query_array("SELECT sickness FROM Game WHERE id=".DB_quote_smart($id));
244 function DB_get_game_status_by_gameid($id)
246 $r = DB_query_array("SELECT status FROM Game WHERE id=".DB_quote_smart($id));
254 function DB_set_hand_status_by_hash($hash,$status)
256 DB_query("UPDATE Hand SET status='".$status."' WHERE hash=".DB_quote_smart($hash));
260 function DB_get_hand_status_by_userid_and_gameid($uid,$gid)
262 $r = DB_query_array("SELECT status FROM Hand WHERE user_id=".DB_quote_smart($uid).
263 " AND game_id=".DB_quote_smart($gid));
270 function DB_get_sickness_by_userid_and_gameid($uid,$gid)
272 $r = DB_query_array("SELECT sickness FROM Hand WHERE user_id=".DB_quote_smart($uid).
273 " AND game_id=".DB_quote_smart($gid));
280 function DB_get_sickness_by_pos_and_gameid($pos,$gid)
282 $r = DB_query_array("SELECT sickness FROM Hand WHERE position=".DB_quote_smart($pos).
283 " AND game_id=".DB_quote_smart($gid));
290 function DB_get_gameid_by_hash($hash)
292 $r = DB_query_array("SELECT game_id FROM Hand WHERE hash=".DB_quote_smart($hash));
300 function DB_get_hand($me)
304 $handid = DB_get_handid('hash',$me);
306 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
307 while($r = DB_fetch_array($result))
313 function DB_get_all_hand($me)
317 $handid = DB_get_handid('hash',$me);
319 $result = DB_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
320 while($r = DB_fetch_array($result))
326 function DB_get_cards_by_trick($id)
331 $result = DB_query("SELECT card_id,position FROM Play LEFT JOIN Hand_Card ON Hand_Card.id=Play.hand_card_id ".
332 "LEFT JOIN Hand ON Hand.id=Hand_Card.hand_id ".
334 DB_quote_smart($id)." ORDER BY sequence ASC");
335 while($r = DB_fetch_array($result))
337 $cards[$i]=array("card"=>$r[0],"pos"=>$r[1]);
345 function DB_set_solo_by_hash($hash,$solo)
347 DB_query("UPDATE Hand SET solo=".DB_quote_smart($solo)." WHERE hash=".DB_quote_smart($hash));
351 function DB_set_solo_by_gameid($id,$solo)
353 DB_query("UPDATE Game SET solo=".DB_quote_smart($solo)." WHERE id=".DB_quote_smart($id));
357 function DB_set_sickness_by_hash($hash,$sickness)
359 DB_query("UPDATE Hand SET sickness=".DB_quote_smart($sickness)." WHERE hash=".DB_quote_smart($hash));
363 function DB_get_current_trickid($gameid)
369 $result = DB_query("SELECT Trick.id,MAX(Play.sequence) FROM Play ".
370 "LEFT JOIN Trick ON Play.trick_id=Trick.id ".
371 "WHERE Trick.game_id=".DB_quote_smart($gameid)." ".
372 "GROUP BY Trick.id");
373 while( $r = DB_fetch_array($result) )
380 if(!$sequence || $sequence==4)
382 DB_query("INSERT INTO Trick VALUES (NULL,NULL,NULL, ".DB_quote_smart($gameid).",NULL)");
383 $trickid = DB_insert_id();
392 return array($trickid,$sequence,$number);
395 function DB_get_max_trickid($gameid)
397 $r = DB_query_array("SELECT MAX(id) FROM Trick WHERE game_id=".DB_quote_smart($gameid));
399 return ($r?$r[0]:NULL);
402 function DB_play_card($trickid,$handcardid,$sequence)
404 DB_query("INSERT INTO Play VALUES(NULL,NULL,NULL,".DB_quote_smart($trickid).
405 ",".DB_quote_smart($handcardid).",".DB_quote_smart($sequence).")");
407 $playid = DB_insert_id();
411 function DB_get_all_names_by_gameid($id)
415 $result = DB_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE game_id=".
