2018-01-28 16:40:49 +00:00
|
|
|
<?php
|
2021-01-27 10:18:31 +00:00
|
|
|
|
2021-01-29 15:21:14 +00:00
|
|
|
use Battles\Database\DBPDO;
|
2021-01-27 11:30:11 +00:00
|
|
|
use Battles\GameLogs;
|
2021-01-27 10:18:31 +00:00
|
|
|
use Battles\Template;
|
|
|
|
|
|
2018-01-28 16:40:49 +00:00
|
|
|
session_start();
|
2020-10-29 23:30:05 +00:00
|
|
|
require_once "config.php";
|
2020-08-27 12:53:01 +00:00
|
|
|
define('ERROR_NO_SUCH_USER', 'Такого пользователя не существует!');
|
|
|
|
|
define('ERROR_USER_IS_BLOCKED', 'Пользователь заблокирован!');
|
|
|
|
|
define('ERROR_WRONG_PASSWORD', 'Неверный пароль!');
|
|
|
|
|
define('ERROR_EMPTY_CREDENTIALS', 'Вы не ввели логин или пароль!');
|
2021-01-29 15:21:14 +00:00
|
|
|
$db = new DBPDO();
|
2019-03-28 15:02:04 +00:00
|
|
|
foreach ($_POST as $key => $val) { //Проверка всех значений массива POST одним махом.
|
2018-01-28 16:40:49 +00:00
|
|
|
$_POST[$key] = iconv(mb_detect_encoding($_POST[$key], 'auto'), 'utf-8', $val);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$username = filter_input(INPUT_POST, 'username', FILTER_SANITIZE_SPECIAL_CHARS);
|
2020-06-23 08:49:49 +00:00
|
|
|
$password = $_POST['password'] ?? '';
|
|
|
|
|
$battle = $_COOKIE['battle'] ?? '';
|
2018-01-28 16:40:49 +00:00
|
|
|
$error = "";
|
|
|
|
|
|
2018-03-05 18:02:24 +00:00
|
|
|
if ($username && $password) {
|
2021-01-29 15:21:14 +00:00
|
|
|
$user_query = $db->ofetch('SELECT id, login, pass, room, block FROM users WHERE login = ?', $username);
|
2018-01-28 16:40:49 +00:00
|
|
|
|
2021-01-29 15:21:14 +00:00
|
|
|
if (!$user_query->id) {
|
2020-08-27 12:53:01 +00:00
|
|
|
$error = ERROR_NO_SUCH_USER;
|
2021-01-29 15:21:14 +00:00
|
|
|
} elseif ($user_query->block) {
|
2020-08-27 12:53:01 +00:00
|
|
|
$error = ERROR_USER_IS_BLOCKED;
|
2021-01-29 15:21:14 +00:00
|
|
|
} elseif (password_verify($password, $user_query->pass)) {
|
2018-01-28 16:40:49 +00:00
|
|
|
|
2018-03-05 18:02:24 +00:00
|
|
|
if (!$error) {
|
2018-12-11 17:40:12 +00:00
|
|
|
# Проверка на мультоводство по используемому кукису.
|
2021-01-29 15:21:14 +00:00
|
|
|
if ($battle != null && $user_query->id != $battle) {
|
|
|
|
|
GameLogs::addUserLog($user_query->id,'Разные ID на входе. Возможно используются несколько аккаунтов.', 'multiaccounts');
|
2018-03-05 18:02:24 +00:00
|
|
|
}
|
|
|
|
|
|
2021-01-29 15:21:14 +00:00
|
|
|
setcookie("battle", $user_query->id);
|
|
|
|
|
$_SESSION['uid'] = $user_query->id;
|
|
|
|
|
setcookie("uid", $user_query->id, time() + 43200, "/", GAMEDOMAIN);
|
|
|
|
|
setcookie("hashcode", md5($user_query->id . $user_query->pass . $username), time() + 43200, "/", GAMEDOMAIN);
|
2018-03-05 18:02:24 +00:00
|
|
|
$_SESSION['sid'] = session_id();
|
|
|
|
|
|
2021-01-29 15:21:14 +00:00
|
|
|
$onl = $db->ofetch('SELECT user_id FROM online WHERE user_id = ?', $user_query->id);
|
|
|
|
|
if (isset($onl->user_id)) {
|
|
|
|
|
$db->execute('UPDATE online SET date = ? WHERE user_id = ?', [time(), $user_query->id]);
|
2018-03-05 18:02:24 +00:00
|
|
|
} else {
|
2021-01-29 15:21:14 +00:00
|
|
|
$db->execute('INSERT INTO online (user_id, date, room, real_time) VALUES (?,?,?,?)', [$user_query->id, time(), $user_query->room, time()]);
|
2018-03-05 18:02:24 +00:00
|
|
|
}
|
2018-01-28 16:40:49 +00:00
|
|
|
|
2021-01-29 15:21:14 +00:00
|
|
|
$db->execute('UPDATE users SET session_id = ?, enter_game = 1 WHERE id = ?', [session_id(), $user_query->id]);
|
2018-03-05 18:02:24 +00:00
|
|
|
header("Location: fight.php");
|
|
|
|
|
}
|
2020-08-27 12:45:53 +00:00
|
|
|
} else {
|
2020-08-27 12:53:01 +00:00
|
|
|
$error = ERROR_WRONG_PASSWORD;
|
2018-01-28 16:40:49 +00:00
|
|
|
}
|
2020-08-27 12:45:53 +00:00
|
|
|
} else {
|
2020-08-27 12:53:01 +00:00
|
|
|
$error = ERROR_EMPTY_CREDENTIALS;
|
2018-03-05 18:02:24 +00:00
|
|
|
}
|
2018-01-28 16:40:49 +00:00
|
|
|
|
2021-01-27 10:18:31 +00:00
|
|
|
Template::header('Входим...');
|
2020-09-30 14:36:55 +00:00
|
|
|
|
|
|
|
|
if ($error) {
|
|
|
|
|
echo sprintf('<a href="/"> ← на главную</a><h1>%s</h1>', $error);
|
|
|
|
|
}
|
