X-Git-Url: https://git.nubati.net/cgi-bin/gitweb.cgi?p=e-DoKo.git;a=blobdiff_plain;f=index.php;h=f0a8e7451d185a1a28e45021b574282073293040;hp=a0e2fb2445180d6c407fb43417c761c6ee167307;hb=ad64e0259097c91f67ea896134128c6883e42900;hpb=5db5f9e9ee3544b1a2b82ad1dc4e250530dd8e64 diff --git a/index.php b/index.php index a0e2fb2..f0a8e74 100644 --- a/index.php +++ b/index.php @@ -6,8 +6,10 @@ include_once("output.php"); /* html output only */ include_once("db.php"); /* database only */ include_once("functions.php"); /* the rest */ +/* make sure that user has set all variables in config.php */ config_check(); +/* open the database */ if(DB_open()<0) { output_header(); @@ -17,23 +19,38 @@ if(DB_open()<0) exit(); } -/* start a session, if it is not already running */ +/* start a session, if it is not already running. + * This way people don't have to log in all the times. + * The session variables can also be read out from different + * php scripts, so that the code can be easily split up across several files + */ session_start(); /* done major error checking, output header of HTML page */ output_header(); -/* check if we want to start a new game */ +/* The rest of the file consists of handling user input. + * The user sends information via html GET and POST variables, + * the script checks if these are set via "myisset" + * which can check a list of variables. + */ + +/* does the user want to log out? */ if(myisset("logout")) { + /* distroy the session */ session_unset(); session_destroy(); $_SESSION = array(); + echo "
"; + "(This will take you back to the home-page)"; } +/* check if we want to start a new game */ else if(myisset("new")) { + output_status(); + /* user needs to be logged in to do this */ if( isset($_SESSION["name"]) ) { $names = DB_get_all_names(); @@ -44,163 +61,193 @@ else if(myisset("new")) } else { - echo " "; + echo " "; } } /*check if everything is ready to set up a new game */ - else if( myisset("PlayerA", "PlayerB","PlayerC","PlayerD","dullen","schweinchen","call" )) +else if( myisset("PlayerA", "PlayerB","PlayerC","PlayerD","dullen","schweinchen","call" )) { - $PlayerA = $_REQUEST["PlayerA"]; - $PlayerB = $_REQUEST["PlayerB"]; - $PlayerC = $_REQUEST["PlayerC"]; - $PlayerD = $_REQUEST["PlayerD"]; - - $dullen = $_REQUEST["dullen"]; - $schweinchen = $_REQUEST["schweinchen"]; - $call = $_REQUEST["call"]; - - $EmailA = DB_get_email_by_name($PlayerA); - $EmailB = DB_get_email_by_name($PlayerB); - $EmailC = DB_get_email_by_name($PlayerC); - $EmailD = DB_get_email_by_name($PlayerD); - - if($EmailA=="" || $EmailB=="" || $EmailC=="" || $EmailD=="") + output_status(); + /* user needs to be logged in */ + if( !isset($_SESSION["name"]) ) { - echo "couldn't find one of the names, please start a new game"; - output_footer(); - DB_close(); - exit(); + echo " "; } - - $useridA = DB_get_userid_by_name($PlayerA); - $useridB = DB_get_userid_by_name($PlayerB); - $useridC = DB_get_userid_by_name($PlayerC); - $useridD = DB_get_userid_by_name($PlayerD); - - /* create random numbers */ - $randomNR = create_array_of_random_numbers($useridA,$useridB,$useridC,$useridD); - $randomNRstring = join(":",$randomNR); - - /* create game */ - $followup = NULL; - if(myisset("followup") ) + else { - $followup= $_REQUEST["followup"]; - $session = DB_get_session_by_gameid($followup); - $ruleset = DB_get_ruleset_by_gameid($followup); /* just copy ruleset from old game, - this way no manipulation is possible */ + /* get my name */ + $name = $_SESSION["name"]; - /* check if there is a game in pre or play mode, in that case do nothing */ - if( DB_is_session_active($session) > 0 ) + /* the names of the four players */ + $PlayerA = $_REQUEST["PlayerA"]; + $PlayerB = $_REQUEST["PlayerB"]; + $PlayerC = $_REQUEST["PlayerC"]; + $PlayerD = $_REQUEST["PlayerD"]; + + /* the person who sets up the game has to be one of the players */ + if(!in_array($name,array($PlayerA,$PlayerB,$PlayerC,$PlayerD))) { - echo " "; + echo " "; output_footer(); DB_close(); exit(); } - else if ( DB_is_session_active($session) < 0 ) + + /* what rules were selected */ + $dullen = $_REQUEST["dullen"]; + $schweinchen = $_REQUEST["schweinchen"]; + $call = $_REQUEST["call"]; + + /* get the emails addresses of the players */ + $EmailA = DB_get_email('name',$PlayerA); + $EmailB = DB_get_email('name',$PlayerB); + $EmailC = DB_get_email('name',$PlayerC); + $EmailD = DB_get_email('name',$PlayerD); + + /* this is used to check if the player names are all ok */ + if($EmailA=="" || $EmailB=="" || $EmailC=="" || $EmailD=="") { - echo " "; + echo "couldn't find one of the names, please start a new game"; output_footer(); DB_close(); exit(); } - if($session) - mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',". - "'$ruleset','$session' ,NULL)"); - else + /* get user ids */ + $useridA = DB_get_userid('name',$PlayerA); + $useridB = DB_get_userid('name',$PlayerB); + $useridC = DB_get_userid('name',$PlayerC); + $useridD = DB_get_userid('name',$PlayerD); + + /* create random numbers */ + $randomNR = create_array_of_random_numbers($useridA,$useridB,$useridC,$useridD); + $randomNRstring = join(":",$randomNR); + + /* create game */ + $followup = NULL; + /* is this game a follow up in an already started session? */ + if(myisset("followup") ) + { + $followup= $_REQUEST["followup"]; + $session = DB_get_session_by_gameid($followup); + $ruleset = DB_get_ruleset_by_gameid($followup); /* just copy ruleset from old game, + this way no manipulation is possible */ + + /* check if there is a game in pre or play mode, in that case do nothing */ + if( DB_is_session_active($session) > 0 ) + { + echo " "; + output_footer(); + DB_close(); + exit(); + } + else if ( DB_is_session_active($session) < 0 ) + { + echo " "; + output_footer(); + DB_close(); + exit(); + } + + if($session) + mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',". + "'$ruleset','$session' ,NULL)"); + else + { + /* get max session and start a new one */ + $max = DB_get_max_session(); + $max++; + mysql_query("UPDATE Game SET session='".$max."' WHERE id=".DB_quote_smart($followup)); + mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',". + "'$ruleset','$max' ,NULL)"); + } + } + else /* no follow up, start a new session */ { + /* get ruleset information or create new one */ + $ruleset = DB_get_ruleset($dullen,$schweinchen,$call); + if($ruleset <0) + { + myerror("Error defining ruleset: $ruleset"); + output_footer(); + DB_close(); + exit(); + }; /* get max session */ $max = DB_get_max_session(); $max++; - mysql_query("UPDATE Game SET session='".$max."' WHERE id=".DB_quote_smart($followup)); - mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre',". + + mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre', ". "'$ruleset','$max' ,NULL)"); } + $game_id = mysql_insert_id(); + + /* create hash */ + $TIME = (string) time(); /* to avoid collisions */ + $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA.$TIME); + $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB.$TIME); + $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC.$TIME); + $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD.$TIME); + + /* create hands */ + mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridA). + ", ".DB_quote_smart($hashA).", 'start','1',NULL,NULL,NULL,NULL)"); + $hand_idA = mysql_insert_id(); + mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridB). + ", ".DB_quote_smart($hashB).", 'start','2',NULL,NULL,NULL,NULL)"); + $hand_idB = mysql_insert_id(); + mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridC). + ", ".DB_quote_smart($hashC).", 'start','3',NULL,NULL,NULL,NULL)"); + $hand_idC = mysql_insert_id(); + mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridD). + ", ".DB_quote_smart($hashD).", 'start','4',NULL,NULL,NULL,NULL)"); + $hand_idD = mysql_insert_id(); + + /* save cards */ + for($i=0;$i<12;$i++) + mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idA', '".$randomNR[$i]."', 'false')"); + for($i=12;$i<24;$i++) + mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idB', '".$randomNR[$i]."', 'false')"); + for($i=24;$i<36;$i++) + mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idC', '".$randomNR[$i]."', 'false')"); + for($i=36;$i<48;$i++) + mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idD', '".$randomNR[$i]."', 'false')"); + + /* send out email, TODO: check for error with email */ + $message = "\n". + "you are invited to play a game of DoKo (that is to debug the program ;).\n". + "Place comments and bug reports here:\n". + "http://wiki.nubati.net/index.php?title=EmailDoko\n\n". + "The whole round would consist of the following players:\n". + "$PlayerA\n". + "$PlayerB\n". + "$PlayerC\n". + "$PlayerD\n\n". + "If you want to join this game, please follow this link:\n\n". + "".$HOST.$INDEX."?me="; + + mymail($EmailA,"You are invited to a game of DoKo","Hello $PlayerA,\n".$message.$hashA); + mymail($EmailB,"You are invited to a game of DoKo","Hello $PlayerB,\n".$message.$hashB); + mymail($EmailC,"You are invited to a game of DoKo","Hello $PlayerC,\n".$message.$hashC); + mymail($EmailD,"You are invited to a game of DoKo","Hello $PlayerD,\n".$message.$hashD); + + echo " \n"; } - else - { - /* get ruleset information or create new one */ - $ruleset = DB_get_ruleset($dullen,$schweinchen,$call); - if($ruleset <0) - { - myerror("Error defining ruleset: $ruleset"); - output_footer(); - DB_close(); - exit(); - }; - /* get max session */ - $max = DB_get_max_session(); - $max++; - - mysql_query("INSERT INTO Game VALUES (NULL, NULL, '$randomNRstring', 'normal', NULL,NULL,'1',NULL,'pre', ". - "'$ruleset','$max' ,NULL)"); - } - $game_id = mysql_insert_id(); - - /* create hash */ - $TIME = (string) time(); /* to avoid collisions */ - $hashA = md5("AGameOfDoko".$game_id.$PlayerA.$EmailA.$TIME); - $hashB = md5("AGameOfDoko".$game_id.$PlayerB.$EmailB.$TIME); - $hashC = md5("AGameOfDoko".$game_id.$PlayerC.$EmailC.$TIME); - $hashD = md5("AGameOfDoko".$game_id.$PlayerD.$EmailD.$TIME); - - /* create hands */ - mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridA). - ", ".DB_quote_smart($hashA).", 'start','1',NULL,NULL,NULL,NULL)"); - $hand_idA = mysql_insert_id(); - mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridB). - ", ".DB_quote_smart($hashB).", 'start','2',NULL,NULL,NULL,NULL)"); - $hand_idB = mysql_insert_id(); - mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridC). - ", ".DB_quote_smart($hashC).", 'start','3',NULL,NULL,NULL,NULL)"); - $hand_idC = mysql_insert_id(); - mysql_query("INSERT INTO Hand VALUES (NULL,".DB_quote_smart($game_id).",".DB_quote_smart($useridD). - ", ".DB_quote_smart($hashD).", 'start','4',NULL,NULL,NULL,NULL)"); - $hand_idD = mysql_insert_id(); - - /* save cards */ - for($i=0;$i<12;$i++) - mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idA', '".