416 DB_quote_smart($id)." ORDER BY position ASC");
417 while($r = DB_fetch_array($result))
423 function DB_get_all_userid_by_gameid($id)
427 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
428 DB_quote_smart($id)." ORDER BY position ");
429 while($r = DB_fetch_array($result))
435 function DB_get_hash_from_game_and_pos($id,$pos)
437 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and position=".DB_quote_smart($pos));
445 function DB_get_hash_from_gameid_and_userid($id,$user)
447 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($id)." and user_id=".DB_quote_smart($user));
455 function DB_get_all_names()
459 $result = DB_query("SELECT fullname FROM User");
461 while($r = DB_fetch_array($result))
467 function DB_get_all_user_names_open_for_games()
471 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
472 DB_query("CREATE TEMPORARY TABLE Usertmp SELECT id,fullname FROM User;");
473 DB_query("DELETE FROM Usertmp WHERE id IN (SELECT user_id FROM User_Prefs WHERE pref_key='open for games' and value='no')");
475 $result = DB_query("SELECT fullname FROM Usertmp");
476 DB_query("DROP TEMPORARY TABLE IF EXISTS Usertmp;");
478 while($r = DB_fetch_array($result))
484 function DB_get_names_of_last_logins($N)
488 $result = DB_query("SELECT fullname FROM User ORDER BY last_login DESC LIMIT $N");
489 while($r = DB_fetch_array($result))
495 function DB_get_emails_of_last_logins($N)
499 $result = DB_query("SELECT email FROM User ORDER BY last_login DESC LIMIT $N");
500 while($r = DB_fetch_array($result))
506 function DB_get_names_of_new_logins($N)
510 $result = DB_query("SELECT fullname FROM User ORDER BY create_date DESC, id DESC LIMIT $N");
511 while($r = DB_fetch_array($result))
517 function DB_update_game_timestamp($gameid)
519 DB_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
523 function DB_get_game_timestamp($gameid)
525 $r = DB_query_array("SELECT mod_date FROM Game WHERE id=".DB_quote_smart($gameid));
533 function DB_update_user_timestamp($userid)
535 DB_query("UPDATE User SET last_login = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($userid));
539 function DB_get_user_timestamp($userid)
541 $r = DB_query_array("SELECT last_login FROM User WHERE id=".DB_quote_smart($userid));
549 function DB_get_user_creation_date($userid)
551 $r = DB_query_array("SELECT create_date FROM User WHERE id=".DB_quote_smart($userid));
559 function DB_get_user_timezone($userid)
561 $r = DB_query_array("SELECT timezone FROM User WHERE id=".DB_quote_smart($userid));
566 return "Europe/London";
569 function DB_insert_comment($comment,$playid,$gameid,$userid)
571 DB_query("INSERT INTO Comment VALUES (NULL,NULL,NULL,$userid,$playid,$gameid, ".DB_quote_smart($comment).")");
576 function DB_get_pre_comment($gameid)
578 $r = DB_query_array_all("SELECT comment, User.fullname FROM Comment".
579 " LEFT JOIN User ON User.id=user_id".
581 " AND game_id=$gameid ");
585 function DB_get_pre_comment_call($gameid)
587 $r = DB_query_array_all("SELECT comment, User.fullname FROM Comment".
588 " LEFT JOIN User ON User.id=user_id".
590 " AND game_id=$gameid ");
594 function DB_insert_note($comment,$gameid,$userid)
596 DB_query("INSERT INTO Notes VALUES (NULL,NULL,NULL,$userid,$gameid, ".DB_quote_smart($comment).")");
601 function DB_get_notes_by_userid_and_gameid($userid,$gameid)
605 $result = DB_query("SELECT comment FROM Notes WHERE user_id=".DB_quote_smart($userid) .
