public function testIsVariableEquals()
{
$var = variable(1);
$var2 = variable(1);
$var3 = variable(2);
$this->assertTrue(isVariableEquals($var, $var2));
$this->assertFalse(isVariableEquals($var2, $var3));
}
protected function processReminderForm($form)
{
sfProjectConfiguration::getActive()->loadHelpers(array('I18N', 'Variable'));
$form->bind($this->getRequestParameter($form->getName()));
if ($form->isValid()) {
if ($usr = Doctrine::getTable('PublicUser')->findOneByEmail($form->getValue('email'))) {
$message = $this->getMailer()->compose(array(variable('reminder email', '*****@*****.**') => __('Password reminder bot')), $usr->getEmail(), __('Password reminder'), __('Your password is %1%', array('%1%' => $usr['password'])));
return $this->getMailer()->send($message);
}
}
return false;
}
public function executeSubmit(sfWebRequest $request)
{
sfProjectConfiguration::getActive()->loadHelpers(array('I18N', 'Variable'));
$this->setLayout(false);
$this->form->bind($request->getParameter($this->form->getName()));
if ($this->form->isValid()) {
$this->sendEmail(variable('system email', '*****@*****.**'), 'olly.ee', variable('system email', '*****@*****.**'), 'Contact form', implode('<br />', $this->form->getValues()));
$this->renderPartial('global/json', array('item' => array('code' => 200, 'notice' => __('Andmed edukalt saadetud'))));
} else {
$this->renderPartial('global/json', array('item' => array('code' => 500, 'errors' => $this->form->getErrors())));
}
return sfView::NONE;
}
/**
* @see sfTask
*/
protected function execute($arguments = array(), $options = array())
{
# setup
$databaseManager = new sfDatabaseManager($this->configuration);
// databaseManager
$context = sfContext::createInstance($this->configuration);
sfProjectConfiguration::getActive()->loadHelpers(array('Variable'));
$this->logSection('mailer', 'Enviroment initialized');
# find ProductOrders with "invoice_mailed = false"
$this->logSection('mailer', 'Fetching ProductOrders');
$q = Doctrine::getTable('ProductOrder')->createQuery('')->from('ProductOrder po')->where('po.invoice_mailed = ?', false)->andWhere('po.status = ?', ProductOrderTable::STATUS_PAID)->limit(2);
$orders = $q->execute();
if ($orders->count() > 0) {
foreach ($orders as $order) {
# generate invoice
if (!file_exists($order->getInvoiceAbsolutePath('pdf'))) {
$this->logSection('mailer', sprintf('generating invoice for order ID:%s', $order['id']));
$this->commandApplication->getTask('invoice:generate-invoice')->run(array('orderID' => $order['id']), array('culture' => $order['user_culture'], 'host' => $this->commandManager->getArgumentValue('host')));
$this->logSection('mailer', sprintf('invoice generated for order ID:%s', $order['id']));
} else {
$this->logSection('mailer', sprintf('invoice already generated for order ID:%s', $order['id']));
}
# send invoice
$this->logSection('mailer', sprintf('composing email for order ID:%s', $order['id']));
$message = $this->getMailer()->compose(array(variable('invoicer email', '*****@*****.**') => 'FAYE'), $order->BillingAddress['email'], $this->getI18N($order['user_culture'])->__('Faye.ee invoice'), $this->getI18N($order['user_culture'])->__('Faye invoice'));
$this->logSection('mailer', sprintf('attaching PDF file (%s) to email for order ID:%s', $order->getInvoiceAbsolutePath('pdf'), $order['id']));
$message->attach(Swift_Attachment::fromPath($order->getInvoiceAbsolutePath('pdf')));
$this->getMailer()->send($message);
$this->logSection('mailer', sprintf('email sent for order ID:%s', $order['id']));
# change status
$this->logSection('mailer', sprintf('order ID:%s status changed to invoice_mailed ID:%s', $order['id'], $order['id']));
$order->setInvoiceMailed(true);
$order->save();
}
} else {
$this->logSection('mailer', 'ProductOrders not found');
}
}
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,notbanned");
