*/ foreach ($_POST as $secvalue) { if (eregi("<[^>]*script*\"?[^>]*>", $secvalue) or eregi("\\([^>]*.*\"?[^>]*\\)", $secvalue)) { die("X"); } } require_once "../code/config.php"; require_once "../includes/sql_layer.php"; require_once "../api_rs.php"; require_once "../api_format.php"; if (isset($_POST['teamid']) && $_POST['teamid'] != 'undefined') { $wfteam_id = strip_tags($_POST['teamid']); } else { $wfteam_id = 0; } if (isset($_POST['laction']) && $_POST['laction'] != 'undefined') { $client_action = strip_tags(urldecode($_POST['laction'])); } else { $client_action = ""; } $dbi = sql_connect($dbhost, $dbuname, $dbpass, $dbname); $RS = DB_listWFTeamLineUp($dbi, $wfteam_id); $OUT = '<table class=\'tchild\' id=\'lineupT' . $wfteam_id . '\' name=\'lineupT' . $wfteam_id . '\'>'; if (strlen($client_action) > 1) { $OUT = $OUT . RecordsetToDataTable($RS, array(2, 4, 5, 6, 7, 8), array($client_action), array(array(0, 1)), array('Remove')); } else { $OUT = $OUT . RecordsetToDataTable($RS, array(2, 4, 5, 6, 7, 8)); } $OUT = $OUT . '</table>'; header('Content-Type: application/html; charset=ISO-8859-1'); echo $OUT;
function wf_process_team($obj) { /* * actually create/clone the wfteam into any LIGA of the LSDB System * this can be a 'registration pool' or an actual event. LigaID link is stored with the wfevent object */ global $dbi; $ret = 0; $aT = wf_create_LSDB_Team($obj); if ($aT['id'] > 1) { $ret = $ret + 1; // ok now the Players ... $RS = DB_listWFTeamLineUp($dbi, $obj['wfteam_id']); if (sizeof(!$RS > 0)) { debug('E:WFF113:NoPlayerInTeam'); } else { foreach ($RS as $r) { wf_add_player2team($r[3], $aT['id'], $aT['tevent_id'], 1); } } } return $ret; }