-
Recently Browsing 0 members
No registered users viewing this page.
-
Similar Content
-
By Jonas ZL
Online coin system e Sistema de idade do personagem
Novos eventos (Wave e muito mais)
Please login or register to see this attachment.
Please login or register to see this attachment.
Please login or register to see this attachment.
-
By Tibiaclassi2020
♨️TIBIA CLASSIC♨️ Depois de muito trabalho duro e suor, viemos aqui anunciar o nosso ot server. Fizemos tudo com muito carinho e dedicação para que vocês possam curtir muito. ‼️INAUGURAÇÃO 06/05 - 15:00 - CRIE SUA CONTA‼️ Todas as vocações estão balanceadas. Priorizamos o melhor do balanceamento para vocês se divertirem tanto nas quests, quanto no PvP, priorizando muito o PVP. ‼️INAUGURAÇÃO 06/05 - 15:00 - CRIE SUA CONTA‼️ ♨️TIBIA CLASSIC♨️ Versão: 8.60 SITE: Please login or register to see this link.
💯% LISO - SEM LAG MAPA YOUROTS Exp: 100x Stages ⚠️Diversos Eventos⚠️ ✔️Counter Strike ✔️The Rain ✔️Blood Castle ✔️Caça ao tesouro ✔️Zombie Event ✔️Monster Hunter ✔️ Entre outros!! 🎉Aqui sua diversão será garantida!🎊 📩Convidem seus amigos e inimigos!👬 Crie sua conta em nosso site, la tem todas as informações sobre nosso servidor, chame seus amigos e não perca tempo. ‼️INAUGURAÇÃO 06/05 - 15:00 - CRIE SUA CONTA‼️ SITE: Please login or register to see this link.
Att, Equipe Tibia Classic
Please login or register to see this attachment.
Please login or register to see this attachment.
Please login or register to see this attachment.
Please login or register to see this attachment.
-
By otservavatar
Please login or register to see this link.
(Sábado, 21 de Dezembro às 13:00 UTC-3) Please login or register to see this link.
Principais motivações para entrar no mundo Avatar:
• 4 vocações espelhadas no anime Avatar - Fire Bender, Water Bender, Air Bender e Earth Bender.
• Possibilidade de ter sua vocação promovida - Fire Lord, Tribal Chief Water, Air Monk e Dai Li Earth (com passivas únicas, ofensivas e defensivas).
• 96 magias/dobras também espelhadas no anime Avatar - sendo 24 para cada vocação.
• Possibilidade de aprimorar suas magias/dobras através de stones lendárias.
• Sistema de encantamento com runas - possibilidade de encantar seus equipamentos com três tipos diferentes de runas lendárias.
• Mapa completamente próprio - inúmeras quests, dungeons, bosses, mini-bosses, tasks globais, tasks diárias, etc.
• Sistema de distribuição de atributos - a cada level o personagem ganhará um ponto de atributo para distribuir em: Health, Mana, Bend Level e Dodge.
• Sistema de passiva - se o personagem estiver com a passiva ativa e por alguma razão perder todo o seu hp, ela ressuscitará automaticamente esse personagem com uma pequena porcentagem de vida.
• Evento que funciona a cada 4 horas e que determina um novo Avatar.
Lembrando que estamos com um
Please login or register to see this link.
em nossa página do facebook. Boa sorte à todos, estamos esperando todos vocês! -
By Master68
seguinte erro = Parse error: syntax error, unexpected 'case' (T_CASE) in D:\xampp\htdocs\account.php on line 465 || na linha 465 tem assim = #####CHANGE PASSWORD#####
case "password":
Vou postar o php todo não sei se pode qq coisa me avisa que removo , estou muito precisando da ajuda de vcs
código disponível:
<?php
session_start();
include ('config.php');
$acc_logged = $_SESSION['account'];
$pass_logged = $_SESSION['password'];
if(!isset($_GET['page']))
{
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
connect_db();
include ('top.inc.php');
$noguildid = 0;
$empty = "";
$joinchar = $_POST['name'];
echo "<script language=\"JavaScript\">\n";
echo "function askConfirm(txt,url) {\n";
echo "if (confirm(txt) == true) {\n";
echo "document.location=url\n";
echo "return true;\n";
echo "} \n";
echo "}\n";
echo "</script>";
if ($acc_logged != "" && $acc_logged != null && $pass_logged != "" && $pass_logged != null) {
$login = $_GET['login'];
if ($login == "true") {
echo "<p>You have successfully logged in!</p>";
}
$result = $_GET['result'];
if (isset($result) && result != "" && result != null) {
if ($result == "char_success") {
echo "<h1>Congratulations!</h1><p>Your character was successfully created!</p>";
}
}
echo '<h1>Account Home:</h1>';
echo '<h2>Options:</h2>';
echo '<a href="account.php?page=char">Create new Character</a><br />';
echo '<a href="account.php?page=password">Change Password</a><br />';
$query2 = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$ownguild_check = mysql_query("SELECT ownguild FROM players WHERE account = '".mysql_escape_string($acc_logged)."' AND ownguild = '1'") or die(mysql_error());