$randomNR[$i]."', 'false')"); - for($i=12;$i<24;$i++) - mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idB', '".$randomNR[$i]."', 'false')"); - for($i=24;$i<36;$i++) - mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idC', '".$randomNR[$i]."', 'false')"); - for($i=36;$i<48;$i++) - mysql_query("INSERT INTO Hand_Card VALUES (NULL, '$hand_idD', '".$randomNR[$i]."', 'false')"); - - /* send out email, TODO: check for error with email */ - $message = "\n". - "you are invited to play a game of DoKo (that is to debug the program ;).\n". - "Place comments and bug reports here:\n". - "http://wiki.nubati.net/index.php?title=EmailDoko\n\n". - "The whole round would consist of the following players:\n". - "$PlayerA\n". - "$PlayerB\n". - "$PlayerC\n". - "$PlayerD\n\n". - "If you want to join this game, please follow this link:\n\n". - "".$host."?me="; - - mymail($EmailA,"You are invited to a game of DoKo","Hello $PlayerA,\n".$message.$hashA); - mymail($EmailB,"You are invited to a game of DoKo","Hello $PlayerB,\n".$message.$hashB); - mymail($EmailC,"You are invited to a game of DoKo","Hello $PlayerC,\n".$message.$hashC); - mymail($EmailD,"You are invited to a game of DoKo","Hello $PlayerD,\n".$message.$hashD); - - echo "You started a new game. The emails have been sent out!"; - } /* end set up a new game */ -/* cancle a game, if nothing has happend in the last N minutes */ -else if(myisset("cancle","me")) + /* end set up a new game */ + } +/* cancel a game, if nothing has happend in the last N minutes */ +else if(myisset("cancel","me")) { + output_status(); + $me = $_REQUEST["me"]; /* test for valid ID */ - $myid = DB_get_userid_by_hash($me); + $myid = DB_get_userid('hash',$me); if(!$myid) { echo "Can't find you in the database, please check the url.Game ".DB_format_gameid($gameid).
- " has been cancled.
You need to wait longer before you can cancle a game...
\n"; + echo "You need to wait longer before you can cancel a game...
\n"; } /* send out a reminder */ else if(myisset("remind","me")) { + output_status(); + $me = $_REQUEST["me"]; /* test for valid ID */ - $myid = DB_get_userid_by_hash($me); + $myid = DB_get_userid('hash',$me); if(!$myid) { echo "Can't find you in the database, please check the url.An email has already been sent out.
\n"; @@ -297,16 +347,17 @@ else if(myisset("me")) $me = $_REQUEST["me"]; /* test for valid ID */ - $myid = DB_get_userid_by_hash($me); + $myid = DB_get_userid('hash',$me); if(!$myid) { echo "Can't find you in the database, please check the url.your cards are:
\n";
- foreach($mycards as $card)
- display_card($card,$PREF["cardset"]);
- echo "
Your cards are:
\n";
+ foreach($mycards as $card)
+ display_card($card,$PREF["cardset"]);
+ echo "
your cards are:
\n";
+ echo "
Your cards are:
\n";
foreach($mycards as $card)
display_card($card,$PREF["cardset"]);
echo "
Game ".DB_format_gameid($gameid)." has been cancled.
Game ".DB_format_gameid($gameid)." has been canceled.
This game took ".$r[0]." hours.
"; + echo "Session:
\n";
@@ -2084,50 +2308,57 @@ else if( myisset("email","password") || isset($_SESSION["name"]) )
}
if($r[4]=='pre')
{
- echo "\n p ";
+ echo "\n p ";
}
else if ($r[4]=='gameover')
- echo "\n F ";
+ echo "\n F ";
else
{
- echo "\n P ";
+ echo "\n P ";
}
if($r[4] != 'gameover')
{
echo "
\n"; - echo implode(", ",$names)."\n"; - echo "
\n\n"; + echo implode(", ",$names).",...\n"; + echo "
\n"; + + /* display last 5 users that logged on */ + $names = DB_get_names_of_last_logins(5); + echo "\n"; + echo implode(", ",$names).",...\n"; + echo "
\n"; + + echo "