// Der Anschluss an das Charaktere Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_chartrans_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["account"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_chartrans_account = variable($_POST["account"], "", "db");
$post_chartrans_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_chartrans_account, 32, ">", "Der Account name ist zu lang!");
string_check($post_chartrans_mycharacter, 32, ">", "Der Wert der schlechten Charakter Eingang!");
string_check($post_chartrans_mycharacter, "^[0-9%]+\$", "!error", "Der Wert der schlechten Charakter Eingang!");
// Der Charakter des Besitzers des Check
character_check($post_chartrans_mycharacter);
// Verbindung mit der Datenbank RealMod
db_select($mysql_db_realmd);
// Account Datenabfrage
$query_chartrans_account = db_query("SELECT id FROM account WHERE username = '******'");
$results_chartrans_account = mysqli_fetch_array($query_chartrans_account);
if (mysqli_num_rows($query_chartrans_account) == 0) {
system_message("Der eingegebene Accountname existiert nicht!");
}
// Der Anschluss an das Charaktere Datenbank
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,admin");
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["accountname"])) {
// Posztolt adatok átalakítás
$post_accounttransaction_accountname = variable($_POST["accountname"], "strtoupper", "db");
// Posztolt adatok ellenõrzése
string_check($post_playertransaction_playername, ">", 32, "Az account neve túl hosszú!");
string_check($post_playertransaction_playername, "<", 3, "Az account neve túl rövid!");
// Játékos ellenõrzése
$query_accounttransaction_check = db_query("SELECT COUNT(*) FROM account WHERE username = '******'");
$results_accounttransaction_check = mysqli_fetch_array($query_accounttransaction_check);
if ($results_accounttransaction_check[0] == 0) {
system_message("Az általad keresett account nem létezik!");
}
// Account ID lekérdezése
$query_accounttransaction_account = db_query("SELECT id FROM account WHERE username = '******'");
$results_accounttransaction_account = mysqli_fetch_array($query_accounttransaction_account);
// Account access beszúrása, ha nem létezik
if ($site_post_action == "gmlevelvip" || $site_post_action == "gmlevelgm" || $site_post_action == "gmlevelmod" || $site_post_action == "gmleveladmin") {
$query_accounttransaction_accountaccess = db_query("SELECT COUNT(*) FROM account_access WHERE id = '" . $results_accounttransaction_account["id"] . "'");
$results_accounttransaction_accountaccess = mysqli_fetch_array($query_accounttransaction_accountaccess);
if ($results_accounttransaction_accountaccess[0] == 0) {
db_query("INSERT INTO account_access (id, gmlevel, RealmID) VALUES ('" . $results_accounttransaction_account["id"] . "', '0', '1')");
}
}
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["playername"])) {
// Posztolt Datenkonvertierung
$post_playersearch_playername = variable($_POST["playername"], "", "db");
// Überprüfen Daten Posztolt
string_check($post_playersearch_playername, 12, ">", "Der Spieler isr zu lang!");
string_check($post_playersearch_playername, 2, "<", "Bitte geben Sie mindestens 2 Zeichen ein!");
// Email módosítása
$query_playersearch_playername = db_query("SELECT name, race, class, gender, level, online FROM characters WHERE name LIKE '%" . $post_playersearch_playername . "%' ORDER BY name ASC");
$rows_playersearch = mysqli_num_rows($query_playersearch_playername);
}
?>
<script type="text/javascript">
function checkform ( form )
{
if (form.playername.value == "") { alert( "Haben Sie nicht füllen den Namen des Spielers Feld!" ); form.playername.focus(); return false; } else { if (form.playername.value.length < 2) { alert( "Bitte geben Sie mindestens 2 Zeichen ein!" ); form.playername.focus(); return false; } }