if(mysql_num_rows($ownguild_check) == 1){
echo '<a href="guild.php">Manage Guild</a><br />';
}
else {
if($sql2['premDays'] >= $guild_premdays)
echo '<a href="guild.php?page=create">Create Guild</a><br />';
}
if($sql2['hide'] == 1)
{
$hide = "Yes";
}
else
{
$hide = "No";
}
if($sql2['hidemail'] == 1)
{
$hidemail = "Yes";
}
else
{
$hidemail = "No";
}
if($sql2['type'] > 2)
{
echo '<a href="manager.php">SQL Manager</a><br />';
echo '<a href="news.php?act=post">Post News</a><br />';
}
echo '<h2>Personal Information:</h2>';
echo '<table>';
echo '<tr><td>Name: </td><td>'.$sql2['rlname'].'</td></tr>';
echo '<tr><td>Location: </td><td>'.$sql2['location'].'</td></tr>';
echo '<tr><td>Email: </td><td>'.$sql2['email'].'</td></tr>';
echo '<tr><td>Hidden info: </td><td><a href="account.php?page=hide&type=2">'.$hide.'</a></td></tr>';
echo '<tr><td>Hidden email: </td><td><a href="account.php?page=hide&type=3">'.$hidemail.'</a></td></tr>';
}
echo '</table><br />';
echo '<h1>Character information:</h1>';
echo '<table border="0" cellSpacing="0" cellpadding="2" width="500px">';
echo '<tr>';
echo '<td><b>Name:</b></td><td><b>Comment:</b></td><td><b>Hidden:</b></td><td><b>Access:</b></td><td><b>Level:</b></td><td><b>Guild:</b></td>';
echo '</tr>';
$query = mysql_query("SELECT * FROM `players` WHERE (`account` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql = mysql_fetch_array($query))
{
if($sql['hide'] == 1)
{
$hidechar = "Yes";
}
else
{
$hidechar = "No";
}
$id=$i+1;
echo ($i % 2) ? "<tr bgcolor=\"\">" : "<tr bgcolor=\"\">";
echo '<td><a href="info.php?act=players&char='.$sql['name'].'">'.$sql['name'].'</a></td>';
echo '<td><a href="account.php?page=comment&charname='.$sql['name'].'">Edit</a></td>';
echo '<td><a href="account.php?page=hide&char='.$sql['name'].'&type=1">'.$hidechar.'</a></td>';
echo '<td>'.$sql['level'].'</td>';
echo '<td>';
$guild_query = mysql_query("SELECT * FROM `guilds` WHERE (`guildid` = '".mysql_escape_string($sql['guildid'])."') ");
while($guild_sql = mysql_fetch_array($guild_query))
{
if($sql['guildid'] >= 1)
{
if($sql['ownguild'] >= 1)
{
echo "<a href=\"javascript:askConfirm('Do you want to delete " . htmlentities($guild_sql['guildname']) . "?','guild.php?page=leave&show=delete&id=".$sql['id']."&guildid=".$sql['guildid']."');\">Delete</a></center></td>";
}
else
{
echo "<a href=\"javascript:askConfirm('Do you want to leave " . htmlentities($guild_sql['guildname']) . "?','guild.php?page=leave&show=leave&id=".$sql['id']."&guildid=".$sql['guildid']."');\">Leave</a></center></td>";
}
}
}
echo '</tr>';
++$i;
}
echo '</table>';
}
}
}
switch($_GET['page']){
#####HIDE ACTIONS#####
case "hide":
$type = $_GET['type'];
$char = $_GET['char'];
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != "" && $type != null))
header("Location: index.php");
else {
connect_db();
switch($type){
case 1:
$player_query = mysql_query("SELECT hide FROM players WHERE (`name` = '".mysql_escape_string($char)."') ") or die(mysql_error());
$player_sql = mysql_fetch_array($player_query);
if(mysql_num_rows($player_query)==0) {
echo "<h1>Error</h1><p>Please contact the webmaster.</p>";
}
else {
if($player_sql['hide'] == 1){
mysql_query("UPDATE players set `hide` = `hide`-1 WHERE name='".mysql_escape_string($char)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE players set `hide` = `hide`+1 WHERE name='".mysql_escape_string($char)."'") or die(mysql_error());
}
}
break;
case 2:
$acc_logged_query = mysql_query("SELECT hide FROM `accounts` WHERE accno = '".mysql_escape_string($acc_logged)."'") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['hide'] == 1){
mysql_query("UPDATE accounts set `hide` = `hide`-1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE accounts set `hide` = `hide`+1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
break;
case 3:
$acc_logged_query = mysql_query("SELECT hidemail FROM `accounts` WHERE accno = '".mysql_escape_string($acc_logged)."'") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['hidemail'] == 1){
mysql_query("UPDATE accounts set `hidemail` = `hidemail`-1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE accounts set `hidemail` = `hidemail`+1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
break;
}
header("Location: account.php");
}
break;
#####DELETE CHARACTER#####
case "delete":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$char = $_GET['charname'];
$passin = $_POST['password'];
