lopar/battles
0
0
Fork 0
Code Issues 21 Pull Requests Releases Wiki Activity

Отказ от алиаса die в пользу exit, более явная проверка на наличие сессии. Некоторые проверки входа теперь проверяют объекты, а не массив.

Browse Source
This commit is contained in:
Igor Barkov (iwork)
2020-09-30 15:01:33 +03:00
parent 02dc4582dc
commit a08ce17a40
179 changed files with 883 additions and 582 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ch.php
+12 -12
View File
@@ -10,7 +10,7 @@ db::c()->query('UPDATE `online` SET `real_time` = ?i WHERE `id` = ?i', time(), $
if (isset($_GET['online']) && $_GET['online'] != null) {
if ($_GET['room'] && (int)$_GET['room'] < 500) {
$user['room'] = (int)$_GET['room'];
$user->room = (int)$_GET['room'];
}
if ($u->i()['caveleader'] > 0) {
$data = db::c()->query('
@@ -36,13 +36,13 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
ORDER BY
`u`.`login`
');
$ttl = "<span style=\"color: #8f0000; font-size: 10pt;\"><b>" . $rooms[$user['room']] . " (" . mysql_num_rows($data) . ")</b></span>";
$ttl = "<span style=\"color: #8f0000; font-size: 10pt;\"><b>" . $rooms[$user->room] . " (" . mysql_num_rows($data) . ")</b></span>";
$ch1 = '_active';
$ch2 = '_passive';
$ch3 = '_passive';
$ch4 = '_passive';
$ch5 = '_passive';
} elseif ($user['room'] == 760) {
} elseif ($user->room == 760) {
$forest = db::c()->query('SELECT `id`, `room`, `time`, `user`, `data` FROM `forest` WHERE `user` = "' . $user['id'] . '" LIMIT 1')->fetch_assoc();
$sp = db::c()->query('SELECT `id`, `room`, `user` FROM `forest` WHERE `room` = "' . $forest['room'] . '"');
while ($pl = $sp->fetch_assoc()) {
@@ -101,11 +101,11 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
WHERE
`o`.`id` = `u`.`id` AND
(`o`.`date` >= ' . (time() - 90) . ' OR `u`.`in_tower` = 1) AND
`o`.`room` = "' . $user['room'] . '"
`o`.`room` = "' . $user->room . '"
ORDER BY
`u`.`login`
');
$ttl = "<span style=\"color: #8f0000; font-size: 10pt;\"><b>" . $rooms[$user['room']] . " (" . mysql_num_rows($data) . ")</b></span>";
$ttl = "<span style=\"color: #8f0000; font-size: 10pt;\"><b>" . $rooms[$user->room] . " (" . mysql_num_rows($data) . ")</b></span>";
$ch1 = '_active';
$ch2 = '_passive';
$ch3 = '_passive';
@@ -170,7 +170,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
top.rld();
</script>
<title><?= $rooms[$user['room']], ' (', mysql_num_rows($data) ?>)</title>
<title><?= $rooms[$user->room], ' (', mysql_num_rows($data) ?>)</title>
</head>
<body style="margin: 0; padding: 0; background: #EEEEEE;" onscroll="top.myscroll()"
onload="document.body.scrollTop=top.OnlineOldPosition">
@@ -262,7 +262,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
<SCRIPT>document.write('<INPUT TYPE=checkbox onclick="if(this.checked == true) { top.OnlineStop = false; } else { top.OnlineStop = true; }" ' + (top.OnlineStop ? '' : 'checked') + '> Обновлять автомат.')
</SCRIPT></body></html>
<?php
die();
exit;
}
} elseif (@$_GET['show'] != null) {
if ($_SESSION['sid'] != $user['sid']) {
@@ -286,7 +286,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
$lastpost = $math[1];
} elseif (substr($math[2], 0, 4) == '{[]}' && (@$math[1] >= @$user['chattime'])) {
//exit;
} elseif ((@$math[2] == '!sys!!') && (@$math[1] >= @$user['chattime']) /*&& ($user['room']==$math[4])*/ && $_GET['om'] != 1) {
} elseif ((@$math[2] == '!sys!!') && (@$math[1] >= @$user['chattime']) /*&& ($user->room==$math[4])*/ && $_GET['om'] != 1) {
if ($_GET['sys'] == 1 || strpos($math[3], "<img src=i/magic/") !== FALSE) {
echo "top.frames['chat'].document.all(\"mes\").innerHTML += '<span class=date>" . date("H:i", $math[1]) . "</span> " . $math[3] . " <BR>';";
echo "top.frames['chat'].document.all(\"mes_system\").innerHTML += '<span class=date>" . date("H:i", $math[1]) . "</span> " . $math[3] . " <BR>';";
@@ -386,7 +386,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
$ks++;
$lastpost = $math[1];
unset($math[3]);
} elseif ((strpos($math[3], "private") === FALSE) /*&& ($user['room'] == $math[4])*/) {
} elseif ((strpos($math[3], "private") === FALSE) /*&& ($user->room == $math[4])*/) {
$times = '';
$soundON = '';
if ((strpos($math[3], "[" . $user['login'] . "]") > 0) || ($math[2] == $user['login'])) {
@@ -410,7 +410,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
}
echo "</script><script>top.srld();</script>";
db::c()->query("UPDATE `online` SET `date` = " . time() . " WHERE `id` = {$user['id']} LIMIT 1");
die();
exit;
} else {
if (strpos($_GET['text'], "private") !== FALSE && $user['level'] < 1) {
preg_match_all("/\[(.*)\]/U", $_GET['text'], $matches);
@@ -481,7 +481,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
if ($action != 1) {
$file = 'tmp/chat.txt';
if (filesize("tmp/chat.txt") > 100 * 1024) {
$line = "\r\n:[" . time() . "]:[{$user['login']}]:[<font color=\"" . (($user['color']) ? $user['color'] : "#000000") . "\">" . ($_GET['text']) . "</font>]:[" . $user['room'] . "]\r\n";
$line = "\r\n:[" . time() . "]:[{$user['login']}]:[<font color=\"" . (($user['color']) ? $user['color'] : "#000000") . "\">" . ($_GET['text']) . "</font>]:[" . $user->room . "]\r\n";
// Пишем содержимое в файл,
// используя флаг FILE_APPEND flag для дописывания содержимого в конец файла
// и флаг LOCK_EX для предотвращения записи данного файла кем-нибудь другим в данное время
@@ -489,7 +489,7 @@ if (isset($_GET['online']) && $_GET['online'] != null) {
file_put_contents($file, $line, FILE_APPEND | LOCK_EX);
echo "1";
} else {
$line = ":[" . time() . "]:[{$user['login']}]:[<font color=\"" . (($user['color']) ? $user['color'] : "#000000") . "\">" . ($_GET['text']) . "</font>]:[" . $user['room'] . "]\r\n";
$line = ":[" . time() . "]:[{$user['login']}]:[<font color=\"" . (($user['color']) ? $user['color'] : "#000000") . "\">" . ($_GET['text']) . "</font>]:[" . $user->room . "]\r\n";
file_put_contents($file, $line, FILE_APPEND | LOCK_EX);
echo "2";
}