<?php
error_reporting(E_ALL);
-include_once("config.php");
+include_once("config.php");
include_once("output.php"); /* html output only */
include_once("db.php"); /* database only */
include_once("functions.php"); /* the rest */
-/* check if some variables are set in the config file, else set defaults */
-if(!isset($EmailName))
- $EmailName="[DoKo] ";
-if(isset($EMAIL_REPLY))
- {
- ini_set("sendmail_from",$EMAIL_REPLY);
- }
-if(!isset($ADMIN_NAME))
- {
- output_header();
- echo "<h1>Setup not completed</h1>";
- echo "You need to set \$ADMIN_NAME in config.php.";
- output_footer();
- exit();
- }
-if(!isset($ADMIN_EMAIL))
- {
- output_header();
- echo "<h1>Setup not completed</h1>";
- echo "You need to set \$ADMIN_EMAIL in config.php. ".
- "If something goes wrong an email will send to this address.";
- output_footer();
- exit();
- }
-
-/* in case work has to be done on the database or other section we can
- * shut down the server and tell people to come back later
- */
-if(0)
- {
- output_header();
- echo "Working on the database...please check back in a few mintues";
- output_footer();
- exit();
- }
+/* make sure that user has set all variables in config.php */
+config_check();
+/* open the database */
if(DB_open()<0)
{
output_header();
echo "Database error, can't connect... Please wait a while and try again. ".
"If the problem doesn't go away feel free to contact $ADMIN_NAME at $ADMIN_EMAIL.";
- output_footer();
- exit();
+ output_footer();
+ exit();
}
-/* start a session, if it is not already running */
+/* start a session, if it is not already running.
+ * This way people don't have to log in all the times.
+ * The session variables can also be read out from different
+ * php scripts, so that the code can be easily split up across several files
+ */
session_start();
/* done major error checking, output header of HTML page */
output_header();
-/* check if we want to start a new game */
+/* The rest of the file consists of handling user input.
+ * The user sends information via html GET and POST variables,
+ * the script checks if these are set via "myisset"
+ * which can check a list of variables.
+ */
+
+/* does the user want to log out? */
if(myisset("logout"))
{
+ /* distroy the session */
session_unset();
session_destroy();
$_SESSION = array();
- echo "you are now logged out!";
+
+ echo "<div class=\"message\"><span class=\"bigger\">You are now logged out!</span><br />\n".
+ "(<a href=\"$INDEX\">This will take you back to the home-page</a>)</div>";
}
+/* check if we want to start a new game */
else if(myisset("new"))
{
- $names = DB_get_all_names();
- output_form_for_new_game($names);
+ output_status();
+ /* user needs to be logged in to do this */
+ if( isset($_SESSION["name"]) )
+ {
+ $names = DB_get_all_names();
+ echo "<div class=\"user\">\n";
+ output_form_for_new_game($names);
+ echo "</div>\n";
+ display_user_menu();
+ }
+ else
+ {
+ echo "<div class=\"message\">Please <a href=\"$INDEX\">log in</a>.</div>";
+ }
}
/*check if everything is ready to set up a new game */
- else if( myisset("PlayerA", "PlayerB","PlayerC","PlayerD","dullen","schweinchen","call" ))
+else if( myisset("PlayerA", "PlayerB","PlayerC","PlayerD","dullen","schweinchen","call" ))
{
- $PlayerA = $_REQUEST["PlayerA"];
- $PlayerB = $_REQUEST["PlayerB"];
- $PlayerC = $_REQUEST["PlayerC"];
- $PlayerD = $_REQUEST["PlayerD"];
-
- $dullen = $_REQUEST["dullen"];
- $schweinchen = $_REQUEST["schweinchen"];
- $call = $_REQUEST["call"];
-
- $EmailA = DB_get_email_by_name($PlayerA);
- $EmailB = DB_get_email_by_name($PlayerB);
- $EmailC = DB_get_email_by_name($PlayerC);
- $EmailD = DB_get_email_by_name($PlayerD);
-
- if($EmailA=="" || $EmailB=="" || $EmailC=="" || $EmailD=="")
- {
- echo "couldn't find one of the names, please start a new game";
- output_footer();
- DB_close();
- exit();
- }
-
- $useridA = DB_get_userid_by_name($PlayerA);
- $useridB = DB_get_userid_by_name($PlayerB);
- $useridC = DB_get_userid_by_name($PlayerC);
- $useridD = DB_get_userid_by_name($PlayerD);
-
- /* create random numbers */
- $randomNR = create_array_of_random_numbers($useridA,$useridB,$useridC,$useridD);
- $randomNRstring = join(":",$randomNR);
-
- /* create game */
- $followup = NULL;
- if(myisset("followup") )
+ output_status();
+ /* user needs to be logged in */
+ if( !isset($_SESSION["name"]) )
{
- $followup= $_REQUEST["followup"];
- $session = DB_get_session_by_gameid($followup);
- $ruleset = DB_get_ruleset_by_gameid($followup); /* just copy ruleset from old game,
- this way no manipulation is possible */
- if($session)
- mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',".
