function start_chaos($tur) { global $char; //все места заняты - начинаем бой //создаем бой $combat_type = 11; $uid = create_combat($combat_type, $char['map_name'], $char['map_xpos'], $char['map_ypos'], $tur['format']); //закидываем туда игроков рандомно $sel_users = myquery("SELECT game_users_active_host.host_more,game_users_active.host,game_turnir_users.side,view_active_users.*,game_users_data.sex FROM game_turnir_users,view_active_users,game_users_data,game_users_active,game_users_active_host WHERE game_users_data.user_id=game_turnir_users.user_id AND game_turnir_users.user_id=view_active_users.user_id AND game_turnir_users.turnir_id=" . $tur['id'] . " AND game_users_active.user_id=view_active_users.user_id AND game_users_active_host.user_id=view_active_users.user_id ORDER BY RAND()"); $user_side = 2; while ($us = mysql_fetch_array($sel_users)) { $user_side = 3 - $user_side; $hod = 1; $join = 0; $svit = 0; $k_komu = 0; $k_exp = 1; $k_gp = 0; $skill = 0; $func = 5; $delay = 44; $no_rejoin = 1; combat_insert($us, 0, $uid, $combat_type, $user_side, $hod, $join, $svit, $k_komu, $k_exp, $k_gp, $skill, $func, $delay, $no_rejoin); $pismo = iconv("Windows-1251", "UTF-8//IGNORE", "<span style=\"font-style:italic;font-size:12px;color:gold;\">Начинается турнирный хаотичный бой</span>"); myquery("INSERT INTO game_log (`message`,`date`,`fromm`,`too`,ptype) VALUES ('" . mysql_real_escape_string($pismo) . "'," . time() . ",-1," . $us['user_id'] . ",1)"); } myquery("DELETE game_turnir,game_turnir_users FROM game_turnir,game_turnir_users WHERE (game_turnir.id=" . $tur['id'] . ") AND (game_turnir.id=game_turnir_users.turnir_id) "); setLocation("http://" . domain_name . "/combat.php"); }
function create_response($item_id) { $sel_res = myquery("SELECT id,name FROM craft_resource WHERE name LIKE ('%морий%') ORDER BY BINARY name"); $response = "\n\t<table>\n\t<tr><td>Ресурс</td><td>Количество</td><td> </td><td> <td></tr>\n\t<tr>\n\t<td><select id=\"res_id\">"; while ($res = mysql_fetch_array($sel_res)) { $response .= "<option value=" . $res['id'] . ">(" . $res['id'] . ") " . $res['name'] . "</option>"; } $response .= "</td>\n\t<td><input id=\"new_col\" size=5 value=0></td>\n\t<td><input type=\"button\" value=\"Сохранить\" onClick=\"save_res('new');\"></td>\n\t<td> </tr>"; if ($item_id > 0) { $sel = myquery("SELECT * FROM dungeon_quests_res WHERE quest_id={$item_id} ORDER BY id"); while ($schema = mysql_fetch_array($sel)) { $response .= "<tr>\n\t\t\t<td><select id=\"res_id_" . $schema['id'] . "\">"; $sel_res = myquery("SELECT id,name FROM craft_resource ORDER BY BINARY name"); while ($res = mysql_fetch_array($sel_res)) { $response .= "<option value=" . $res['id'] . ""; if ($res['id'] == $schema['res_id']) { $response .= " selected"; } $response .= ">" . $res['name'] . "</option>"; } $response .= "</td>\n\t\t\t<td><input id=\"col_" . $schema['id'] . "\" size=5 value=\"" . $schema['col'] . "\"></td>\n\t\t\t<td><input type=\"button\" value=\"Сохранить\" onClick=\"save_res('" . $schema['id'] . "');\"></td>\n\t\t\t<td><input type=\"button\" value=\"Удалить\" onClick=\"delete_res('" . $schema['id'] . "');\"></td>"; } } $response .= "</table>"; return $response; }
function move($pos) { global $x; global $y; global $s; global $v; global $char; global $mov; $result = myquery("SELECT {$pos}, type, subtype FROM game_map WHERE xpos='{$x}' AND name='" . $char['map_name'] . "' AND ypos='{$y}' limit 1"); if (!mysql_num_rows($result)) { echo '<img src="http://' . img_domain . '/nav/x.gif" width="32" height="32" border="0"><br>'; } else { $map_adj = mysql_fetch_array($result); $tile_image = 'http://' . img_domain . '/map/' . $map_adj['type'] . $map_adj['subtype'] . '.jpg'; if ($map_adj['' . $pos . ''] == '6' or $char['clevel'] < $map_adj['' . $pos . ''] and $map_adj['' . $pos . ''] != 'N') { echo '<img src="' . $tile_image . '" width="32" height="32" border="0" alt="'; if ($map_adj['' . $pos . ''] == '6') { echo 'Нельзя пройти'; } if ($char['clevel'] < $map_adj['' . $pos . ''] and $map_adj['' . $pos . ''] != '6' and $map_adj['' . $pos . ''] != 'N') { echo 'Требуется ' . $map_adj['' . $p . ''] . ' уровень'; } echo '"><br>'; } else { echo '<a href="move.php?move=' . $v . '"><img src="' . $tile_image . '" width="32" height="32" border="0" alt="(' . $x . ', ' . $y . ')"></a><br>'; } } }
