public static function add_new_message($game_id, $user_id, $message)
{
$safe_message = safe_input::sql_inj($message);
if (safe_input::is_number($game_id) && safe_input::is_number($user_id)) {
$date = microtime(true);
$db = new database();
$query = "INSERT INTO `message` (`gameID`, `userID`, `date`, `message_text`) VALUES ( '{$game_id}', '{$user_id}', '{$date}', '{$safe_message}');";
$res = $db->query($query);
message::$last_inserted_id = $db->insert_id();
return $res;
} else {
return false;
//invalud input
}
}
public static function get_session_by_hash($hash)
{
if (safe_input::is_valid_session_hash($hash)) {
$safe_hash = safe_input::sql_inj($hash);
$query = "SELECT * FROM `session` WHERE `hash` = '{$safe_hash}'";
$db = new database();
$db->query($query);
if ($db->number_of_rows() > 0) {
return $db->fetch_row();
} else {
return null;
}
} else {
return null;
//invalid hash
}
}
public static function all($value)
{
$v = safe_input::xss($value);
$vv = safe_input::sql_inj($v);
return $vv;
}