606 " AND game_id=".DB_quote_smart($gameid));
608 while($r = DB_fetch_array($result))
615 function DB_get_gametype_by_gameid($id)
617 $r = DB_query_array("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
625 function DB_set_gametype_by_gameid($id,$p)
627 DB_query("UPDATE Game SET type='".$p."' WHERE id=".DB_quote_smart($id));
631 function DB_get_solo_by_gameid($id)
633 $r = DB_query_array("SELECT solo FROM Game WHERE id=".DB_quote_smart($id));
642 function DB_get_startplayer_by_gameid($id)
644 $r = DB_query_array("SELECT startplayer FROM Game WHERE id=".DB_quote_smart($id));
652 function DB_set_startplayer_by_gameid($id,$p)
654 DB_query("UPDATE Game SET startplayer='".$p."' WHERE id=".DB_quote_smart($id));
658 function DB_get_player_by_gameid($id)
660 $r = DB_query_array("SELECT player FROM Game WHERE id=".DB_quote_smart($id));
667 function DB_set_player_by_gameid($id,$p)
669 DB_query("UPDATE Game SET player='".DB_quote_smart($p)."' WHERE id=".DB_quote_smart($id));
675 function DB_get_ruleset_by_gameid($id)
677 $r = DB_query_array("SELECT ruleset FROM Game WHERE id=".DB_quote_smart($id));
685 function DB_get_session_by_gameid($id)
687 $r = DB_query_array("SELECT session FROM Game WHERE id=".DB_quote_smart($id));
695 function DB_get_max_session()
697 $r = DB_query_array("SELECT MAX(session) FROM Game");
705 function DB_get_hashes_by_session($session,$user)
709 $result = DB_query("SELECT Hand.hash FROM Hand".
710 " LEFT JOIN Game ON Game.id=Hand.game_id ".
711 " WHERE Game.session=".DB_quote_smart($session).
712 " AND Hand.user_id=".DB_quote_smart($user).
713 " ORDER BY Game.create_date ASC");
714 while($t = DB_fetch_array($result))
720 function DB_get_ruleset($dullen,$schweinchen,$call,$lowtrump)
724 $result = DB_query("SELECT id FROM Rulesets WHERE".
725 " dullen=".DB_quote_smart($dullen)." AND ".
726 " Rulesets.call=".DB_quote_smart($call)." AND ".
727 " schweinchen=".DB_quote_smart($schweinchen)." AND ".
728 " lowtrump=".DB_quote_smart($lowtrump));
730 $r = DB_fetch_array($result);
733 return $r[0]; /* found ruleset */
737 $result = DB_query("INSERT INTO Rulesets VALUES (NULL, NULL, ".
738 DB_quote_smart($dullen).",".
739 DB_quote_smart($schweinchen).",".
740 DB_quote_smart($lowtrump).",".
741 DB_quote_smart($call).
744 return DB_insert_id();
747 return -1; /* something went wrong */
750 function DB_get_party_by_hash($hash)
752 $r = DB_query_array("SELECT party FROM Hand WHERE hash=".DB_quote_smart($hash));
760 function DB_get_party_by_gameid_and_userid($gameid,$userid)
762 $r = DB_query_array("SELECT party FROM Hand".
763 " WHERE game_id=".DB_quote_smart($gameid).
764 " AND user_id=".DB_quote_smart($userid));
771 function DB_get_party_by_session_and_userid($session,$userid)
773 /* used in score table by index. gameids are sorted by date, so we need to sort here too! */
774 $r = DB_query_array_all("SELECT party FROM Hand".
775 " LEFT JOIN Game ON Game.id = Hand.game_id".
776 " WHERE Game.session=".DB_quote_smart($session).
777 " AND user_id=".DB_quote_smart($userid)."".
778 " AND Game.status='gameover' ".
779 " ORDER BY Game.create_date ASC");
783 function DB_set_party_by_hash($hash,$party)
785 DB_query("UPDATE Hand SET party=".DB_quote_smart($party)." WHERE hash=".DB_quote_smart($hash));
789 function DB_get_PREF($myid)
792 $PREF['cardset'] = 'english';
793 $PREF['email'] = 'emailnonaddict';
794 $PREF['digest'] = 'digest-off';
795 $PREF['autosetup'] = 'no';
796 $PREF['sorting'] = 'high-low';
797 $PREF['open_for_games'] = 'yes';
798 $PREF['vacation_start'] = NULL;
799 $PREF['vacation_stop'] = NULL;
800 $PREF['vacation_comment'] = '';
801 $PREF['language'] = 'en';
803 /* get all preferences */
804 $r = DB_query('SELECT pref_key, value FROM User_Prefs'.