function add_resource($id_resource) { global $user_id, $char, $_SESSION; if ($id_resource > 0) { $res = mysql_fetch_array(myquery("SELECT * FROM craft_resource WHERE id={$id_resource}")); $Res = new Res($res); $check = $Res->add_user(0, $user_id); if ($check == 1) { setCraftTimes($user_id, 6, 1, 1); echo 'Ты добыл: ' . $res['name']; myquery("insert into craft_stat (build_id, gp, res_id, dob, vip, dat, user, type) values (0, 0, {$id_resource}, 0, 1, " . time() . ", {$user_id}, 'z')"); if (isset($_SESSION['cur_get_mining'])) { $dob = explode('###', $_SESSION['cur_get_mining']); $find = 0; for ($i = 0; $i < sizeof($dob); $i++) { $cur_dob = explode("&&&", $dob[$i]); if ($cur_dob[0] == $res['name']) { $find = 1; $col = (int) $cur_dob[1] + 1; $dob[$i] = $res['name'] . '&&&' . $col; } } if ($find == 0) { $dob[] = $res['name'] . '&&&1'; } $_SESSION['cur_get_mining'] = implode("###", $dob); } else { $str = $res['name'] . '&&&1'; $_SESSION['cur_get_mining'] = $str; } } else { echo 'У Вас недостаточно свободного места в инвентаре!'; } } }
function getSuggestions($keyword) { DbConnect(); $patterns = array('/\\s+/', '/"+/', '/%+/'); $replace = array(''); $keyword = preg_replace($patterns, $replace, $keyword); if ($keyword != '' and preg_match('/^[ _a-zà-ÿA-ZÀ-ß0-9]*$/i', $keyword)) { $keyword = mysql_escape_string($keyword); $query = "SELECT name FROM game_items_factsheet WHERE name LIKE '" . $keyword . "%' ORDER BY BINARY name"; } else { $query = "SELECT name FROM game_items_factsheet WHERE name=''"; } $result = myquery($query); $output = '<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'; $output .= '<response>'; if ($result != false) { if (mysql_num_rows($result)) { while ($row = mysql_fetch_array($result)) { $output .= '<name>' . iconv("Windows-1251", "UTF-8//IGNORE", $row['name']) . '</name>'; } } } $output .= '</response>'; mysql_close(); return $output; }
function izvjestaj_prijemni_top10posto() { ?> <p>Univerzitet u Sarajevu<br /> Elektrotehnički fakultet Sarajevo</p> <h3>Najboljih 10% kandidata na prijemnom ispitu po srednjoj školi</h3> <?php $pt = intval($_REQUEST['termin']); $skole = array(); $q10 = myquery("select count(*) from prijemni_prijava where prijemni_termin={$pt}"); $desetposto = intval(mysql_result($q10, 0, 0) / 10); $q10 = myquery("select pp.rezultat, o.ime, o.prezime, uus.srednja_skola from prijemni_prijava as pp, osoba as o, uspjeh_u_srednjoj as uus where pp.prijemni_termin={$pt} and pp.osoba=o.id and uus.osoba=o.id order by pp.rezultat desc limit {$desetposto}"); while ($r10 = mysql_fetch_row($q10)) { if (!$skole[$r10[3]]) { $skole[$r10[3]] = array(); } array_push($skole[$r10[3]], "{$r10['1']} {$r10['2']} ({$r10['0']} bodova)"); } foreach ($skole as $idskole => $skola) { $q20 = myquery("select naziv from srednja_skola where id={$idskole}"); print "<p><b>" . mysql_result($q20, 0, 0) . "</b><br>\n<ul>\n"; foreach ($skola as $kandidat) { print "<li>{$kandidat}</li>\n"; } print "</ul></p>\n"; } }
function syncTeams(){ $sql="SELECT a.event_id, a.team_id, b.tathva_id, GROUP_CONCAT( a.teammember_id SEPARATOR ',' ) FROM team AS a, participating AS b WHERE a.team_id = b.team_id GROUP BY a.team_id"; $res=myquery($sql); while($row=mysql_fetch_array($res)){ //echo $row[0]." | ".$row[1]." | ".$row[2]." | ".$team[1]."<br />"; $team = explode(",",$row[3]); array_splice($team,array_search($row[2],$team),1); $sql = "Insert into registration(rg_eventid, rg_teamid, rg_captainid, rg_part1, rg_part2, rg_part3, rg_part4, rg_part5, rg_part6) values('".pg_escape_string(strtoupper($row[0]))."', '".pg_escape_string(strtoupper($row[1]))."', '".pg_escape_string(strtoupper($row[2]))."', '".pg_escape_string(strtoupper($team[0]))."', '".pg_escape_string(strtoupper($team[1]))."', '".pg_escape_string(strtoupper($team[2]))."', '".pg_escape_string(strtoupper($team[3]))."', '".pg_escape_string(strtoupper($team[4]))."', '".pg_escape_string(strtoupper($team[5]))."');<br />"; echo $sql; } }
function addm($char, $mes, $priv) { setlocale(LC_ALL, "ru_RU.CP1251"); if (!isset($char['sex']) || $char['sex'] == "male") { $mes = preg_replace("/\\{([\\d\\w\\s]*?)\\|([\\d\\w\\s]*?)\\}/i", "\\1", $mes); } else { $mes = preg_replace("/\\{([\\d\\w\\s]*?)\\|([\\d\\w\\s]*?)\\}/i", "\\2", $mes); } $mes = '<span style="color:#FF2828;font-size:12px;">' . iconv("Windows-1251", "UTF-8//IGNORE", $mes) . '</style>'; $message = $mes; $message = mysql_real_escape_string($message); $sel = myquery("SELECT `count` FROM `game_bot_chat_resp` WHERE `id` = '" . $char['name'] . "';"); $n = mysql_fetch_array($sel); if ($n['count'] <= 4) { myquery("INSERT INTO `game_bot_chat_resp` (`id`,`count`) VALUES ('" . $char['name'] . "','1') ON DUPLICATE KEY UPDATE `count` = `count` + 1;"); $update_chat = myquery("insert into game_log (town,fromm,too,message,date,ptype) values (0,'-1','" . $char['user_id'] . "','" . $message . "','" . time() . "'," . $priv . ")"); } else { $sel = myquery("SELECT `text` FROM `game_bot_chat_annoy` ORDER BY RAND() ASC LIMIT 1"); $mes = mysql_fetch_array($sel); if (!isset($char['sex']) || $char['sex'] == "male") { $mes = preg_replace("/\\{([\\d\\w\\s]*?)\\|([\\d\\w\\s]*?)\\}/i", "\\1", $mes); } else { $mes = preg_replace("/\\{([\\d\\w\\s]*?)\\|([\\d\\w\\s]*?)\\}/i", "\\2", $mes); } $message = mysql_real_escape_string('<span style="color:#FF2828;font-size:12px;">' . iconv("Windows-1251", "UTF-8//IGNORE", $mes['text']) . '</style>'); $update_chat = myquery("insert into game_log (town,fromm,too,message,date,ptype) values (0,'-1','" . $char['user_id'] . "','" . $message . "','" . time() . "'," . $priv . ")"); } }
