if (empty($player_name)) { create_error('You must enter a player name!'); } $race_id = $_REQUEST['race_id']; if (empty($race_id) || $race_id == 1) { create_error('Please choose a race!'); } if (!is_numeric($var['game_id'])) { create_error('Game ID is not numeric'); } $gameID = $var['game_id']; $db->query('SELECT 1 FROM player WHERE game_id = ' . $db->escapeNumber($gameID) . ' AND player_name = ' . $db->escape_string($player_name, true) . ' LIMIT 1'); if ($db->nextRecord() > 0) { create_error('The player name already exists.'); } if (!Globals::isValidGame($gameID)) { create_error('Game not found!'); } // does it cost something to join that game? $credits = Globals::getGameCreditsRequired($gameID); if ($credits > 0) { if ($account->getTotalSmrCredits() < $credits) { create_error('You do not have enough credits to join this game!'); } $account->decreaseTotalSmrCredits($credits); } // check if hof entry is there $db->query('SELECT 1 FROM account_has_stats WHERE account_id = ' . $db->escapeNumber(SmrSession::$account_id) . ' LIMIT 1'); if (!$db->nextRecord()) { $db->query('INSERT INTO account_has_stats (account_id, HoF_name) VALUES (' . $db->escapeNumber($account->getAccountID()) . ', ' . $db->escape_string($account->getLogin(), true) . ')'); }
$boxTypeID = $db->getInt('box_type_id'); $container['box_type_id'] = $boxTypeID; $boxes[$boxTypeID] = array('ViewHREF' => SmrSession::getNewHREF($container), 'BoxName' => $db->getField('box_type_name'), 'TotalMessages' => $db->getField('count(message_id)')); } $template->assign('Boxes', $boxes); } else { $template->assign('BackHREF', SmrSession::getNewHREF(create_container('skeleton.php', 'box_view.php'))); $db->query('SELECT * FROM message_boxes WHERE box_type_id=' . $db->escapeNumber($var['box_type_id']) . ' ORDER BY send_time DESC'); $messages = array(); if ($db->getNumRows()) { $container = create_container('box_delete_processing.php'); $container['box_type_id'] = $var['box_type_id']; $template->assign('DeleteHREF', SmrSession::getNewHREF($container)); while ($db->nextRecord()) { $gameID = $db->getInt('game_id'); $validGame = $gameID > 0 && Globals::isValidGame($gameID); $messageID = $db->getInt('message_id'); $messages[$messageID] = array('ID' => $messageID); $senderAccount =& SmrAccount::getAccount($db->getField('sender_id')); $senderName = $senderAccount->getLogin() . ' (' . $senderAccount->getAccountID() . ')'; if ($validGame) { $senderPlayer =& SmrPlayer::getPlayer($senderAccount->getAccountID(), $gameID); if ($senderAccount->getLogin() != $senderPlayer->getPlayerName()) { $senderName .= ' a.k.a ' . $senderPlayer->getPlayerName(); } $container = create_container('skeleton.php', 'box_reply.php'); $container['sender_id'] = $senderAccount->getAccountID(); $container['game_id'] = $gameID; $messages[$messageID]['ReplyHREF'] = SmrSession::getNewHREF($container); } $messages[$messageID]['SenderName'] = $senderName;