805 " WHERE user_id=".DB_quote_smart($myid) );
806 while($pref = DB_fetch_array($r) )
814 if($pref[1]=='emailaddict')
815 $PREF['email']='emailaddict';
820 $PREF['digest'] = $pref[1];
825 $PREF['autosetup']='yes';
830 $PREF['sorting'] = $pref[1];
833 case 'open for games':
835 $PREF['open_for_games'] = $pref[1];
838 case 'vacation start':
840 $PREF['vacation_start'] = $pref[1];
843 case 'vacation stop':
845 $PREF['vacation_stop'] = $pref[1];
848 case 'vacation comment':
850 $PREF['vacation_comment'] = $pref[1];
855 $PREF['language'] = $pref[1];
863 function DB_get_RULES($gameid)
865 $r = DB_query_array("SELECT * FROM Rulesets".
866 " LEFT JOIN Game ON Game.ruleset=Rulesets.id ".
867 " WHERE Game.id=".DB_quote_smart($gameid) );
869 $RULES['dullen'] = $r[2];
870 $RULES['schweinchen'] = $r[3];
871 $RULES['lowtrump'] = $r[4];
872 $RULES['call'] = $r[5];
877 function DB_get_email_pref_by_hash($hash)
879 $r = DB_query_array("SELECT value FROM Hand".
880 " LEFT JOIN User_Prefs ON Hand.user_id=User_Prefs.user_id".
881 " WHERE hash=".DB_quote_smart($hash)." AND pref_key='email'" );
884 if($r[0]=="emailaddict")
885 return "emailaddict";
887 return "emailnonaddict";
890 return "emailnonaddict";
893 function DB_get_email_pref_by_uid($uid)
895 $r = DB_query_array("SELECT value FROM User_Prefs ".
896 " WHERE user_id=".DB_quote_smart($uid)." AND pref_key='email'" );
899 if($r[0]=="emailaddict")
900 return "emailaddict";
902 return "emailnonaddict";
905 return "emailnonaddict";
908 function DB_get_unused_randomnumbers($userstr)
910 /* optimized version of this query using temporary tables (perhaps we should use a procedure here?).
911 First we create a copy of the Game table using just the gameid and the cards.
912 Then in a second round we delete all the gameids of games where our players are in.
913 At the end we return only the first entry in the temporary table.
915 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
916 DB_query("CREATE TEMPORARY TABLE gametmp SELECT id,randomnumbers FROM Game;");
917 DB_query("DELETE FROM gametmp WHERE randomnumbers IN (SELECT randomnumbers FROM Hand LEFT JOIN Game ON Game.id=game_id WHERE user_id IN (".$userstr."));");
919 $r = DB_query_array("SELECT randomnumbers FROM gametmp LIMIT 1;");
920 DB_query("DROP TEMPORARY TABLE IF EXISTS gametmp;");
928 function DB_get_number_of_passwords_recovery($user)
930 $r = DB_query_array("SELECT COUNT(*) FROM Recovery ".
931 " WHERE user_id=".DB_quote_smart($user).