function student_moodle() { global $conf_moodle, $conf_moodle_url; if (!$conf_moodle) { biguglyerror("Moodle integracija nije uključena."); print "Kontaktirajte vašeg administratora."; return; } $predmet = intval($_REQUEST['predmet']); $ag = intval($_REQUEST['ag']); $tip = $_REQUEST['tip']; $q = myquery("select moodle_id from moodle_predmet_id where predmet={$predmet} and akademska_godina={$ag}"); if (mysql_num_rows($q) < 1) { zamgerlog("ne postoji moodle ID za predmet pp{$predmet}, ag{$ag}", 3); zamgerlog2("ne postoji moodle ID za predmet", $predmet, $ag); niceerror("Pogrešan predmet/akademska_godina ili za ovaj predmet nije definisan moodle ID."); return; } $moodle_id = mysql_result($q, 0, 0); if ($tip == "forum") { header("Location: {$conf_moodle_url}" . "mod/forum/index.php?id={$moodle_id}"); } else { header("Location: {$conf_moodle_url}" . "course/view.php?id={$moodle_id}"); } }
function PrintFavNpc() { global $char; //Избранные боты $npc_online = time(); $sel = myquery("SELECT\n\tgame_npc_template.npc_name AS npc_name,\n\tgame_npc.EXP AS npc_exp,\n\tgame_maps.name AS npc_map_name,\n\tgame_npc.map_name AS npc_map,\n\tgame_npc.xpos AS npc_xpos,\n\tgame_npc.ypos AS npc_ypos,\n\tgame_npc.xpos_view AS npc_xpos_view,\n\tgame_npc.ypos_view AS npc_ypos_view\n\tFROM game_users_npc, game_npc, game_maps, game_npc_template\n\tWHERE game_npc.npc_id=game_npc_template.npc_id AND game_users_npc.user_id = " . $char['user_id'] . " AND game_npc.view=1 AND game_npc.map_name IN (700,5,18) \n\t AND game_npc.id = game_users_npc.npc_id AND game_maps.id=game_npc.map_name AND game_npc.time_kill+game_npc_template.respawn<" . $npc_online . " \n\tORDER BY (CASE WHEN game_npc.map_name = " . $char['map_name'] . " THEN 0 ELSE 1 END), game_users_npc.npc_order"); if ($sel != false and mysql_num_rows($sel) > 0) { echo '<table width="100%" border=0>'; while ($row = mysql_fetch_array($sel)) { echo '<tr> <td>' . substr($row["npc_name"], 0, 9) . '</td> <td>' . substr($row["npc_map_name"], 0, 4) . '</td> <td><nobr>'; if ($row["npc_exp"] <= 200) { echo $row["npc_xpos"]; echo '</td><td align="right"><font color=#FF7DFF>'; echo $row["npc_ypos"]; } else { echo '' . $row["npc_xpos"] + 1 * $row["npc_xpos_view"] . '±2'; echo '</td><td align="right"><font color=#FF7DFF>'; echo '' . $row["npc_ypos"] + 1 * $row["npc_ypos_view"] . '±2'; } echo '</td>'; if ($_SESSION['user_id'] == 612 or $_SESSION['user_id'] == 28591 or $_SESSION['user_id'] == 36051 or $_SESSION['user_id'] == 1 or domain_name == 'localhost') { echo '<td><a href="?func=main&teleport_map_name=' . $row["npc_map"] . '&teleport_map_xpos=' . $row["npc_xpos"] . '&teleport_map_ypos=' . $row["npc_ypos"] . '"><img src="http://' . img_domain . '/nav/show.gif" border="0"></a></td>'; } echo '</tr>'; } echo '</table>'; } }
function before_print() { global $book_id, $user_id, $print_text, $alt_text; if (!isset($_GET['page'])) { return; } if ($_GET['page'] == 16) { $sel = myquery("SELECT * FROM bookgame_users_flags WHERE bookgame={$book_id} AND user_id={$user_id} AND flag=2"); if (!mysql_num_rows($sel)) { $print_text = 1; $alt_text = "Неимоверной силой воли ты отправляешь Пожирателей Душ туда, откуда они были призваны. Аргалакс в бешенстве и кричит:\n\t\t\t«Теперь я вызышаю Костяного Занбара и Балтуса Страшного!!!»\n\t\t\tОни материализуются и ты смог бы противиться их заклинаниям, только если бы у тебя есть были Щит Древней Тьмы и Щит Огня. Но их у тебя не оказалось, и ты бесславно погиб на поле боя!"; } } if ($_GET['page'] == 17) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=2"); } if ($_GET['page'] == 20) { myquery("INSERT INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=3,value=0 ON DUPLICATE KEY UPDATE value=LEAST(4,value*2)"); myquery("UPDATE bookgame_users SET dex=dex+LEAST(4,dex*2) WHERE bookgame={$book_id} AND user_id={$user_id}"); } if ($_GET['page'] == 21) { $check = mysqlresult(myquery("SELECT COUNT(*) FROM bookgame_users_flags WHERE bookgame={$book_id} AND user_id={$user_id} AND (flag=4 OR flag=7)"), 0, 0); if ($check != 2) { $print_text = 1; $alt_text = "«НЕЕЕЕТ!!!» - Аргалакс корчится в конвульсиях и его энергия выходит наружу. Вы впитываете её часть и восстанавливаете 3 выносливости.