function setActStatus($strategyID, $game, $tournamentId) { $link = getDBConnection(); if (mysqli_select_db($link, getDBName())) { $strategyID = mysqli_real_escape_string($link, $strategyID); $game = mysqli_real_escape_string($link, $game); $tournamentId = mysqli_real_escape_string($link, $tournamentId); mysqli_query($link, "UPDATE strategies SET status = 'OK' WHERE status = 'ACT' AND user = "******" AND game = " . $game . " AND tournament = " . $tournamentId); mysqli_query($link, "UPDATE strategies SET status = 'ACT' WHERE id = " . $strategyID . " AND user = "******" AND tournament = " . $tournamentId); } }
echo $question['question']; ?> </div> <h4>Ответ:</h4> <div class = "answerDiv"> <?php echo $question['answer']; ?> </div> <hr> <?php } ?> <?php if (getActiveUserID() != -1) { ?> <br> <!-- Форма отправки вопроса --> <form role="form" method="post"> <div class="form-group"> <label for="userQuestion" class = "APfont">Ваш вопрос:</label> <textarea id = "userQuestion" name = "userQuestion" class="form-control" rows="3"></textarea> </div> <button type = "submit" name = "submit" class = "btn btn-default" onclick = "sendQuestion(); return false;">Отправить</button> </form> <?php } ?> </div>
<?php include_once 'procedures.php'; $val = changePassword($_POST['newPassword'], isAdmin() && isset($_GET['id']) ? $_GET['id'] : getActiveUserID()); switch ($val) { case 0: echo "Пароль успешно обновился!"; break; case 1: echo "Не удалось обновить пароль в БД!"; break; case 2: echo "Проблемы с доступом к БД!"; break; case 4: echo "Некорректный пароль"; break; }
<?php include_once "procedures.php"; $id = intval($_GET['id']); if (isset($_GET['id'])) { $messages = getUserMessages(0, -1, $id); if (isset($messages[$id])) { $msg = $messages[$id]; if ($msg['recevier'] == getActiveUserID()) { markMessageAsViewed($id); } ?> <?php include "top.php"; ?> <div class="content container"> <br /> <p style="font-size:16px;"> Тема: <?php echo $msg['title']; ?> <br /> От кого: <?php echo getNicknameById($msg['sender']); ?> <br /> Кому: <?php echo getNicknameById($msg['recevier']); ?> <br />
<?php include_once 'procedures.php'; $val = 0; $val += setUserRealName($_POST['newName'], isAdmin() && isset($_GET['id']) ? $_GET['id'] : getActiveUserID()); $val += setUserSurname($_POST['newSurname'], isAdmin() && isset($_GET['id']) ? $_GET['id'] : getActiveUserID()); $val += setUserPatronymic($_POST['newPatronymic'], isAdmin() && isset($_GET['id']) ? $_GET['id'] : getActiveUserID()); if (isAdmin()) { if (isset($_POST['group'])) { $val += setUserGroup($_POST['group'], $_GET['id']); } } if ($val == 0) { echo "Информация успешно обновлена!"; } else { echo "При обновлении информации возникли ошибки: {$val}"; }
<div class="titleName">Изменение информации</div> <form class="form-signin" role="form" method="POST"> <input class="form-control" id = "newSurname" value="<?php echo getUserSurname(isAdmin() && isset($_GET['id']) ? $_GET['id'] : ""); ?> " type="text" placeholder="Фамилия"> <input class="form-control" id = "newName" value="<?php echo getUserRealName(isAdmin() && isset($_GET['id']) ? $_GET['id'] : ""); ?> " type="text" placeholder="Имя"> <input class="form-control" id = "newPatronymic" value="<?php echo getUserPatronymic(isAdmin() && isset($_GET['id']) ? $_GET['id'] : ""); ?> " type="text" placeholder="Отчество"> <?php if (isAdmin() && $id != getActiveUserID()) { ?> <br /> Роль: <select id="group" class="form-control"> <option value="user" <?php if (isUserInGroup('user', $id)) { echo "selected"; } ?> >Пользователь</option> <option value="moder" <?php if (isUserInGroup('moder', $id)) { echo "selected"; } ?> >Модератор</option>
