<?php // This document outputs HTML, rather than XML header('Content-Type: text/html'); header("Cache-Control: no-cache, must-revalidate"); // A date in the past header("Expires: Mon, 26 Jul 2010 05:00:00 GMT"); require 'config.php'; require 'dbconnect.php'; require 'functions.php'; require 'session.php'; if (get_magic_quotes_gpc()) { $roomID = stripslashes(htmlspecialchars($_GET['roomID'], ENT_QUOTES)); } else { $roomID = htmlspecialchars($_GET['roomID'], ENT_QUOTES); } ?> <?php $username = $_SESSION['username']; $roomDB = "room_" . $roomID; $query = "SELECT map FROM {$roomDB}"; $result = mysql_query($query, $link) or die("A MySQL error has occurred.<br />Query: " . $query . "<br />Error: (" . mysql_errno() . ") " . mysql_error()); $roomdata = mysql_fetch_row($result); $themap = "uploaded/" . $roomdata[0]; char_tokens($roomID, $username, 1);
if ('char_arrows' == $action) { char_arrows($sqlr, $sqlc, $sqlw); } elseif ('char_bullets' == $action) { char_bullets($sqlr, $sqlc, $sqlw); } elseif ('char_companions' == $action) { char_companions($sqlr, $sqlc, $sqlw); } elseif ('char_enchanting' == $action) { char_enchanting($sqlr, $sqlc, $sqlw); } elseif ('char_engineering' == $action) { char_engineering($sqlr, $sqlc, $sqlw); } elseif ('char_gems' == $action) { char_gems($sqlr, $sqlc, $sqlw); } elseif ('char_herbs' == $action) { char_herbs($sqlr, $sqlc, $sqlw); } elseif ('char_keys' == $action) { char_keys($sqlr, $sqlc, $sqlw); } elseif ('char_mining' == $action) { char_mining($sqlr, $sqlc, $sqlw); } elseif ('char_quest_items' == $action) { char_quest_items($sqlr, $sqlc, $sqlw); } elseif ('char_tokens' == $action) { char_tokens($sqlr, $sqlc, $sqlw); } else { char_arrows($sqlr, $sqlc, $sqlw); } // close whats not needed anymore unset($action); unset($action_permission); unset($lang_char); // page footer require_once 'footer.php';