На этом твое приключение заканчивается"; } } if ($_GET['page'] == 22) { myquery("INSERT INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=5,value=1 ON DUPLICATE KEY UPDATE value=value+1"); myquery("UPDATE bookgame_users SET dex=dex+1 WHERE bookgame={$book_id} AND user_id={$user_id}"); } if ($_GET['page'] == 41) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=4"); } if ($_GET['page'] == 8) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=4"); } if ($_GET['page'] == 19) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=6"); } if ($_GET['page'] == 10) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=8"); myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=9"); } if ($_GET['page'] == 44) { list($gp) = mysqlresult(myquery("SELECT gp FROM bookgame_users WHERE bookgame={$book_id} AND user_id={$user_id}"), 0, 0); if ($gp >= 21) { myquery("INSERT IGNORE INTO bookgame_users_flags SET user_id={$user_id},bookgame={$book_id},flag=7"); myquery("UPDATE bookgame_users SET gp=gp-21 WHERE user_id={$user_id} AND bookgame={$book_id}"); } } if ($_GET['page'] == 45) { $check = mysqlresult(myquery("SELECT COUNT(*) FROM bookgame_users_flags WHERE bookgame={$book_id} AND user_id={$user_id} AND (flag=8 OR flag=9)"), 0, 0); if ($check != 2) { $print_text = 1; $alt_text = "«ААА!!!,- крик Аргалакса звенит под потолком.- Я вызываю Жаррадана Мара и Шарелу, Ведьму Снега!!» Ты можешь противиться заклинаниям двух колдунов, только если есть Щит Времени и Лёд. Но их у тебя не оказалось, и ты бесславно погиб на поле боя!"; } } }
function PrintError($param, $it, $encik) { if ($it[$param] != $encik[$param]) { list($name) = mysql_fetch_array(myquery("(SELECT name FROM game_users WHERE user_id=" . $it['user_id'] . ") UNION (SELECT name FROM game_users_archive WHERE user_id=" . $it['user_id'] . ")")); echo ' <tr><td>' . $it['type'] . '</td><td>' . $it['ident'] . '</td><td>' . $name . '</td><td>' . $param . '</td><td>' . $encik[$param] . '</td><td>' . $it[$param] . '</td><td>' . ($encik[$param] - $it[$param]) . '</td></tr>'; } }
function common_slika() { global $conf_files_path, $user_nastavnik, $user_studentska, $user_siteadmin, $userid; // Poslani parametar $osoba = intval($_REQUEST['osoba']); $promjena = intval($_REQUEST['promjena']); // Studenti mogu vidjeti samo svoju sliku if (!$user_nastavnik && !$user_studentska && !$user_siteadmin && $osoba != $userid) { niceerror("Možete vidjeti samo svoju sliku"); zamgerlog("pristupa slici za osobu {$osoba} a student je", 3); zamgerlog2("pristupa tudjoj slici a student je", $osoba); return; } if ($promjena == 1) { $q = myquery("select slika from promjena_podataka where osoba={$osoba}"); } else { $q = myquery("select slika from osoba where id={$osoba}"); } if (mysql_num_rows($q) < 1) { // Ova poruka se neće vidjeti iz <img> taga, ali neko može otvoriti sliku u posebnom prozoru/tabu niceerror("Nepostojeća osoba {$osoba}"); zamgerlog("slika: nepostojeca osoba {$osoba}", 3); zamgerlog2("nepostojeca osoba", $osoba); return; } $slika = mysql_result($q, 0, 0); if ($slika == "") { niceerror("Osoba {$osoba} nema sliku"); zamgerlog("osoba u{$osoba} nema sliku", 3); zamgerlog2("osoba nema sliku", $osoba); return; } $lokacija_slike = "{$conf_files_path}/slike/{$slika}"; if (!file_exists($lokacija_slike)) { niceerror("Slika za osobu {$osoba} je definisana, ali datoteka ne postoji"); zamgerlog("nema datoteke za sliku osobe u{$osoba}", 3); zamgerlog2("nema datoteke za sliku", $osoba); return; } // Odredjujemo mimetype $podaci = getimagesize($lokacija_slike); $mimetype = image_type_to_mime_type($podaci[2]); if ($mimetype == "") { niceerror("Nepoznat tip slike za osobu {$osoba}"); zamgerlog("nepoznat tip slike za osobu u{$osoba}", 3); zamgerlog2("nepoznat tip slike", $osoba); return; } header("Content-Type: {$mimetype}"); $k = readfile($lokacija_slike, false); if ($k == false) { //print "Otvaranje slike nije uspjelo! Kontaktirajte administratora"; // Pošto je header već poslan, nema smisla ispisivati grešku zamgerlog("citanje fajla za sliku nije uspjelo u{$osoba}", 3); zamgerlog2("citanje fajla za sliku nije uspjelo", $osoba); } exit; }
function getHelpTopics($str) { $result = myquery("SELECT COUNT(*) FROM `" . dbprfx . "help` WHERE `typekey` = '" . $str . "'"); if (mysql_result($result, 0) > 0) { $result2 = myquery("SELECT * FROM `" . dbprfx . "help` WHERE `typekey` = '" . $str . "' LIMIT 1"); $array2 = myarray($result2); return $array2['helpdata']; } }