return true ;
}
</script>
<table class="body3" cellspacing="0" cellpadding="0">
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,additem");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_additem_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["itemid"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_additem_itemid = variable($_POST["itemid"], "", "db");
$post_additem_mycharacter = variable($_POST["mycharacter"], "", "db");
$post_additem_count = variable($_POST["count"], "", "db");
// Überprüfen der Eingabe
string_check($post_additem_itemid, "^[0-9%]+\$", "!error", "Item-id nicht gefunden!");
string_check($post_additem_itemid, 10, ">", "Item id zu land!");
string_check($post_additem_count, "^[0-9%]+\$", "!error", "Bitte nur Zahlen als Item id angeben!");
string_check($post_additem_count, 1, ">", "A darabszámtúl hosszú (kann ich nicht übersetzten)!");
string_check($post_additem_mycharacter, "^[0-9%]+\$", "!error", "Accountname nicht gefunden!");
string_check($post_additem_mycharacter, 32, ">", "Der Wert der schlechten Charakter Eingang!");
// Der Charakter des Besitzers des Check
character_check($post_additem_mycharacter);
// Verbindung mit der Datenbank Welt
db_select($mysql_db_world);
// Item wird überprüft
$query_additem_check_item = db_query("SELECT COUNT(*) FROM item_template WHERE entry = '" . $post_additem_itemid . "'");
$results_additem_check_item = mysqli_fetch_array($query_additem_check_item);
if ($results_additem_check_item[0] == 0) {
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,addlevel");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_addlevel_characters = db_query("SELECT guid, name, level FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_addlevel_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_addlevel_mycharacter, 32, ">", "Die Character-Feld auf false gesetzt!");
string_check($post_addlevel_mycharacter, "^[0-9%]+\$", "!erorr", "Die Character-Feld auf false gesetzt!");
// Der Charakter des Besitzers des Check
character_check($post_addlevel_mycharacter);
$query_addlevel_characters_check = db_query("SELECT level FROM characters WHERE guid = '" . $post_addlevel_mycharacter . "'");
$results_addlevel_characters_check = mysqli_fetch_array($query_addlevel_characters_check);
if ($results_addlevel_characters_check["level"] > 9) {
system_message("Bereits über dem Level 10!");
}
// Level Update
db_query("UPDATE characters SET level = '80' WHERE guid = '" . $post_addlevel_mycharacter . "'");
system_message("Sie haben erfolgreich Ihr Level aktualisiert!");
}
?>
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,admin");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["playername"])) {
// Posztolt Datenkonvertierung
$post_playertransaction_playername = variable($_POST["playername"], "", "db");
// Überprüfen Daten Posztolt
string_check($post_playertransaction_playername, 32, ">", "Der Spieler Name ist zu lang!");
// Spieler steuert
$query_playertransaction_check = db_query("SELECT COUNT(*) FROM characters WHERE name = '" . $post_playertransaction_playername . "'");
$results_playertransaction_check = mysqli_fetch_array($query_playertransaction_check);
if ($results_playertransaction_check[0] == 0) {
system_message("Der Gesuchte Spieler würde nicht gefunden!");
}
// Führen Sie den Vorgang
switch ($site_post_action) {
// Löscht das Zeichen
case "delete":
// Holen Sie sich guid
$query_playertransaction_guid = db_query("SELECT guid, name FROM characters WHERE name = '" . $post_playertransaction_playername . "'");
$results_playertransaction_guid = mysqli_fetch_array($query_playertransaction_guid);
db_query("DELETE FROM characters WHERE name = '" . $results_playertransaction_guid["name"] . "'");
db_query("DELETE FROM arena_team_member WHERE guid = '" . $results_playertransaction_guid["guid"] . "'");
