if (login_check()) { $me = $_SESSION['u']; if ($me == $memberID) { $memberID = 'me'; } } /* check here for POST, for create/delete member account */ // are we supplying data via POST? → write to log, create DB duplicate, Location: /member? if (isset($_POST['store'])) { $profile = getPlayerSummary($me); $profile['isgroupmember'] = $_SESSION['g']; logDB("User requested profile storage: {$me}"); storePlayerSummaryDB($profile); /* if this ever fails, ignore it :] */ /* XXX messy line to get memberurl populated */ $profile = inflatePlayerSummary(deflatePlayerSummary($profile)); if (true) { header("Location: " . str_replace('//steamlug.org', '', $profile['memberurl'])); exit; } } // are we supplying data via POST? → write to log, remove DB duplicate, Location: /member? if (isset($_POST['unstore'])) { logDB("User requested profile removal: {$me}"); $removed = removePlayerSummaryDB($me); if ($removed) { header("Location: /member/"); exit; } } $accountUpdate = "";
function findPlayerSummaryDB($vanity) { global $database; try { $database->beginTransaction(); /* TODO: safe-ify $id */ $statement = $database->prepare("SELECT * FROM steamlug.members WHERE members.profileurl = :vanity LIMIT 1;"); $statement->execute(array('vanity' => $vanity)); $user = $statement->fetch(PDO::FETCH_ASSOC); $database->commit(); if ($user !== false) { $user = inflatePlayerSummary($user); } return $user; } catch (Exception $e) { return false; } }