- "'$ruleset','$session' ,NULL)");
- else
- {
- /* get max session */
- $max = DB_get_max_session();
- $max++;
- mysql_query("UPDATE Game SET session='".$max."' WHERE id=".DB_quote_smart($followup));
- mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',".
- "'$ruleset','$max' ,NULL)");
- }
+ echo "<div class=\"message\">Please <a href=\"$INDEX\">log in</a>.</div>";
}
else
{
- /* get ruleset information or create new one */
- $ruleset = DB_get_ruleset($dullen,$schweinchen,$call);
- if($ruleset <0)
+ /* get my name */
+ $name = $_SESSION["name"];
+
+ /* the names of the four players */
+ $PlayerA = $_REQUEST["PlayerA"];
+ $PlayerB = $_REQUEST["PlayerB"];
+ $PlayerC = $_REQUEST["PlayerC"];
+ $PlayerD = $_REQUEST["PlayerD"];
+
+ /* the person who sets up the game has to be one of the players */
+ if(!in_array($name,array($PlayerA,$PlayerB,$PlayerC,$PlayerD)))
{
- myerror("Error defining ruleset: $ruleset");
+ echo "<div class=\"message\">You need to be one of the players to start a <a href=\"$INDEX?new\">new game</a>.</div>";
output_footer();
DB_close();
exit();
- };
+ }
- mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre', ".
- "'$ruleset',NULL ,NULL)");
+ /* what rules were selected */
+ $dullen = $_REQUEST["dullen"];
+ $schweinchen = $_REQUEST["schweinchen"];
+ $call = $_REQUEST["call"];
+
+ /* get the emails addresses of the players */
+ $EmailA = DB_get_email('name',$PlayerA);
+ $EmailB = DB_get_email('name',$PlayerB);
+ $EmailC = DB_get_email('name',$PlayerC);
+ $EmailD = DB_get_email('name',$PlayerD);
+
+ /* this is used to check if the player names are all ok */
+ if($EmailA=="" || $EmailB=="" || $EmailC=="" || $EmailD=="")
+ {
+ echo "couldn't find one of the names, please start a new game";
+ output_footer();
+ DB_close();
+ exit();
+ }
+
+ /* get user ids */
+ $useridA = DB_get_userid('name',$PlayerA);
+ $useridB = DB_get_userid('name',$PlayerB);
+ $useridC = DB_get_userid('name',$PlayerC);
+ $useridD = DB_get_userid('name',$PlayerD);
+
+ /* create random numbers */
+ $randomNR = create_array_of_random_numbers($useridA,$useridB,$useridC,$useridD);
+ $randomNRstring = join(":",$randomNR);
+
+ /* create game */
+ $followup = NULL;
+ /* is this game a follow up in an already started session? */
+ if(myisset("followup") )
+ {
+ $followup= $_REQUEST["followup"];
+ $session = DB_get_session_by_gameid($followup);
+ $ruleset = DB_get_ruleset_by_gameid($followup); /* just copy ruleset from old game,
+ this way no manipulation is possible */
+
+ /* check if there is a game in pre or play mode, in that case do nothing */
+ if( DB_is_session_active($session) > 0 )
+ {
+ echo "<p class=\"message\"> There is already a game going on in session $session, you can't start a new one</p>";
+ output_footer();
+ DB_close();
+ exit();
+ }
+ else if ( DB_is_session_active($session) < 0 )
+ {
+ echo "<p class=\"message\"> ERROR: status of session $session couldn't be determined.</p>";
+ output_footer();
+ DB_close();
+ exit();
+ }
+
+ if($session)
+ mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',".
