$dead_ppl->query("SELECT *\n\t\t\t\t\t FROM kills\n\t\t\t\t\t WHERE game_id = {$player->game_id} AND\n\t\t\t\t\t processed = 'FALSE'\n\t\t\t\t\t ORDER BY rand()\n\t\t\t\t\t LIMIT 1\n\t\t\t\t\t ");
// did we get one result?
if ($dead_ppl->next_record()) {
// get their id's
$killed_id = $dead_ppl->f("dead_id");
$killer_id = $dead_ppl->f("killer_id");
$curr_sector = $dead_ppl->f("sector_id");
$dead_exp = $dead_ppl->f("dead_exp");
$kill_exp = $dead_ppl->f("kill_exp");
// we have to set the 'process' column to true here
// BEFORE we give access free to that table.
// otherwise another thread could pick this row up
// but we cannot delte the entry before we sent that poor guy back to his hq
$db->query("UPDATE kills SET processed = 'TRUE' WHERE game_id = {$player->game_id} AND dead_id = {$killed_id} AND killer_id = {$killer_id}");
// give table free
$dead_ppl->unlock();
if ($debug) {
print "<p>report any errors on that page to spock</p>";
}
// create player object
// JUST FOR READING!!!
// DO NOT CHANGE SOMETHING IN THERE!
$killed = new SMR_PLAYER($killed_id, SmrSession::$game_id);
$killer = new SMR_PLAYER($killer_id, SmrSession::$game_id);
// is one of the dead guys the original attacker or defender?
if ($killed_id == $defender_id || $killed_id == $attacker_id) {
$container["continue"] = "No";
}
// save some time here
$killer_name = get_colored_text($killer->alignment, $killer->player_name);
$killed_name = get_colored_text($killed->alignment, $killed->player_name);
$container['account_id'] = $album_id;
forward($container);
exit;
}
$db = new SmrMySqlDatabase();
if (!isset($_GET['comment']) || empty($_GET['comment'])) {
create_error_offline('Please enter a comment.');
} else {
$comment = $_GET['comment'];
}
// get current time
$curr_time = TIME;
$comment = word_filter($comment);
$account->sendMessageToBox(BOX_ALBUM_COMMENTS, $comment);
// check if we have comments for this album already
$db->lockTable('album_has_comments');
$db->query('SELECT MAX(comment_id) FROM album_has_comments WHERE album_id = ' . $db->escapeNumber($album_id));
if ($db->nextRecord()) {
$comment_id = $db->getField('MAX(comment_id)') + 1;
} else {
$comment_id = 1;
}
$db->query('INSERT INTO album_has_comments
(album_id, comment_id, time, post_id, msg)
VALUES (' . $db->escapeNumber($album_id) . ', ' . $db->escapeNumber($comment_id) . ', ' . $db->escapeNumber($curr_time) . ', ' . $db->escapeNumber($account->getAccountID()) . ', ' . $db->escapeString($comment) . ')');
$db->unlock();
header('Location: ' . URL . '/album/?' . get_album_nick($album_id));
exit;
} catch (Exception $e) {
handleException($e);
}
