return $value;
}
-
function DB_test()
{
$result = mysql_query("SELECT * FROM User");
return;
}
-function DB_get_email_by_name($name)
-{
- $result = mysql_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($name)."");
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
function DB_get_passwd_by_name($name)
{
$result = mysql_query("SELECT password FROM User WHERE fullname=".DB_quote_smart($name)."");
return "";
}
-function DB_get_email_by_userid($id)
-{
- $result = mysql_query("SELECT email FROM User WHERE id=".DB_quote_smart($id)."");
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
-function DB_get_email_by_pos_and_gameid($pos,$gameid)
-{
- $result = mysql_query("SELECT email FROM User ".
- "LEFT JOIN Hand ON User.id=Hand.user_id ".
- "LEFT JOIN Game ON Game.id=Hand.game_id ".
- "WHERE Game.id=".DB_quote_smart($gameid)." ".
- "AND Hand.position=".DB_quote_smart($pos)."");
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
-function DB_get_email_by_hash($hash)
-{
- $result = mysql_query("SELECT User.email FROM User LEFT JOIN Hand ON Hand.user_id=User.id WHERE Hand.hash=".DB_quote_smart($hash)."");
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
-function DB_get_userid_by_name($name)
-{
- $result = mysql_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($name));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return 0;
-}
-function DB_get_userid_by_passwd($passwd)
-{
- $result = mysql_query("SELECT id FROM User WHERE password=".DB_quote_smart($passwd));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return 0;
-}
-function DB_get_userid_by_email($email)
-{
- $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return 0;
-}
-function DB_get_userid_by_email_and_password($email,$password)
-{
- $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($email)." AND password=".DB_quote_smart($password));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- /* test if a recovery password has been set */
- if(!$r)
- {
- $result = mysql_query("SELECT User.id FROM User".
- " LEFT JOIN Recovery ON User.id=Recovery.user_id".
- " WHERE email=".DB_quote_smart($email).
- " AND Recovery.password=".DB_quote_smart($password).
- " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
- $r = mysql_fetch_array($result,MYSQL_NUM);
- }
-
- if($r)
- return $r[0];
- else
- return 0;
-}
-
function DB_check_recovery_passwords($password,$email)
{
$result = mysql_query("SELECT User.id FROM User".
return 1;
else
return 0;
-
-}
-
-function DB_get_handid_by_hash($hash)
-{
- $result = mysql_query("SELECT id FROM Hand WHERE hash=".DB_quote_smart($hash));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return 0;
-}
-
-function DB_get_handid_by_gameid_and_position($gameid,$pos)
-{
- $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
- DB_quote_smart($gameid)." AND position=".
- DB_quote_smart($pos));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return -1;
}
-function DB_get_userid_by_gameid_and_position($gameid,$pos)
-{
- $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
- DB_quote_smart($gameid)." AND position=".
- DB_quote_smart($pos));
- $r = mysql_fetch_array($result,MYSQL_NUM);
- if($r)
- return $r[0];
- else
- return -1;
-}
-
-
-function DB_get_handid_by_gameid_and_userid($gameid,$userid)
+function DB_get_handid($type,$var1='',$var2='')
{
- $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
- DB_quote_smart($gameid)." AND user_id=".
- DB_quote_smart($userid));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return -1;
-}
+ switch($type)
+ {
+ case 'hash':
+ $result = mysql_query("SELECT id FROM Hand WHERE hash=".DB_quote_smart($var1));
+ break;
+ case 'gameid-position':
+ $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
+ DB_quote_smart($var1)." AND position=".
+ DB_quote_smart($var2));
+ break;
+ case 'gameid-userid':
+ $result = mysql_query("SELECT id FROM Hand WHERE game_id=".
+ DB_quote_smart($var1)." AND user_id=".