db_query("DELETE FROM character_account_data WHERE guid = '" . $results_playertransaction_guid["guid"] . "'");
protected function sendMail($mail, $pdfContent)
{
$message = $this->getMailer()->compose(array(variable('system email', '*****@*****.**') => 'Olly'), $mail, __('Olly.ee hinnapäring'), __('Olly.ee hinnapäringu koopia manuses'));
$message->attach(new Swift_Attachment($pdfContent, "hinnaparing.pdf", "application/pdf"));
$this->getMailer()->send($message);
}
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("notlogged");
// Felugró ablak
if (!empty($site_popup)) {
echo '<script type="text/javascript">alert("' . $site_popup . '");</script>';
}
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["username"]) && !empty($_POST["password"]) && !empty($_POST["worktime"])) {
// Posztolt adatok átalakítása
$post_login_username = variable($_POST["username"], "strtoupper", "db");
$post_login_password = variable($_POST["password"], "strtoupper", "db");
$login_password = sha_pass_hash($post_login_username, $post_login_password);
// Account kikeresése
$query_login = db_query("SELECT COUNT(*) FROM account WHERE sha_pass_hash = '" . $login_password . "'");
$results_login = mysqli_fetch_array($query_login);
// Nombre de Cuenta és jelszó ellenõrzése
if ($results_login[0] == 0) {
site_log("bad-login-form", "IP: " . $site_ip . " | Nombre de Cuenta: " . $post_login_username . " | Fecha: " . $site_date . "");
system_message("El nombre de cuenta o la contraseña no es válida!");
}
// Posztolt munkamenet átalakítása
switch ($_POST["worktime"]) {
case "5h":
$worktime_login = 18000;
break;
case "2h":
public static function setJsTicket($ticket, $wechat)
{
$suffix = $wechat->getConfig('wid', '0');
return variable()->set('wechat_js_ticket' . $suffix, $ticket);
}
}
}
// Überprüfung der eingegebenen Email adresse
if ($_POST["email"] != $user_check_email) {
// Datenkonvertierung
$post_accountmodify_email = variable($_POST["email"], "", "db");
// Posztolt adatok ellenõrzése
string_check($post_accountmodify_email, 64, ">", "Eingegebene E-Mail-Adresse ist zu lang!");
string_check($post_accountmodify_email, 8, "<", "Eingegebene E-Mail-Adresse ist zu kurz!");
// Email módosítása
db_query("UPDATE account SET email = '" . $post_accountmodify_email . "' WHERE id = '" . $user_check_accountid . "'");
}
// Inputok kitöltésének ellenõrzése (expansion)
if ($_POST["expansion"] != $user_check_expansion) {
// Posztolt adatok átalakítás
$post_accountmodify_expansion = variable($_POST["expansion"], "", "db");
// Posztolt adatok ellenõrzése
string_check($post_accountmodify_expansion, $user_check_expansion, "<num", "Schalten Sie nicht auf eine neuere Add-on Ausgabe!");
string_check($post_accountmodify_expansion, 1, ">", "Die Hilfs-Feld auf false gesetzt!");
string_check($post_accountmodify_expansion, "^[0-2%]+\$", "!ereg", "Die Hilfs-Feld auf false gesetzt!");
// Expansion módosítása
db_query("UPDATE account SET expansion = '" . $post_accountmodify_expansion . "' WHERE id = '" . $user_check_accountid . "'");
}
system_message("Sie haben erfolgreich ihre Account daten aktualisiert!");
}
?>
<script type="text/javascript">
function checkform ( form )
{
if (form.password.value != "" || form.newpassword.value != "" || form.newpassword2.value != "") {
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged");
// Ûrlap elküldésének ellenõrzése
if (!empty($_POST)) {
// Inputok kitöltésének ellenõrzése (jelszó)
if (!empty($_POST["newpassword"]) && !empty($_POST["newpassword2"]) && !empty($_POST["password"])) {
// Posztolt adatok átalakítás
$post_accountmodify_password = variable($_POST["password"], "strtoupper", "db");
$post_accountmodify_newpassword = variable($_POST["newpassword"], "strtoupper", "db");
$post_accountmodify_newpassword2 = variable($_POST["newpassword2"], "strtoupper", "normal");