932 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
933 " GROUP BY user_id " );
940 function DB_set_recovery_password($user,$newpw)
942 DB_query("INSERT INTO Recovery VALUES(NULL,".DB_quote_smart($user).
943 ",".DB_quote_smart($newpw).",NULL)");
947 function DB_delete_recovery_passwords($userid)
949 DB_query("DELETE FROM Recovery WHERE user_id=".DB_quote_smart($userid));
953 function DB_get_card_name($card)
958 $r = DB_query_array("SELECT strength,suite FROM Card WHERE id=".DB_quote_smart($card));
961 return $r[0]." of ".$r[1];
963 return "Error during get_card_name ".$card;
966 function DB_get_current_playid($gameid)
968 /* return playid or -1 for pre-game phase */
969 $trick = DB_get_max_trickid($gameid);
971 if(!$trick) return -1;
973 $r = DB_query_array("SELECT id FROM Play WHERE trick_id=".DB_quote_smart($trick)." ORDER BY create_date DESC LIMIT 1");
981 function DB_get_call_by_hash($hash)
983 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash=".DB_quote_smart($hash));
991 function DB_get_partner_call_by_hash($hash)
993 $partner = DB_get_partner_hash_by_hash($hash);
997 $r = DB_query_array("SELECT point_call FROM Hand WHERE hash=".DB_quote_smart($partner));
1006 function DB_get_partner_hash_by_hash($hash)
1008 $gameid = DB_get_gameid_by_hash($hash);
1009 $party = DB_get_party_by_hash($hash);
1011 $r = DB_query_array("SELECT hash FROM Hand WHERE game_id=".DB_quote_smart($gameid).
1012 " AND party=".DB_quote_smart($party)." AND hash<>".DB_quote_smart($hash));
1020 function DB_format_gameid($gameid)
1022 /* get session and create date */
1023 $r = DB_query_array("SELECT session, create_date FROM Game WHERE id=".DB_quote_smart($gameid));
1027 /* get number of game */
1028 $r = DB_query_array("SELECT SUM(TIME_TO_SEC(TIMEDIFF(create_date, '$date'))<=0) ".
1030 " WHERE session=".DB_quote_smart($session));
1031 return $session.'.'.$r[0];
1034 function DB_get_reminder($user,$gameid)
1036 $r = DB_query_array("SELECT COUNT(*) FROM Reminder ".
1037 " WHERE user_id=".DB_quote_smart($user).
1038 " AND game_id=".DB_quote_smart($gameid).
1039 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= create_date".
1040 " GROUP BY user_id " );
1047 function DB_set_reminder($user,$gameid)
1049 DB_query("INSERT INTO Reminder ".
1050 " VALUES(NULL, ".DB_quote_smart($user).", ".DB_quote_smart($gameid).
1055 function DB_is_session_active($session)
1057 $r = DB_query_array("SELECT COUNT(*) FROM Game ".
1058 " WHERE session=$session ".
1059 " AND status IN ('pre','play') ");
1066 function DB_get_gameids_of_finished_games_by_session($session)
1070 if($session==0) /* return all games */
1071 $queryresult = DB_query_array_all("SELECT Game.id,SUM(IF(STRCMP(Score.party,'re'),-1,1)),Game.type FROM Game ".
1072 " LEFT JOIN Score on game_id=Game.id".
1073 " WHERE status='gameover' ".
1074 " GROUP BY Game.id");
1075 else /* return games in a session */
1076 $queryresult = DB_query_array_all("SELECT Game.id,SUM(IF(STRCMP(Score.party,'re'),-1,1)),Game.type FROM Game ".
1077 " LEFT JOIN Score on game_id=Game.id".
1078 " WHERE session=".DB_quote_smart($session).
1079 " AND status='gameover' ".
1080 " GROUP BY Game.id".
1081 " ORDER BY Game.create_date ASC");
1083 return $queryresult;
1086 function DB_get_card_value_by_cardid($id)
1088 $r = DB_query_array("SELECT points FROM Card ".
1089 " WHERE id=".DB_quote_smart($id));
1097 function DB_get_userid($type,$var1="",$var2="")
1099 /* get the userid of a user
1100 * this can be done several ways, which are all handled below
1101 * if a email/password combination is given and it doesn't work, we also
1102 * need to check the recovery table for additional passwords
1110 $result = DB_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($var1));
1113 $result = DB_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($var1));
1116 $result = DB_query("SELECT id FROM User WHERE password=".DB_quote_smart($var1));
1119 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1));
1121 case 'email-password':
1122 $result = DB_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1)." AND password=".DB_quote_smart($var2));
1123 $r = DB_fetch_array($result);
1124 /* test if a recovery password has been set */
1127 /* testing alternative password */
1128 $result = DB_query("SELECT User.id FROM User".