<?php include_once "procedures.php"; if ($_GET['round']) { $roundId = intval($_GET['round']); } else { $roundId = -1; } $_SESSION['tournamentState'] = 'duels.php'; $_SESSION['tournamentDuel'] = $roundId; $gameId = intval($_GET['game']); $userId = isAdmin() && isset($_GET['uid']) ? intval($_GET['id']) : getActiveUserID(); $page = isset($_GET['page']) ? intval($_GET['page']) : 0; $visual = getVisualizerByGame($gameId); $tournamentId = intval($_GET['tournament']); $duels = getDuels($roundId, $gameId, $userId, $tournamentId, $page * 10, 10); ?> <h3><?php echo getDuelHeader($roundId, $gameId); ?> </h3> Страница: <br /> <div class="btn-group"> <?php $limit = getDuelsCount($roundId, $gameId, $userId, $tournamentId); $skipped = false; for ($i = 0; $i < $limit; $i += 10) { $p = intval($i / 10); if (abs($p - $page) <= 2 || $i == 0 || $i + 10 >= $limit) {
$fileInputName = $_POST['formInputName']; $tournamentId = intval($_POST['tournamentId']); $extension = mysqli_real_escape_string($link, getFileExtension($fileInputName)); $success = mysqli_query($link, "INSERT INTO strategies SET user = "******", game = " . $id . ", language = '" . $extension . "', tournament = " . $tournamentId); if (!$success) { echo "Ошибка записи в БД!"; exit; } $strategy = mysqli_insert_id($link); saveFileOnDisc2(addslashes("./executions/") . $strategy, $fileInputName); if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') { $compileArr = array('cpp' => 'cl.bat', 'c' => 'cl.bat', 'vb' => 'vbcl.bat', 'pas' => 'fpc.bat'); } else { $compileArr = array('cpp' => './gcc.sh', 'c' => './gcc.sh', 'py' => './python.sh'); } $output = array(); $execValue = 0; if (isset($compileArr[$lang])) { $extension = $lang; } if ($compileArr[$extension]) { exec($compileArr[$extension] . " {$strategy}", $output, $execValue); } else { $execValue = 1; } if ($execValue != 0) { mysqli_query($link, "UPDATE strategies SET status = 'CE' WHERE id = " . $strategy . " AND user = "******" AND tournament = " . $tournamentId); } else { setActStatus($strategy, $id, $tournamentId); } }
function changePassword($newPassword, $id = "") { if ($newPassword == "" || !isActiveUser()) { return 4; } $link = getDBConnection(); if (mysqli_select_db($link, getDBName())) { $newPassword = md5(md5(trim(mysqli_real_escape_string($link, $newPassword)))); if (isAdmin() && $id != "") { $currentId = intval($id); } else { $currentId = intval(getActiveUserID()); } if (mysqli_query($link, "UPDATE users SET password = '******' WHERE id = {$currentId}")) { //logOff(); LogIn(md5(generateUniqueCode(10)), getActiveUserID()); return 0; } return 1; } else { return 2; } }
<?php include_once 'procedures.php'; $link = getDBConnection(); if (mysqli_select_db($link, getDBName())) { $duel = intval($_GET['duel']); $user = intval(getActiveUserID()); $round = mysqli_result(mysqli_query($link, "SELECT round FROM duels WHERE id = {$duel}"), 0); $query = "SELECT COUNT(*) FROM duels"; if (!isAdmin()) { $query .= " INNER JOIN strategies s1 ON s1.id = duels.strategy1 INNER JOIN strategies s2 ON s2.id = duels.strategy2"; if ($round != -1) { $query .= " INNER JOIN rounds ON rounds.id = duels.round"; } $query .= " WHERE (s1.user = {$user} OR s2.user = {$user}) AND duels.id = {$duel}"; if ($round != -1) { $query .= " AND rounds.visible = true"; } } if (mysqli_result(mysqli_query($link, $query), 0) > 0) { header("Content-Type: text/plain"); $file = @file_get_contents("./logs/{$duel}.txt"); echo $file; } }