$accountmodify_password = sha_pass_hash($user_check_accountname, $post_accountmodify_password);
$accountmodify_password_final = sha_pass_hash($user_check_accountname, $post_accountmodify_newpassword);
if ($accountmodify_password == $user_check_password) {
// Posztolt adatok ellenõrzése
string_check($post_accountmodify_newpassword, $post_accountmodify_newpassword2, "!=", "La nueva contraseña es igual.");
string_check($post_accountmodify_newpassword, $user_check_accountname, "==", "El nombre de usuario y la contraseña son iguales.");
string_check($post_accountmodify_newpassword, 6, "<", "La contraseña es demasiado corta.");
string_check($post_accountmodify_newpassword, 32, ">", "La contraseña es demasiado larga.");
string_check($post_accountmodify_newpassword, "^[0-9a-zA-Z%]+\$", "!ereg", "La contraseña tiene valores raros.");
// Jelszó módosítása
db_query("UPDATE account SET sha_pass_hash = '" . $accountmodify_password_final . "' WHERE id = '" . $user_check_accountid . "'");
} else {
system_message("Contraseña actual incorrecta!");
}
}
// Inputok kitöltésének ellenõrzése (email)
function reifyFirst($sC)
{
$v = walkStar(variable(0), car($sC));
return walkStar($v, reifyS($v, nil()));
}
<?php
if ($title) {
?>
<?php
echo $title . ' - ' . variable('site name');
} else {
?>
<?php
echo variable('site name');
}
}
file_check("notlogged");
// Sitzung starten
session_start();
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["username"]) && !empty($_POST["password"]) && !empty($_POST["password2"]) && !empty($_POST["email"]) && $_POST["expansion"] != "" && !empty($_POST["security"])) {
$reg_security_answer = $_SESSION["reg_security"] + $_SESSION["reg_security2"];
string_check($reg_security_answer, $_POST["security"], "!=", "Ihre Antwort auf die Sicherheitsabfrage war falsch!");
// Clear Session
session_destroy();
// Transformation der Daten gesendet
$post_reg_username = variable($_POST["username"], "strtoupper", "db");
$post_reg_password = variable($_POST["password"], "strtoupper", "db");
$post_reg_password2 = variable($_POST["password2"], "strtoupper", "normal");
$post_reg_email = variable($_POST["email"], "", "db");
$post_reg_expansion = variable($_POST["expansion"], "", "db");
$reg_password = sha_pass_hash($post_reg_username, $post_reg_password);
// Checking Account Name
$query_reg_acc_check = db_query("SELECT COUNT(*) FROM account WHERE username = '******'");
$results_reg_acc_check = mysqli_fetch_array($query_reg_acc_check);
if ($results_reg_acc_check[0] != 0) {
system_message("Der Account Name ist schon vergeben bitte nimm einen anderen!");
}
// Überprüfen Daten Posztolt
string_check($post_reg_password, $post_reg_password2, "!=", "Der Kennwort und seine Bestätigung stimmen nicht überein!");
string_check($post_reg_username, 3, "<", "Der Account Name ist zu kurz!");
string_check($post_reg_password, 6, "<", "Ihr Passwort ist zu kurz!");
string_check($post_reg_username, 32, ">", "Der Account Name ist zu lang!");
string_check($post_reg_password, 32, ">", "Ihr Passwort ist zu lang!");
string_check($post_reg_username, $post_reg_password, "==", "Der Account Name und Passwort stimmen nicht überein!");
string_check($post_reg_email, 64, ">", "E-Mail-Adresse ist zu lang!");
<?php
// Datei Prüfen
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,charrename");
// Der Anschluss an das Zeichen Datenbank
db_select($mysql_db_characters);
// Charaktere anfordern
$query_charrename_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Überprüfen der Fertigstellung der Eingänge
if (!empty($_POST["newname"]) && !empty($_POST["mycharacter"])) {
// Posztolt Datenkonvertierung
$post_charrename_newname = variable($_POST["newname"], "strtolower,ucfirst", "db");
$post_charrename_mycharacter = variable($_POST["mycharacter"], "", "db");
// Prüfung der Verwendbarkeit ist