function q_journal_moria($user_id, $level, $quest_id) { $check_moria = myquery("SELECT t1.res_num, t2.name FROM dungeon_users_progress as t1 JOIN craft_resource as t2 ON t1.res_id=t2.id WHERE t1.user_id=" . $user_id . " and quest_id=" . $quest_id . " and t1.res_num>0"); echo '<font color="yellow"><h3><b>Подземелья Мории (' . $level . ' уровень)</h3></b>'; echo '<br><font color="red"><b>Осталось сдать:</b>'; while ($res = mysql_fetch_array($check_moria)) { echo "<br>" . $res['name'] . ": " . $res['res_num'] . ""; } echo '</font>'; }
function pay_ref($user_id, $gp_amount) { // реферальные $ref_pay = myquery("SELECT * FROM game_invite WHERE invite_id='" . $user_id . "' "); if (mysql_num_rows($ref_pay) > 0) { $arr_ref_pay = mysql_fetch_array($ref_pay); $up = myquery("update game_users SET GP=GP+" . $gp_amount . ",CW=CW+'" . $gp_amount * money_weight . "' where user_id='" . $arr_ref_pay['user_id'] . "'"); setGP($arr_ref_pay['user_id'], $gp_amount, 3); $up = myquery("update game_users_archive SET GP=GP+" . $gp_amount . ",CW=CW+'" . $gp_amount * money_weight . "' where user_id='" . $arr_ref_pay['user_id'] . "'"); } }
function online() { global $char; global $town; $current_time = time(); $online_range = $current_time - 300; echo '<meta http-equiv="refresh" content="30;url="gorod.php?option=' . $town . '">'; $select = myquery("select user_id,name from game_users where delay_reason=2 and user_id IN (SELECT user_id FROM game_users_map WHERE map_xpos='" . $char['map_xpos'] . "' and map_ypos='" . $char['map_ypos'] . "' and map_name='" . $char['map_name'] . "') and user_id IN (SELECT user_id FROM game_users_active WHERE last_active>{$online_range})"); while ($sel = mysql_fetch_array($select)) { echo ' <a href="http://' . domain_name . '/view/?userid=' . $sel["user_id"] . '" target="_blank"><img border=0 src="http://' . img_domain . '/nav/i.gif"></a>' . $sel['name'] . ', '; } }
function break_axe(&$action1) { global $user_id; myquery("UPDATE game_items SET item_uselife=item_uselife-2 WHERE priznak=0 AND user_id={$user_id} AND used=21"); list($id_item, $cur_uselife) = mysql_fetch_array(myquery("SELECT id,item_uselife FROM game_items WHERE priznak=0 AND user_id={$user_id} AND used=21")); if ($cur_uselife <= 0) { $Item = new Item($id_item); $Item->down(); craft_DelFunc($user_id); $action1 = 'У тебя сломано кайло!'; } }
function login_forma() { global $greska, $registry; // Redirekciju na isti URI vršimo samo ako je greška = istek sesije $uri = $_SERVER['PHP_SELF']; if ($greska == "Vaša sesija je istekla. Molimo prijavite se ponovo." && !strstr($_SERVER['REQUEST_URI'], "logout")) { $uri = $_SERVER['REQUEST_URI']; } $anketa_aktivna = 0; foreach ($registry as $r) { if ($r[0] == "public/anketa" && $r[5] == 0) { $q01 = myquery("select id from anketa_anketa where aktivna = 1"); if (mysql_num_rows($q01) > 0) { $anketa_aktivna = 1; } } } ?> <center><table border="0" cellpadding="5" bgcolor="#FFFFFF"> <tr><td align="center"> <big><b>Dobro došli na bolognaware Elektrotehničkog fakulteta Sarajevo</b></big> </td></tr> <tr><td align="center"> <!-- Ikone za javne servise --> <table border="0" cellpadding="10" bgcolor="#FFFFFF"><tr> <td align="center" valign="top"> <p><a href="doc/zamger-uputstva-42-nastavnik.pdf"><img src="images/32x32/dokumentacija.png" width="32" height="32" border="0" alt="Dokumentacija"><br>Uputstva za<br>nastavnike</a></p> </td> <?php if ($anketa_aktivna) { ?> <td align="center" valign="top"> <p><a href="?sta=public/anketa"><img src="images/32x32/info.png" width="32" height="32" border="0" alt="Anketa"><br/>Anketa</a></p> </td> <?php } ?> </tr></table> </td></tr> <tr><td align="center"> <!-- Login forma --> <form action="<?php echo $uri; ?> " method="POST"> <input type="hidden" name="loginforma" value="1"> <table border="0"><tr><td>Korisničko ime (UID):</td><td><input type="text" name="login" size="15"></td></tr> <tr><td>Šifra:</td><td><input type="password" name="pass" size="15"></td></tr> <tr><td colspan="2" align="center"><input type="submit" value="Kreni"></td></tr></table> </form> </td></tr></table></center> <?php }