'title' : $("#title").val(), 'text' : text, 'submit' : 'true' }, function (data) { showModalAlert(data); window.location.reload(); } ); } </script> <?php if (isActiveUser()) { $id = getActiveUserID(); $messages = getUserMessages(); ?> <br /> <table class="table table-bordered"> <thead> <tr> <td>От кого</td> <td>Кому</td> <td>Тема</td> <td>Сообщение</td> </tr> </thead> <tbody> <?php foreach ($messages as $key => $value) {
<?php include_once 'procedures.php'; $link = getDBConnection(); if (mysqli_select_db($link, getDBName())) { $id = intval($_GET['id']); $query = "SELECT * FROM strategies WHERE id = {$id}"; if (!isAdmin()) { $query .= " AND user = "******"./executions/" . $id)) === FALSE)) { // in php >= 5.6 we need to set encoding for htmlspecialchars! $encodings = array('UTF-8', 'CP1251', 'ISO-8859-1', 'KOI8-R'); foreach ($encodings as $encoding) { $editedCode = nl2br(str_replace(" ", " ", str_replace("\t", " ", htmlspecialchars($file, ENT_COMPAT | ENT_HTML401, $encoding)))); if (!empty($editedCode)) { echo '<code>' . $editedCode . '</code>'; break; } } } }
echo $key; ?> "> <a target="_blank" href="getSource.php?id=<?php echo $key; ?> ">Показать код</a> <?php if ($value['status'] == 'CE') { echo ' / <a target="_blank" href="getCompileLog.php?id=' . $key . '">Показать лог компиляции</a>'; } ?> </div> </td> <?php if (getActiveUserID() == $user && $tournamentRunning) { ?> <td align=center> <?php if ($value['status'] == "OK") { ?> <div class = "sendStrategyDiv"> <form method=post> <button type="button" class="btn btn-primary" onclick = "updateACTStrategy(<?php echo $key . ',' . $id . ',' . $tournamentId; ?> ); return false;">Сделать текущей</button> </form> </div> <?php }
function getUserPatronymic($id = "") { if (!isActiveUser()) { return "Anonymous"; } $link = getDBConnection(); if (mysqli_select_db($link, getDBName())) { if (isAdmin() && $id != "") { $currentId = intval($id); } else { $currentId = intval(getActiveUserID()); } $query = mysqli_query($link, "SELECT patronymic FROM users WHERE id = {$currentId}"); $res = mysqli_fetch_assoc($query); return $res['patronymic']; } }
$tournamentId = -1; if (isset($_GET['tournament'])) { $tournamentId = intval($_GET['tournament']); } $_SESSION['adminTournamentId'] = $tournamentId; $roundId = -1; if (isset($_GET['round'])) { $roundId = intval($_GET['round']); } $_SESSION['adminRoundId'] = $roundId; $tournamentList = getTournamentList(); if ($tournamentId != -1) { $roundList = getRoundList($tournamentId); } $gameId = getGameByTournament($tournamentId); $duels = getDuels($roundId, $gameId, getActiveUserID(), $tournamentId); $visual = @getVisualizerByGame($gameId); ?> <script> changeActiveAdminButton('duelsButton'); </script> <script> function loadRoundData(tournamentId, roundId) { $('#dataContainer').load('APduels.php?tournament=' + tournamentId + '&round=' + roundId); } function getSelectorValue(selector) {
$_SESSION['tournamentState'] = 'training.php'; $tournamentId = intval($_GET['tournament']); $gameId = intval($_GET['id']); if (getActiveUserID() != -1) { ?> <h3>Тренировочные партии</h3> <a href="javascript:loadTrainingDuel(<?php echo $gameId; ?> , <?php echo $tournamentId; ?> )">Посмотреть</a> <?php } if (getCurrentStrategy(getActiveUserID(), $tournamentId) != null) { ?> <h3>Сыграть с участниками</h3> <table class="table table-bordered"> <?php $users = getUsersList(true); foreach ($users as $user) { $strategies = getUserStrategies($gameId, $user['id'], $tournamentId, true); if (!empty($strategies)) { ?> <tr align=center> <td><b><?php echo $user['login']; ?> </b><br /> <select class="form-control" id="strategy-<?php