+ DB_quote_smart($var2));
+ break;
+ }
-function DB_get_userid_by_hash($hash)
-{
- $result = mysql_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($hash));
- $r = mysql_fetch_array($result,MYSQL_NUM);
+ $r = mysql_fetch_array($result,MYSQL_NUM);
if($r)
return $r[0];
return 0;
}
-function DB_get_name_by_hash($hash)
-{
- $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($hash));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
-function DB_get_name_by_email($email)
-{
- $result = mysql_query("SELECT fullname FROM User WHERE email=".DB_quote_smart($email));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
-function DB_get_name_by_userid($id)
-{
- $result = mysql_query("SELECT fullname FROM User WHERE id=".DB_quote_smart($id));
- $r = mysql_fetch_array($result,MYSQL_NUM);
-
- if($r)
- return $r[0];
- else
- return "";
-}
-
function DB_get_status_by_hash($hash)
{
$result = mysql_query("SELECT status FROM Hand WHERE hash=".DB_quote_smart($hash));
{
$cards = array();
- $handid = DB_get_handid_by_hash($me);
+ $handid = DB_get_handid('hash',$me);
$result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid)." and played='false' ");
while($r = mysql_fetch_array($result,MYSQL_NUM))
{
$cards = array();
- $handid = DB_get_handid_by_hash($me);
+ $handid = DB_get_handid('hash',$me);
$result = mysql_query("SELECT card_id FROM Hand_Card WHERE hand_id=".DB_quote_smart($handid));
while($r = mysql_fetch_array($result,MYSQL_NUM))
return $names;
}
+function DB_get_names_of_last_logins($N)
+{
+ $names = array();
+
+ $result = mysql_query("SELECT fullname FROM User ORDER BY last_login DESC LIMIT $N");
+ while($r = mysql_fetch_array($result,MYSQL_NUM))
+ $names[] = $r[0];
+
+ return $names;
+}
+
+function DB_get_names_of_new_logins($N)
+{
+ $names = array();
+
+ $result = mysql_query("SELECT fullname FROM User ORDER BY create_date DESC, id DESC LIMIT $N");
+ while($r = mysql_fetch_array($result,MYSQL_NUM))
+ $names[] = $r[0];
+
+ return $names;
+}
+
function DB_update_game_timestamp($gameid)
{
mysql_query("UPDATE Game SET mod_date = CURRENT_TIMESTAMP WHERE id=".DB_quote_smart($gameid));
if($r)
return $r[0];
else
- return 0;
+ return "Europe/London";
}
function DB_insert_comment($comment,$playid,$userid)
return;
}
+function DB_insert_note($comment,$gameid,$userid)
+{
+ mysql_query("INSERT INTO Notes VALUES (NULL,NULL,NULL,$userid,$gameid, ".DB_quote_smart($comment).")");
+
+ return;
+}
+
+function DB_get_notes_by_userid_and_gameid($userid,$gameid)
+{
+ $notes = array();
+
+ $result = mysql_query("SELECT comment FROM Notes WHERE user_id=".DB_quote_smart($userid) .
+ " AND game_id=".DB_quote_smart($gameid));
+
+ while($r = mysql_fetch_array($result,MYSQL_NUM))
+ $notes[] = $r[0];
+
+ return $notes;
+}
+
+
function DB_get_gametype_by_gameid($id)
{
$result = mysql_query("SELECT type FROM Game WHERE id=".DB_quote_smart($id));
$result = mysql_query("SELECT Hand.hash FROM Hand".
" LEFT JOIN Game ON Game.id=Hand.game_id ".
" WHERE Game.session=".DB_quote_smart($session).
- " AND Hand.user_id=".DB_quote_smart($user));
+ " AND Hand.user_id=".DB_quote_smart($user).
+ " ORDER BY Game.create_date ASC");
while($t = mysql_fetch_array($result,MYSQL_NUM))
$r[] = $t[0];
{
global $PREF;
- $result = mysql_query("SELECT value from User_Prefs".
- " WHERE user_id='$myid' AND pref_key='cardset'" );
- $r = mysql_fetch_array($result,MYSQL_NUM);
- if($r)
- {
- if($r[0]=="germancards" && (time()-strtotime( "2009-12-31 23:59:59")<0) ) /* licence only valid until then */
- $PREF["cardset"]="altenburg";
- else
- $PREF["cardset"]="english";
- }
- else
- $PREF["cardset"]="english";
+ /* Cardset */
+ $result = mysql_query("SELECT value from User_Prefs".
+ " WHERE user_id='$myid' AND pref_key='cardset'" );
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+ if($r)
+ {
+ if($r[0]=="germancards" && (time()-strtotime( "2009-12-31 23:59:59")<0) ) /* licence only valid until then */
+ $PREF["cardset"]="altenburg";
+ else
+ $PREF["cardset"]="english";
+ }
+ else
+ $PREF["cardset"]="english";
- return;
+ /* Email */
+ $result = mysql_query("SELECT value FROM User_Prefs".
+ " WHERE user_id='$myid' AND pref_key='email'" );
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+ if($r)
+ {
+ if($r[0]=="emailaddict")
+ $PREF["email"]="emailaddict";
+ else
+ $PREF["email"]="emailnonaddict";
+ }
+ else
+ $PREF["email"]="emailnonaddict";
+
+ return;
+}
+
+function DB_get_email_pref_by_hash($hash)
+{
+ $result = mysql_query("SELECT value FROM Hand".
+ " LEFT JOIN User_Prefs ON Hand.user_id=User_Prefs.user_id".