function common_savjet_dana() { global $userid; global $user_student, $user_nastavnik, $user_studentska, $user_siteadmin; if ($_REQUEST['akcija'] == "ne_prikazuj" && $_REQUEST['ne_prikazuj'] && check_csrf_token()) { ?> <h2>Da li ste znali...</h2> <p>Prozor "Da li ste znali..." više neće biti prikazivan.</p> <p>Ako ga kasnije budete željeli reaktivirati, možete to učiniti kroz vaš Profil.</p> <?php $q20 = myquery("delete from preference where korisnik={$userid} and preferenca='savjet_dana'"); $q30 = myquery("insert into preference set korisnik={$userid}, preferenca='savjet_dana', vrijednost=0"); zamgerlog("iskljucio savjet dana", 2); zamgerlog2("iskljucio savjet dana"); return; } if ($user_nastavnik) { $upit .= "vrsta_korisnika='nastavnik' or "; } if ($user_student) { $upit .= "vrsta_korisnika='student' or "; } if ($user_siteadmin) { $upit .= "vrsta_korisnika='siteadmin' or "; } if ($user_studentska) { $upit .= "vrsta_korisnika='studentska' or "; } $q10 = myquery("select tekst from savjet_dana where {$upit} 0 order by rand() limit 1"); // 0 zbog zadnjeg or ?> <h2>Da li ste znali...</h2> <img src="images/savjet_dana.gif" align="left" width="92" height="150" style="margin: 0px 20px"> <?php echo mysql_result($q10, 0, 0); ?> <hr> <?php echo genform("POST"); ?> <input type="hidden" name="akcija" value="ne_prikazuj"> <input type="checkbox" name="ne_prikazuj"> Ne prikazuj više savjet dana <input type="submit" value="Potvrda" class="default"> <input type="button" onclick="window.close()" value="Zatvori" class="default"> <input type="button" onclick="window.location.reload(true)" value="Novi savjet" class="default"> </form> <?php }
function broken() { global $user_id; $brok = 1; $sel = myquery("SELECT item_uselife FROM game_items WHERE user_id={$user_id} AND used=21 AND priznak=0"); if ($sel != false and mysql_num_rows($sel) > 0) { list($use) = mysql_fetch_array($sel); if ($use > 0) { $brok = 0; } } return $brok; }
function common_cron() { global $conf_files_path, $user_siteadmin; $force = intval($_GET['force']); if ($force > 0) { if (!$user_siteadmin) { niceerror("Nemate dozvolu da ovo izvršite."); zamgerlog("forsira cron a nije admin", 3); zamgerlog2("forsira cron a nije admin"); return; } $upit = "id={$force}"; } else { $upit = "aktivan=1 AND sljedece_izvrsenje<NOW()"; } $q10 = myquery("SELECT id, path, UNIX_TIMESTAMP(zadnje_izvrsenje), godina, mjesec, dan, sat, minuta, sekunda FROM cron WHERE {$upit}"); if (mysql_num_rows($q10) == 0 && $force > 0) { niceerror("Nije pronađen zadatak koji odgovara upitu."); return; } while ($r10 = mysql_fetch_row($q10)) { // Određujemo sljedeće vrijeme izvršenja $localtime = localtime(); $localtime = cron_find($localtime, 0, $r10[8]); $localtime = cron_find($localtime, 1, $r10[7]); $localtime = cron_find($localtime, 2, $r10[6]); $localtime = cron_find($localtime, 3, $r10[5]); $localtime = cron_find($localtime, 4, $r10[4]); $localtime = cron_find($localtime, 5, $r10[3]); $nexttime = mktime($localtime[2], $localtime[1], $localtime[0], $localtime[4] + 1, $localtime[3], $localtime[5] + 1900); // Ažuriramo bazu $q20 = myquery("UPDATE cron SET zadnje_izvrsenje=NOW(), sljedece_izvrsenje=FROM_UNIXTIME({$nexttime}) WHERE id={$r10['0']}"); $q30 = myquery("INSERT INTO cron_rezultat SET cron={$r10['0']}, izlaz='(Nije završeno)', return_value=0, vrijeme=NOW()"); $id = mysql_insert_id(); // Pripremamo za izvršenje $exec = str_replace("---LASTTIME---", $r10[2], $r10[1]); $exec = "php {$conf_files_path}/{$exec}"; $return = 0; $blah = array(); // Izvršavamo skriptu $k = exec($exec, $blah, $return); // Stavljamo izlaz u bazu $izlaz = my_escape(iconv("UTF-8", "UTF-8//IGNORE", join("\n", $blah))); $q40 = myquery("UPDATE cron_rezultat SET return_value={$return}, izlaz='{$izlaz}' WHERE id={$id}"); if ($force > 0) { nicemessage("Uspješno izvršena skripta."); $izlaz = str_replace("\\n", "\n", $izlaz); print "<p>Izlaz:</p>\n<pre>{$izlaz}</pre>\n"; } } }
function common_articleImageDownload() { global $userid, $user_nastavnik, $user_student, $conf_files_path, $user_siteadmin; $predmet = intval($_REQUEST['predmet']); $ag = intval($_REQUEST['ag']); $projekat = intval($_REQUEST['projekat']); $articleID = intval($_REQUEST['a']); $authorID = intval($_REQUEST['u']); $imageName = $_GET['i']; if ($predmet <= 0 || $projekat <= 0 || $authorID <= 0 || $ag <= 0 || $articleID <= 0) { //hijack attempt? zamgerlog("korisnik u{$userid} pokusao pristupiti modulu common/articleImageDownload sa ID predmeta ili ID projekta ili ID autora slike ili ag ili clanak koji nije integer ili je <=0", 3); zamgerlog2("neispravni parametri", $predmet, $ag, $projekat, "{$authorID}, {$articleID}"); return; } if ($user_nastavnik && !$user_siteadmin) { $q10 = myquery("select nivo_pristupa from nastavnik_predmet where nastavnik={$userid} and predmet={$predmet} and akademska_godina={$ag}"); if (mysql_num_rows($q10) < 1 || mysql_result($q10, 0, 0) < 1) { zamgerlog("common/projektneStrane privilegije (predmet pp{$predmet})", 3); zamgerlog2("nije saradnik na predmetu", $predmet, $ag); biguglyerror("Nemate pravo ulaska u ovu grupu!"); return; } } require_once "lib/projekti.php"; if ($user_student && !