agng/ag/clan/c_ware.php

<?php
/*
 * Created on 07.03.2009
 *
 * @copyright (c) 2009 animegame.eu
 * @license http://www.gnu.org/licenses/gpl-3.0.html GNU General Public Licence
 *
 */

include_once(ROOT_PATH.'/include/config.inc.php');
include_once(ROOT_PATH.'/include/char.inc.php');
include_once (ROOT_PATH . '/include/parse.inc.php');
// GET-Section
// Kritisch (SQL-Injections)
$char_id = validateUnsignedInteger($_GET['char_id'], null);
$c_ware = validateUnsignedInteger($_GET['c_ware'], null);

//Unkritisch
$charm = $_GET['charm'];

if(!$char_id) {
	include(ROOT_PATH.'/char_index.php');
	exit;
}

if($charm) {
	mysql_query("UPDATE chars SET clan_train='$c_ware' WHERE id='$char_id' AND besitzer='$user_ida[id]' LIMIT 1");
}

$char = getChar($char_id, false);
$clan_items = mysql_query("SELECT ci.name, ci.type, cw.id, 1/(1+exp(3-$char[level]/12)) * nutzung as nutzkosten FROM clan_ware cw LEFT JOIN clan_item ci ON(cw.item_id=ci.id) WHERE cw.clan='$user_ida[clan]'");
if(!isUserOwnerOf($user_ida['id'], $char_id)){
	// Legacy (Datei muss ueberarbeitet werden)
	$char = null;
}


?>
<html>


<body>
<form action="index.php" method="GET">
	<input type="hidden" name="as" value="clan/c_ware" />
	<input type="hidden" name="charm" value="1" />
	<input type="hidden" name="char_id" value="<?php echo $char_id; ?>" />

<table cellpadding="0" cellspacing="0" width="100%" height="127">
	<!-- MSTableType="layout" -->
	<tr>
		<td valign="top" height="31" colspan="2">
		<p align="center"><b>Clan Items</b></td>
	</tr>
	<tr>
		<td height="25" width="260" valign="middle" align="center">
		Raum f&uuml;r <?php echo $char[name] ; ?></td>
		<td height="25" width="273" valign="middle">
<select id="input" name="c_ware">
<option value="0">W&auml;hle Kampf Raum
<?php
while($row = mysql_Fetch_array($clan_items)) {
$save="";
if($row['id'] == $char['clan_train']) { $save = "Selected";  }
if($row['type'] == "Raum") {
echo "<option value='$row[id]' $save>$row[name] (".displayMoney($row['nutzkosten']).") </option>";
}

}
?>
</select>
</td>
</tr>
	<tr>
		<td height="19" width="260" valign="top">&nbsp;</td>
		<td height="19" width="273">&nbsp;<input id="input" type=submit value="Speichern"></form></td>
	</tr>
</table>
</form>
</body>

</html>
14 years ago			`<?php`
			`/*`
			`* Created on 07.03.2009`
			`*`
			`* @copyright (c) 2009 animegame.eu`
			`* @license http://www.gnu.org/licenses/gpl-3.0.html GNU General Public Licence`
			`*`
			`*/`

changed the way of defining the path ... now it should also be able to place the installation of ag in a different directory! 13 years ago			`include_once(ROOT_PATH.'/include/config.inc.php');`
			`include_once(ROOT_PATH.'/include/char.inc.php');`
			`include_once (ROOT_PATH . '/include/parse.inc.php');`
14 years ago			`// GET-Section`
			`// Kritisch (SQL-Injections)`
			`$char_id = validateUnsignedInteger($_GET['char_id'], null);`
			`$c_ware = validateUnsignedInteger($_GET['c_ware'], null);`

			`//Unkritisch`
			`$charm = $_GET['charm'];`

			`if(!$char_id) {`
changed the way of defining the path ... now it should also be able to place the installation of ag in a different directory! 13 years ago			`include(ROOT_PATH.'/char_index.php');`
14 years ago			`exit;`
			`}`

changed the way of defining the path ... now it should also be able to place the installation of ag in a different directory! 13 years ago			`if($charm) {`
14 years ago			`mysql_query("UPDATE chars SET clan_train='$c_ware' WHERE id='$char_id' AND besitzer='$user_ida[id]' LIMIT 1");`
			`}`

			`$char = getChar($char_id, false);`
			`$clan_items = mysql_query("SELECT ci.name, ci.type, cw.id, 1/(1+exp(3-$char[level]/12)) * nutzung as nutzkosten FROM clan_ware cw LEFT JOIN clan_item ci ON(cw.item_id=ci.id) WHERE cw.clan='$user_ida[clan]'");`
			`if(!isUserOwnerOf($user_ida['id'], $char_id)){`
			`// Legacy (Datei muss ueberarbeitet werden)`
			`$char = null;`
			`}`


			`?>`
			`<html>`


			`<body>`
			`<form action="index.php" method="GET">`
			`<input type="hidden" name="as" value="clan/c_ware" />`
			`<input type="hidden" name="charm" value="1" />`
			`<input type="hidden" name="char_id" value="<?php echo $char_id; ?>" />`

			`<table cellpadding="0" cellspacing="0" width="100%" height="127">`
			`<!-- MSTableType="layout" -->`
			`<tr>`
			`<td valign="top" height="31" colspan="2">`
			`<p align="center"><b>Clan Items</b></td>`
			`</tr>`
			`<tr>`
			`<td height="25" width="260" valign="middle" align="center">`
			`Raum für <?php echo $char[name] ; ?></td>`
			`<td height="25" width="273" valign="middle">`
			`<select id="input" name="c_ware">`
			`<option value="0">Wähle Kampf Raum`
			`<?php`
			`while($row = mysql_Fetch_array($clan_items)) {`
			`$save="";`
			`if($row['id'] == $char['clan_train']) { $save = "Selected"; }`
			`if($row['type'] == "Raum") {`
			`echo "<option value='$row[id]' $save>$row[name] (".displayMoney($row['nutzkosten']).") </option>";`
			`}`

			`}`
			`?>`
changed the way of defining the path ... now it should also be able to place the installation of ag in a different directory! 13 years ago			`</select>`
14 years ago			`</td>`
			`</tr>`
			`<tr>`
			`<td height="19" width="260" valign="top"> </td>`
			`<td height="19" width="273"> <input id="input" type=submit value="Speichern"></form></td>`
			`</tr>`
			`</table>`
			`</form>`
			`</body>`

			`</html>`