SuperNova.WS - xNova on steroids Code

oGame-like browser space realtime strategy game based on xNova

Status: Alpha
Brought to you by: smeagorl
[d98cee]: / notes.php Maximize Restore History
169 lines (128 with data), 5.3 kB

<?php

/**
 * notes.php
 *
 * 1.0s - Security checks by Gorlum for http://supernova.ws
 * @version 1.0
 * @copyright 2008 by ??????? for XNova
 */


define('INSIDE'  , true);
define('INSTALL' , false);

$ugamela_root_path = (defined('SN_ROOT_PATH')) ? SN_ROOT_PATH : './';
$phpEx = substr(strrchr(__FILE__, '.'), 1);
include("{$ugamela_root_path}common.{$phpEx}");

if ($IsUserChecked == false) {
  includeLang('login');
  header("Location: login.php");
}

check_urlaubmodus ($user);
$dpath = (!$user["dpath"]) ? DEFAULT_SKINPATH : $user["dpath"];

$GET_a = intval($_GET['a']);
$n = intval($_GET['n']);
$POST_s = intval($_POST["s"]);
$priority = intval($_POST["u"]);
$title = ($_POST["title"]) ? SYS_mysqlSmartEscape(strip_tags($_POST["title"])) : $lang['NoTitle'];
$text = ($_POST["text"]) ? SYS_mysqlSmartEscape(strip_tags($_POST["text"])) : $lang['NoText'];
$id = intval($_POST["n"]);

$lang['Please_Wait'] = "Patientez...";

//lenguaje
includeLang('notes');

$lang['PHP_SELF'] = 'notes.'.$phpEx;

if($POST_s == 1 || $POST_s == 2){//Edicion y agregar notas

  $time = time();

  if($POST_s ==1){
    doquery("INSERT INTO {{table}} SET owner={$user['id']}, time=$time, priority=$priority, title='$title', text='$text'","notes");
    message($lang['NoteAdded'], $lang['Please_Wait'],'notes.'.$phpEx,"3");
  }elseif($POST_s == 2){
    /*
      pequeño query para averiguar si la nota que se edita es del propio jugador
    */
    $note_query = doquery("SELECT * FROM {{table}} WHERE id=$id AND owner=".$user["id"],"notes");

    if(!$note_query){ error($lang['notpossiblethisway'],$lang['Notes']); }

    doquery("UPDATE {{table}} SET time=$time, priority=$priority, title='$title', text='$text' WHERE id=$id","notes");
    message($lang['NoteUpdated'], $lang['Please_Wait'], 'notes.'.$phpEx, "3");
  }

}
elseif($_POST){//Borrar

  foreach($_POST as $a => $b){
    /*
      Los checkbox marcados tienen la palabra delmes seguido del id.
      Y cada array contiene el valor "y" para compro
    */
    if(preg_match("/delmes/i",$a) && $b == "y"){

      $id = str_replace("delmes","",$a);
      $note_query = doquery("SELECT * FROM {{table}} WHERE id=$id AND owner={$user['id']}","notes");
      //comprobamos,
      if($note_query){
        $deleted++;
        doquery("DELETE FROM {{table}} WHERE `id`=$id;","notes");// y borramos
      }
    }
  }
  if($deleted){
    $mes = ($deleted == 1) ? $lang['NoteDeleted'] : $lang['NoteDeleteds'];
    message($mes,$lang['Please_Wait'],'notes.'.$phpEx,"3");
  }else{header("Location: notes.$phpEx");}

}else{//sin post...
  if($GET_a == 1){//crear una nueva nota.
    /*
      Formulario para crear una nueva nota.
    */

    $parse = $lang;

    $parse['c_Options'] = "<option value=2 selected=selected>{$lang['Important']}</option>
        <option value=1>{$lang['Normal']}</option>
        <option value=0>{$lang['Unimportant']}</option>";

    $parse['cntChars'] = '0';
    $parse['TITLE'] = $lang['Createnote'];
    $parse['text'] = '';
    $parse['title'] = '';
    $parse['inputs'] = '<input type=hidden name=s value=1>';

    $page .= parsetemplate(gettemplate('notes_form'), $parse);

    display($page,$lang['Notes'],false);

  }
  elseif($GET_a == 2){//editar
    /*
      Formulario donde se puestra la nota y se puede editar.
    */
    $note = doquery("SELECT * FROM {{table}} WHERE owner={$user['id']} AND id=$n",'notes',true);

    if(!$note){ message($lang['notpossiblethisway'],$lang['Error']); }

    $cntChars = strlen($note['text']);

    $SELECTED[$note['priority']] = ' selected="selected"';

    $parse = array_merge($note,$lang);

    $parse['c_Options'] = "<option value=2{$SELECTED[2]}>{$lang['Important']}</option>
        <option value=1{$SELECTED[1]}>{$lang['Normal']}</option>
        <option value=0{$SELECTED[0]}>{$lang['Unimportant']}</option>";

    $parse['cntChars'] = $cntChars;
    $parse['TITLE'] = $lang['Editnote'];
    $parse['inputs'] = '<input type=hidden name=s value=2><input type=hidden name=n value='.$note['id'].'>';

    $page .= parsetemplate(gettemplate('notes_form'), $parse);

    display($page,$lang['Notes'],false);

  }
  else{//default

    $notes_query = doquery("SELECT * FROM {{table}} WHERE owner={$user['id']} ORDER BY time DESC",'notes');
    //Loop para crear la lista de notas que el jugador tiene
    $count = 0;
    $parse=$lang;
    while($note = mysql_fetch_array($notes_query)){
      $count++;
      //Colorea el titulo dependiendo de la prioridad
      if($note["priority"] == 0){ $parse['NOTE_COLOR'] = "lime";}//Importante
      elseif($note["priority"] == 1){ $parse['NOTE_COLOR'] = "yellow";}//Normal
      elseif($note["priority"] == 2){ $parse['NOTE_COLOR'] = "red";}//Sin importancia

      //fragmento de template
      $parse['NOTE_ID'] = $note['id'];
      $parse['NOTE_TIME'] = date(FMT_DATE_TIME,$note["time"]);
      $parse['NOTE_TITLE'] = $note['title'];
      $parse['NOTE_TEXT'] = strlen($note['text']);

      $list .= parsetemplate(gettemplate('notes_body_entry'), $parse);

    }

    if($count == 0){
      $list .= "<tr><th colspan=4>{$lang['ThereIsNoNote']}</th>\n";
    }

    $parse = $lang;
    $parse['BODY_LIST'] = $list;
    //fragmento de template

  display(parsetemplate(gettemplate('notes_body'), $parse), $lang['Notes']);
  }
}
?>
SuperNova.WS - xNova on steroids Code

oGame-like browser space realtime strategy game based on xNova

Branches

Tags

[d98cee]: / notes.php Maximize Restore History

169 lines (128 with data), 5.3 kB