+ "'$ruleset','$session' ,NULL)");
+ else
+ {
+ /* get max session and start a new one */
+ $max = DB_get_max_session();
+ $max++;
+ mysql_query("UPDATE Game SET session='".$max."' WHERE id=".DB_quote_smart($followup));
+ mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',".
+ "'$ruleset','$max' ,NULL)");
+ }
+ }
+ else /* no follow up, start a new session */
+ {
+ /* get ruleset information or create new one */
+ $ruleset = DB_get_ruleset($dullen,$schweinchen,$call);
+ if($ruleset <0)
+ {
+ myerror("Error defining ruleset: $ruleset");
+ output_footer();
+ DB_close();
+ exit();
+ };
+ /* get max session */
+ $max = DB_get_max_session();
+ $max++;
+
+ mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre', ".
+ "'$ruleset','$max' ,NULL)");
+ }
+ $game_id = mysql_insert_id();
+
+ /* create hash */
+ $TIME = (string) time(); /* to avoid collisions */
+ $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA.$TIME);
+ $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB.$TIME);
+ $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC.$TIME);
+ $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD.$TIME);
+
+ /* create hands */
+ mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridA).
+ ", ".DB_quote_smart($hashA).", 'start','1',NULL,NULL,NULL,NULL)");
+ $hand_idA = mysql_insert_id();
+ mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridB).
+ ", ".DB_quote_smart($hashB).", 'start','2',NULL,NULL,NULL,NULL)");
+ $hand_idB = mysql_insert_id();
+ mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridC).
+ ", ".DB_quote_smart($hashC).", 'start','3',NULL,NULL,NULL,NULL)");
+ $hand_idC = mysql_insert_id();
+ mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridD).
+ ", ".DB_quote_smart($hashD).", 'start','4',NULL,NULL,NULL,NULL)");
+ $hand_idD = mysql_insert_id();
+
+ /* save cards */
+ for($i=0;$i<12;$i++)
+ mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idA', '".$randomNR[$i]."', 'false')");
+ for($i=12;$i<24;$i++)
+ mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idB', '".$randomNR[$i]."', 'false')");
+ for($i=24;$i<36;$i++)
+ mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idC', '".$randomNR[$i]."', 'false')");
+ for($i=36;$i<48;$i++)
+ mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idD', '".$randomNR[$i]."', 'false')");
+
+ /* send out email, TODO: check for error with email */
+ $message = "\n".
+ "you are invited to play a game of DoKo (that is to debug the program ;).\n".
+ "Place comments and bug reports here:\n".
+ "http://wiki.nubati.net/index.php?title=EmailDoko\n\n".
+ "The whole round would consist of the following players:\n".
+ "$PlayerA\n".
+ "$PlayerB\n".
+ "$PlayerC\n".
+ "$PlayerD\n\n".
+ "If you want to join this game, please follow this link:\n\n".