+ " WHERE hash='$hash' AND pref_key='email'" );
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+ if($r)
+ {
+ if($r[0]=="emailaddict")
+ return "emailaddict";
+ else
+ return "emailnonaddict";
+ }
+ else
+ return "emailnonaddict";
+}
+
+function DB_get_email_pref_by_uid($uid)
+{
+ $result = mysql_query("SELECT value FROM User_Prefs ".
+ " WHERE user_id='$uid' AND pref_key='email'" );
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+ if($r)
+ {
+ if($r[0]=="emailaddict")
+ return "emailaddict";
+ else
+ return "emailnonaddict";
+ }
+ else
+ return "emailnonaddict";
}
function DB_get_unused_randomnumbers($userstr)
return NULL;
}
+function DB_get_userid($type,$var1="",$var2="")
+{
+ /* get the userid of a user
+ * this can be done several ways, which are all handled below
+ * if a email/password combination is given and it doesn't work, we also
+ * need to check the recovery table for additional passwords
+ */
+
+ $r = NULL;
+
+ switch($type)
+ {
+ case 'name':
+ $result = mysql_query("SELECT id FROM User WHERE fullname=".DB_quote_smart($var1));
+ break;
+ case 'hash':
+ $result = mysql_query("SELECT user_id FROM Hand WHERE hash=".DB_quote_smart($var1));
+ break;
+ case 'password':
+ $result = mysql_query("SELECT id FROM User WHERE password=".DB_quote_smart($var1));
+ break;
+ case 'email':
+ $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1));
+ break;
+ case 'email-password':
+ $result = mysql_query("SELECT id FROM User WHERE email=".DB_quote_smart($var1)." AND password=".DB_quote_smart($var2));
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+ /* test if a recovery password has been set */
+ if(!$r)
+ {
+ echo "testing alternative password";
+ $result = mysql_query("SELECT User.id FROM User".
+ " LEFT JOIN Recovery ON User.id=Recovery.user_id".
+ " WHERE email=".DB_quote_smart($var1).
+ " AND Recovery.password=".DB_quote_smart($var2).
+ " AND DATE_SUB(CURDATE(),INTERVAL 1 DAY) <= Recovery.create_date");
+ }
+ break;
+ case 'gameid-position':
+ $result = mysql_query("SELECT user_id FROM Hand WHERE game_id=".
+ DB_quote_smart($var1)." AND position=".
+ DB_quote_smart($var2));
+ break;
+ }
+
+ if(!$r)
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+
+ if($r)
+ return $r[0];
+ else
+ return 0;
+}
+
+function DB_get_email($type,$var1='',$var2='')
+{
+ /* return the email of a user
+ * this is used for sending out emails, but also for
+ * testing the login for example
+ */
+ switch($type)
+ {
+ case 'name':
+ $result = mysql_query("SELECT email FROM User WHERE fullname=".DB_quote_smart($var1)."");
+ break;
+ case 'userid':
+ $result = mysql_query("SELECT email FROM User WHERE id=".DB_quote_smart($var1)."");
+ break;
+ case 'hash':
+ $result = mysql_query("SELECT User.email FROM User ".
+ "LEFT JOIN Hand ON Hand.user_id=User.id ".
+ "WHERE Hand.hash=".DB_quote_smart($var1)."");
+ break;
+ case 'position-gameid':
+ $result = mysql_query("SELECT email FROM User ".
+ "LEFT JOIN Hand ON User.id=Hand.user_id ".
+ "LEFT JOIN Game ON Game.id=Hand.game_id ".
+ "WHERE Game.id=".DB_quote_smart($var2)." ".
+ "AND Hand.position=".DB_quote_smart($var1)."");
+ break;
+ }
+
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+
+ if($r)
+ return $r[0];
+ else
+ return "";
+}
+
+function DB_get_name($type,$var1='')
+{
+ /* get the full name of a user
+ * a user can be uniquely identified several ways
+ */
+ switch($type)
+ {
+ case 'hash':
+ $result = mysql_query("SELECT fullname FROM Hand LEFT JOIN User ON Hand.user_id=User.id WHERE hash=".DB_quote_smart($var1));
+ break;
+ case 'email':
+ $result = mysql_query("SELECT fullname FROM User WHERE email=".DB_quote_smart($var1));
+ break;
+ case 'userid':
+ $result = mysql_query("SELECT fullname FROM User WHERE id=".DB_quote_smart($var1));
+ }
+
+ $r = mysql_fetch_array($result,MYSQL_NUM);
+
+ if($r)
+ return $r[0];
+ else
+ return "";
+}
+
?>
\ No newline at end of file