$user_siteadmin) { $actualProject = getActualProjectForUserInPredmet($userid, $predmet, $ag); if ($actualProject[id] != $projekat) { //user is not in this project in this predmet...hijack attempt? zamgerlog("korisnik u{$userid} pokusao pristupiti modulu common/articleImageDownload i projektu na kojem nije prijavljen ID={$projekat} na predmetu p{$predmet}", 3); zamgerlog2("nije na projektu", $projekat); biguglyerror("Nemate pravo ulaska u ovu grupu!"); return; } } $imageName = strip_tags($imageName); $imageName = trim($imageName); $article = getArticle($articleID); if (empty($article) || ($article['osoba'] != $authorID || $article['slika'] != $imageName || $article['projekat'] != $projekat)) { zamgerlog("korisnik u{$userid} pokusao pristupiti modulu common/articleImageDownload sa losim authorID, imageName, projekat ili ID clanka", 3); zamgerlog2("clanak se ne poklapa sa projektom", $articleID, $projekat); return; } $lokacijaclanaka = "{$conf_files_path}/projekti/clanci/{$projekat}/" . $article['osoba'] . "/"; $filepath = $lokacijaclanaka . $article['slika']; $type = `file -bi '{$filepath}'`; header("Content-Type: {$type}"); header('Content-Length: ' . filesize($filepath)); echo file_get_contents($filepath); }
function check_lr($user_id, $i, $cost = 0) { if ($cost == 0) { list($cost) = mysql_fetch_array(myquery("SELECT cost From game_lr_services Where game_lr_services.serv_id={$i}")); } list($check) = mysql_fetch_array(myquery("SELECT user_rating From game_users_data Where user_id={$user_id}")); if (mysql_num_rows(myquery("Select * from game_lr_services_hist where user_id={$user_id}")) > 0) { list($lr_old) = mysql_fetch_array(myquery("Select sum(lr) from game_lr_services_hist where user_id={$user_id}")); $check = $check - $lr_old; } if ($check - $cost < 0) { $cost = -1; } return $cost; }
function izvjestaj_chart_semestralni() { $id_ankete = intval($_GET['anketa']); $semestar = intval($_GET['semestar']); $semestarPGS = $semestar; $q10 = myquery("select id,naziv from akademska_godina where aktuelna=1"); $ag = mysql_result($q10, 0, 0); if ($semestar != 3) { $semestar = $semestar % 2; } $smjerovi; // Kupimo pitanja za datu anketu $result2077 = myquery("SELECT p.id, p.tekst,t.tip FROM anketa_pitanje p,anketa_tip_pitanja t WHERE p.tip_pitanja = t.id and p.anketa ={$id_ankete} and p.tip_pitanja=1"); $k = 0; $l = 0; while ($pitanje = mysql_fetch_row($result2077)) { // Kupimo studije $result409 = myquery("select id, kratkinaziv from studij where moguc_upis=1"); // za prvu godinu je poseban upit gdje ne postoji uslov za studije vec samo uslov na semestar if ($semestar == 3) { // ako je izvjestaj za cijelu godinu $q6730PGS = myquery("SELECT ifnull(sum( b.izbor_id ) / count( * ),0) FROM anketa_rezultat a, anketa_odgovor_rank b WHERE a.id = b.rezultat AND b.pitanje ={$pitanje['0']} and a.semestar in(1,2) AND zavrsena='Y'"); } else { // ako nije onda biramo parne ili neparene semestre $q6730PGS = myquery("SELECT ifnull(sum( b.izbor_id ) / count( * ),0) FROM anketa_rezultat a, anketa_odgovor_rank b WHERE a.id = b.rezultat AND b.pitanje ={$pitanje['0']} and a.semestar={$semestarPGS} AND zavrsena='Y'"); } $prosjek[$l] = mysql_result($q6730PGS, 0, 0); $smjerovi[1][$k] = $prosjek[$l]; $l++; // za ostale studije koristimo isti upit while ($studij = mysql_fetch_row($result409)) { //kupimo vrijednosti if ($semestar == 3) { // ako je izvjestaj za cijelu godinu $q6730 = myquery("SELECT ifnull(sum( b.izbor_id ) / count( * ),0) FROM anketa_rezultat a, anketa_odgovor_rank b WHERE a.id = b.rezultat AND b.pitanje ={$pitanje['0']} AND a.studij ={$studij['0']} AND zavrsena='Y' and a.semestar not in (1,2)"); } else { // ako nije onda biramo parne ili neparene semestre $q6730 = myquery("SELECT ifnull(sum( b.izbor_id ) / count( * ),0) FROM anketa_rezultat a, anketa_odgovor_rank b WHERE a.id = b.rezultat AND b.pitanje ={$pitanje['0']} AND a.studij ={$studij['0']} and a.semestar%2={$semestar} AND zavrsena='Y' and a.semestar not in (1,2)"); } $prosjek[$l] = mysql_result($q6730, 0, 0); $smjerovi[$studij[0]][$k] = $prosjek[$l]; $l++; } $k++; } crtaj($smjerovi, $k); }
function rab_names($build) { $select = myquery("select * from craft_build_rab where build_id='{$build}' and (date_rab+dlit)>=" . time() . ""); $n = mysql_num_rows($select); $i = 0; if ($n > 0) { echo '('; while ($usr = mysql_fetch_array($select)) { $i++; user($usr['user_id']); if ($i < $n) { echo ', '; } } echo ')'; } }
function delmod_graph($user_id, $module_id) { myquery("SET AUTOCOMMIT=0"); $old = getlast_graph($user_id); if ($module_id == $old) { myquery("INSERT INTO `graph_status` VALUES ('','" . $user_id . "','" . $module_id . "','UNIX_TIMESTAMP()','0')"); /* New module activated */ myquery("COMMIT"); myquery("SET AUTOCOMMIT=1"); return 1; } else { /* Function called from other module */ myquery("ROLLBACK"); myquery("SET AUTOCOMMIT=1"); return -2; } }