+ "".$HOST.$INDEX."?me=";
+
+ mymail($EmailA,"You are invited to a game of DoKo","Hello $PlayerA,\n".$message.$hashA);
+ mymail($EmailB,"You are invited to a game of DoKo","Hello $PlayerB,\n".$message.$hashB);
+ mymail($EmailC,"You are invited to a game of DoKo","Hello $PlayerC,\n".$message.$hashC);
+ mymail($EmailD,"You are invited to a game of DoKo","Hello $PlayerD,\n".$message.$hashD);
+
+ echo "<div class=\"message\">You started a new game. The emails have been sent out!</div>\n";
}
- $game_id = mysql_insert_id();
-
- /* create hash */
- $TIME = (string) time(); /* to avoid collisions */
- $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA.$TIME);
- $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB.$TIME);
- $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC.$TIME);
- $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD.$TIME);
-
- /* create hands */
- mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridA).
- ", ".DB_quote_smart($hashA).", 'start','1',NULL,NULL,NULL,NULL)");
- $hand_idA = mysql_insert_id();
- mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridB).
- ", ".DB_quote_smart($hashB).", 'start','2',NULL,NULL,NULL,NULL)");
- $hand_idB = mysql_insert_id();
- mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridC).
- ", ".DB_quote_smart($hashC).", 'start','3',NULL,NULL,NULL,NULL)");
- $hand_idC = mysql_insert_id();
- mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridD).
- ", ".DB_quote_smart($hashD).", 'start','4',NULL,NULL,NULL,NULL)");
- $hand_idD = mysql_insert_id();
-
- /* save cards */
- for($i=0;$i<12;$i++)
- mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idA', '".$randomNR[$i]."', 'false')");
- for($i=12;$i<24;$i++)
- mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idB', '".$randomNR[$i]."', 'false')");
- for($i=24;$i<36;$i++)
- mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idC', '".$randomNR[$i]."', 'false')");
- for($i=36;$i<48;$i++)
- mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idD', '".$randomNR[$i]."', 'false')");
-
- /* send out email, TODO: check for error with email */
- $message = "\n".
- "you are invited to play a game of DoKo (that is to debug the program ;).\n".
- "Place comments and bug reports here:\n".
- "http://wiki.nubati.net/index.php?title=EmailDoko\n\n".
- "The whole round would consist of the following players:\n".
- "$PlayerA\n".
- "$PlayerB\n".
- "$PlayerC\n".
- "$PlayerD\n\n".
- "If you want to join this game, please follow this link:\n\n".
- "".$host."?me=";
-
- mymail($EmailA,"You are invited to a game of DoKo","Hello $PlayerA,\n".$message.$hashA);
- mymail($EmailB,"You are invited to a game of DoKo","Hello $PlayerB,\n".$message.$hashB);
- mymail($EmailC,"You are invited to a game of DoKo","Hello $PlayerC,\n".$message.$hashC);
- mymail($EmailD,"You are invited to a game of DoKo","Hello $PlayerD,\n".$message.$hashD);
-
- echo "You started a new game. The emails have been sent out!";
- } /* end set up a new game */
-/* cancle a game, if nothing has happend in the last N minutes */
-else if(myisset("cancle","me"))
+ /* end set up a new game */
+ }
+/* cancel a game, if nothing has happend in the last N minutes */
+else if(myisset("cancel","me"))
{
+ output_status();
+
$me = $_REQUEST["me"];
-
+
/* test for valid ID */
- $myid = DB_get_userid_by_hash($me);
+ $myid = DB_get_userid('hash',$me);
if(!$myid)
{
echo "Can't find you in the database, please check the url.<br />\n";
- echo "perhaps the game has been cancled, check by login in <a href=\"$host\">here</a>.";
+ echo "perhaps the game has been canceled, check by login in <a href=\"$INDEX\">here</a>.";
output_footer();
DB_close();
exit();
}
-
+
DB_update_user_timestamp($myid);
-
+
/* get some information from the DB */
$gameid = DB_get_gameid_by_hash($me);
- $myname = DB_get_name_by_hash($me);
+ $myname = DB_get_name('hash',$me);
- /* check if game really is old enough */
+ /* check if game really is old enough to be canceled */
<