$char_check_query = db_query("SELECT COUNT(*) FROM characters WHERE name = '" . $post_charrename_newname . "'");
$char_check = mysqli_fetch_array($char_check_query);
if ($char_check[0] != 0) {
system_message("Dieser Name wird bereits von jemand anderem verwendet!");
}
// Inputok ellenõrzése
string_check($post_charrename_newname, 12, ">", "Der neue Name ist zu lang!");
string_check($post_charrename_newname, 2, "<", "Der neue Name ist zu kurz!");
string_check($post_charrename_newname, "^[a-zA-Z%]+\$", "!error", "Der neue Name enthält Zeichen, die nicht erlaubt sind!");
string_check($post_charrename_mycharacter, "^[0-9%]+\$", "!error", "Der Wert der schlechten Charakter Eingang!");
string_check($post_charrename_mycharacter, 32, ">", "Die Character-Feld auf false gesetzt!");
// Der Charakter des Besitzers des Check
character_check($post_charrename_mycharacter);
// aktualisieren Name
public static function setCorpAccessToken($token, $wechat)
{
$suffix = $wechat->getConfig('appid', '0');
return variable()->set('wechatcorp_access_token' . $suffix, $token);
}
}
// Zeichensatz
header("Content-Type: text/html; charset=ISO-8859-2");
// Zugehörigkeit und die MySQL-Datenbank (RealMod) Bezeichnung
$mysql_connect = mysqli_connect($mysql_host, $mysql_username, $mysql_password) or die("Verbindung mit der Datenbank Nicht möglich!");
db_select($mysql_db_realmd);
// Programm Version
$wam_version = "1.3.4 RC";
// Wichtige Variablen
$site_get_pages = variable($_GET["id"], "", "normal");
$site_get_action = variable($_GET["act"], "", "normal");
$site_get_name = variable($_GET["name"], "", "db");
$site_post_action = variable($_POST["action"], "", "normal");
$site_get_cid = variable($_GET["cid"], "", "db");
$cookie_wam_id = variable($_COOKIE["wam_id"], "", "db");
$site_get_message = variable($_GET["msg"], "stripslashes,htmlspecialchars", "normal");
$cookie_worktime = $_COOKIE["wam_worktime"];
$site_ip = $_SERVER["REMOTE_ADDR"];
// Datum anzeigen, konvertieren
$site_date_day = date("D");
switch ($site_date_day) {
case "Mon":
$site_date_day = "Montag";
break;
case "Tue":
$site_date_day = "Dienstag";
break;
case "Wed":
$site_date_day = "Mittwoch";
break;
case "Thu":
<?php
// Fájl ellenõrzése
if (!isset($mysql_connect)) {
exit;
}
file_check("logged,vip,vipmodule,addmoney");
// Csatlakozás a characters adatbázishoz
db_select($mysql_db_characters);
// Karakterek lekérdezése
$query_addmoney_characters = db_query("SELECT guid, name FROM characters WHERE account = '" . $user_check_accountid . "' ORDER BY name ASC");
// Inputok kitöltésének ellenõrzése
if (!empty($_POST["money"]) && !empty($_POST["mycharacter"])) {
// Posztolt adatok átalakítás
$post_addmoney_money = variable($_POST["money"], "", "db");
$post_addmoney_mycharacter = variable($_POST["mycharacter"], "", "db");
// Inputok ellenõrzése
string_check($post_addmoney_money, "^[0-9%]+\$", "!ereg", "Hibásan adtad meg az arany mennyiségét!");
string_check($post_addmoney_money, 5, ">", "Ilyen sok aranyat egyszerre nem tudsz addolni!");
string_check($post_addmoney_mycharacter, "^[0-9%]+\$", "!ereg", "A karakter input értéke hibás!");
string_check($post_addmoney_mycharacter, 32, ">", "A karakter input értéke hibás!");
// A karakter tulajdonosának ellenõrzése
character_check($post_addmoney_mycharacter);
// Jelenlegi pénz lekérése
$query_addmoney_money = db_query("SELECT money FROM characters WHERE guid = '" . $post_addmoney_mycharacter . "'");
$results_addmoney_money = mysqli_fetch_array($query_addmoney_money);
$post_addmoney_money = $post_addmoney_money * 10000;
$post_addmoney_money_final = $post_addmoney_money + $results_addmoney_money["money"];
// Pénz frissítése
db_query("UPDATE characters SET money = '" . $post_addmoney_money_final . "' WHERE guid = '" . $post_addmoney_mycharacter . "'");
system_message("Sikeresen frissítettük a pénzed!");