1129 " LEFT JOIN Recovery ON User.id=Recovery.user_id".
1130 " WHERE email=".DB_quote_smart($var1).
1131 " AND Recovery.password=".DB_quote_smart($var2).
1132 " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
1135 case 'gameid-position':
1136 $result = DB_query("SELECT user_id FROM Hand WHERE game_id=".
1137 DB_quote_smart($var1)." AND position=".
1138 DB_quote_smart($var2));
1143 $r = DB_fetch_array($result);
1151 function DB_get_email($type,$var1='',$var2='')
1153 /* return the email of a user
1154 * this is used for sending out emails, but also for
1155 * testing the login for example
1160 $result = DB_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($var1)."");
1163 $result = DB_query("SELECT email FROM User WHERE id=".DB_quote_smart($var1)."");
1166 $result = DB_query("SELECT User.email FROM User ".
1167 "LEFT JOIN Hand ON Hand.user_id=User.id ".
1168 "WHERE Hand.hash=".DB_quote_smart($var1)."");
1170 case 'position-gameid':
1171 $result = DB_query("SELECT email FROM User ".
1172 "LEFT JOIN Hand ON User.id=Hand.user_id ".
1173 "LEFT JOIN Game ON Game.id=Hand.game_id ".
1174 "WHERE Game.id=".DB_quote_smart($var2)." ".
1175 "AND Hand.position=".DB_quote_smart($var1)."");
1179 $r = DB_fetch_array($result);
1187 function DB_get_name($type,$var1='')
1189 /* get the full name of a user
1190 * a user can be uniquely identified several ways
1195 $r = DB_query_array("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($var1));
1198 $r = DB_query_array("SELECT fullname FROM User WHERE email=".DB_quote_smart($var1));
1201 $r = DB_query_array("SELECT fullname FROM User WHERE id=".DB_quote_smart($var1));
1210 function DB_add_exchanged_card($card,$old_hand_id,$new_hand_id)
1212 DB_query("INSERT INTO Card_Exchange VALUES (NULL,$new_hand_id,$old_hand_id,$card)");
1216 function DB_get_exchanged_cards($hash)
1220 $handid = DB_get_handid('hash',$hash);
1222 $result = DB_query("SELECT card_id FROM Card_Exchange WHERE orig_hand_id=".DB_quote_smart($handid));
1223 while($r = DB_fetch_array($result))
1229 function DB_played_by_others($gameid)
1232 $result = DB_query("SELECT id FROM Game WHERE randomnumbers=(SELECT randomnumbers FROM Game WHERE id=$gameid) AND status='gameover'");
1233 while($r = DB_fetch_array($result))
1239 function DB_get_number_of_tricks($gameid,$position)
1241 $r = DB_query_array("SELECT COUNT(winner) FROM Trick Where game_id='$gameid' and winner='$position'");
1245 function DB_digest_insert_email($To,$message,$type,$gameid)
1247 if($type == GAME_YOUR_TURN)
1248 DB_query("INSERT INTO digest_email VALUES (NULL,".DB_quote_smart($To).",NULL,'your_turn',$gameid,".DB_quote_smart($message).")");
1250 DB_query("INSERT INTO digest_email VALUES (NULL,".DB_quote_smart($To).",NULL,'misc',NULL,".DB_quote_smart($message).")");
1254 function DB_get_digest_users()
1258 $result = DB_query("SELECT user_id FROM User_Prefs WHERE pref_key='digest' and value <> 'digest-off'");
1259 while($r = DB_fetch_array($result))
1265 function DB_get_digest_message_by_email($email)
1267 $messages = array();
1269 $result = DB_query("SELECT id,content,type,game_id FROM digest_email Where email='$email'");
1270 while($r = DB_fetch_array($result))
1276 function DB_digest_delete_message($id)
1278 DB_query("Delete from digest_email where id='$id'");