function print_top($craft_index) { if ($craft_index <= 3) { $result = myquery("(SELECT game_users_crafts.*,game_users.clan_id,game_users.name FROM game_users_crafts,game_users WHERE game_users_crafts.craft_index={$craft_index} AND game_users_crafts.times>0 AND game_users_crafts.user_id=game_users.user_id AND game_users.clan_id<>1) UNION (SELECT game_users_crafts.*,game_users_archive.clan_id,game_users_archive.name FROM game_users_crafts,game_users_archive WHERE game_users_crafts.craft_index={$craft_index} AND game_users_crafts.times>0 AND game_users_crafts.user_id=game_users_archive.user_id AND game_users_archive.clan_id<>1) ORDER BY times DESC LIMIT 10"); } else { $result = myquery("(SELECT game_users_crafts.*,game_users.clan_id,game_users.name FROM game_users_crafts,game_users WHERE game_users_crafts.craft_index={$craft_index} AND game_users_crafts.profile=1 AND game_users_crafts.times>0 AND game_users_crafts.user_id=game_users.user_id AND game_users.clan_id<>1) UNION (SELECT game_users_crafts.*,game_users_archive.clan_id,game_users_archive.name FROM game_users_crafts,game_users_archive WHERE game_users_crafts.craft_index={$craft_index} AND game_users_crafts.times>0 AND game_users_crafts.profile=1 AND game_users_crafts.user_id=game_users_archive.user_id AND game_users_archive.clan_id<>1) ORDER BY times DESC LIMIT 10"); } echo '<table cellpadding="0" cellspacing="4" border=0><tr><td width="250"><font face="Verdana" size="3" color="#f3f3f3"><b>10 лучших игроков в профессии "' . get_craft_name($craft_index) . '"</b></font><br></td><td width="50"><font size="2" color="#eeeeee">Ранг</font></td><td width="220"><font size="2" color="#eeeeee">Ник</font></td><td width="120"><font size="2" color="#eeeeee">Уровень</font></td></tr>'; for ($i = 1; $craft = mysql_fetch_array($result); $i++) { echo '<tr><td></td><td><font size="2" color="#bbbbbb">' . $i . '</font></td><td><font size="2" color="#bbbbbb"><a href="http://' . domain_name . '/view/?userid=' . $craft["user_id"] . '" target="_blank"><img src="http://' . img_domain . '/nav/i.gif" border=0 alt="Инфо"></a>'; if ($craft['clan_id'] != 0) { echo '<img src="http://' . img_domain . '/clan/' . $craft['clan_id'] . '.gif"> '; } echo '' . $craft['name'] . '</font></td><td>' . floor(CraftSpetsTimeToLevel($craft_index, $craft['times'])) . ' (' . $craft['times'] . ')</td></tr>'; } echo '</table><br>'; }
function add_item_group($group_id, $item_name, $item_type, $kol) { if ($item_type == 0) { $check = myquery("SELECT id FROM game_items_factsheet WHERE name='" . $item_name . "'"); } else { $check = myquery("SELECT id FROM craft_resource WHERE name='" . $item_name . "'"); } if (mysql_num_rows($check) > 0) { list($id) = mysql_fetch_array($check); if ($group_id == -999) { list($group_id) = mysql_fetch_array(myquery("SELECT (CASE WHEN max(group_id) IS NULL THEN 0 ELSE max(group_id) END)+1 FROM game_exchange_groups")); } myquery("INSERT INTO game_exchange_groups (group_id, item_id, item_type, kol) VALUES ('" . $group_id . "', '" . $id . "', '" . $item_type . "', '" . $kol . "') "); return $group_id; } return 0; }
function display_header($param) { global $folder, $user_id; echo '<table border="0" cellspacing=0 cellpadding=3 width="80%"><tr><td><a href="act.php?func=pm&folder=0">Непрочитанные</a> | <a href="act.php?func=pm&folder=1">Прочитанные</a> | <a href="act.php?func=pm&folder=2">Архив</a> | <a href="act.php?func=pm&folder=3">Отправленные</a> | <a href="act.php?func=pm&folder=4">С рынков</a> | <a href="act.php?func=pm&folder=5">От торговцев</a>'; $sel = myquery("SELECT * FROM game_pm_folder WHERE user_id={$user_id}"); $folder_name = ''; while ($row = mysql_fetch_array($sel)) { echo ' | <a href="act.php?func=pm&folder=' . $row['folder_id'] . '">' . $row['folder_name'] . '</a>'; if ($row['folder_id'] == $folder) { $folder_name = $row['folder_name']; } } echo '</td></tr></table>'; if ($param != 0) { echo '<br><center><font face="Verdana,Tahoma,Arial" size=3><b>'; if ($folder == 0) { echo 'НЕПРОЧИТАННЫЕ'; } elseif ($folder == 1) { echo 'ПРОЧИТАННЫЕ'; } elseif ($folder == 2) { echo 'АРХИВ'; } elseif ($folder == 3) { echo 'ОТПРАВЛЕННЫЕ'; } elseif ($folder == 4) { echo 'РЫНОК'; } elseif ($folder == 5) { echo 'ТОРГОВЦЫ'; } else { echo strtoupper($folder_name); } echo '</b></font></center><br>'; echo '<table border="0" cellspacing=0 cellpadding=3 width="80%"><form action="" method="post" name=mutliact><tr bgcolor="555555"><td><INPUT onclick=InboxCheckAll(); type=checkbox value="Отметить все" name=allbox></td><td></td><td width="20%">Дата:</td><td width="10%">'; if ($folder == 3) { echo 'Кому'; } else { echo 'От кого'; } echo '</td><td width="70%">Тема:</td></tr>'; } }