$query = mysql_query("SELECT * FROM players WHERE (account = '".mysql_escape_string($acc_logged)."' AND name = '".mysql_escape_string($char)."')") or die(mysql_error());
$query_sql = mysql_fetch_array($query);
$acc_logged_query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['password'] == $passin)
{
if(mysql_num_rows($query) == 0)
{
echo '<h2>Error</h2>';
echo '<p>This is not you char, or it does not exist.</p>';
include ('footer.inc.php');
die;
}
else
{
$query_sql['id'] = mysql_escape_string($query_sql['id']);
$skills = "DELETE FROM skills where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($skills) or die(mysql_error());
$deaths = "DELETE FROM deathlist where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($deaths) or die(mysql_error());
$items = "DELETE FROM items where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($items) or die(mysql_error());
$Sql = "DELETE FROM players WHERE account='".mysql_escape_string($_SESSION['account'])."' AND id = '".mysql_escape_string($query_sql['id'])."'";
if (!$Result = mysql_query($Sql)){
echo "Error at updating.<br />\n";
echo "Error is: <b>" . mysql_error() . "</b><br/>\n";
echo "Error in SQL: <b>" . $Sql . "</b><br/>\n";
die();
}
else {
echo '<h1>Congratulations!</h1>';
echo '<p>You have now deleted ' .$query_sql['name']. ' from your account. <br />Please click <a href="account.php">here</a> to go back home!</p>';
include ('footer.inc.php');
die;
}
}
}
else
{
?>
<h1>Character deletion:</h1>
<p>You want to delete: <a href="info.php?act=players&char=<? echo $char;?>"><? echo $char;?></a></p>
<form action="account.php?page=delete&charname=<?=$char;?>" method="POST">
<p>Password: <input name="password" type="password" value="" class="textfield"></p>
<input type="Submit" value="Delete Character">
<input type="Reset" value="Clear Form">
</form>
<p><a href="account.php">Return home.</a></p>
<?php
}
}
break;
#####LOGIN#####
case "login":
$acc_logged = $_REQUEST['account'];
$pass_logged = $_REQUEST['password'];
if (isset($acc_logged) && isset($pass_logged)) {
connect_db();
$query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."' AND `password` = '".mysql_escape_string($pass_logged)."') ");
if(mysql_num_rows($query) == 1)
{
$sql = mysql_fetch_array($query);
$_SESSION["account"] = $acc_logged;
$_SESSION["password"] = $pass_logged;
header ("Location: account.php");
} else {
header ("Location: index.php");
}
}
else
{
header ("Location: index.php");
}
break;
#####LOGOUT#####
case "logout":
session_unset();
header("Location: index.php");
break;
#####REGISTER#####
case "register":
include ('top.inc.php');
connect_db();
$error = 0;
$id = 0;
$id++;
$mail = $_POST['mail'];
$acc_logged = $_POST['account'];
$pass_logged = $_POST['password'];
$hidemail = $_POST['hidemail'];
$rlname = $_POST['rlname'];
$location = $_POST['location'];
$show = $_POST['hide'];
$md = md5($acc_logged);
if (isset($acc_logged) && isset($pass_logged) && $acc_logged != "" && $pass_logged != "") {
if ($acc_logged == "111111" || $acc_logged == "1") {
echo "<h1>Error!</h1><p>Due to safetey reasons this account number is blocked!</p><br />";
$error = 1;
}
if (strlen($acc_logged) < 6 || strlen($acc_logged) > 8 || strlen($pass_logged) < 3 || strlen($rlname) > 17 || strlen($location) > 25 || strlen($mail) > 40) {
echo "<h1>Error!</h1><p>Please fill out the form correctly!</p>";
$error = 1;
} else if (!is_numeric($acc_logged)) {
echo "<h1>Error!</h1><p>Your account number must consist of 6 to 8 digits!</p>";
$error = 1;
} else {
$temp = strspn("$pass_logged", "qwertyuiopasdfghjklzxcvbnmQWERTYUIOPASDFGHJKLZXCVBNM1234567890 ");
if ($temp != strlen($pass_logged)) {
echo "<h1>Error!</h1><p>Your password must consist of more then 2 letters or numbers (ABC, abc, 123 and blankspaces)!</p>";
$error = 1;
} else {
if ($rlname == '') {
echo "<h1>Error!</h1><p>Please fill your real life name due to safety reasons.</p>";
$error = 1;
} else {
if ($location == '') {
echo "<h1>Error!</h1><p>Please fill in your location due to safety reasons.</p>";
$error = 1;
} else {
if ($mail == '') {
echo "<h1>Error!</h1><p>Please fill your email adress due to safety reasons.</p>";
$error = 1;
} else {
if ($error == 0) {
$query = mysql_query('SELECT * FROM accounts WHERE (accno = '.mysql_escape_string($acc_logged).')');
if (mysql_num_rows($query) != 0) {
echo("<h1>Error!</h1><p>This account number already exist. Please go <a href=\"account.php?page=register\">back</a> and refill the form.</p>");
include ('footer.inc.php');
die;
}
//$sql = "INSERT INTO accounts(id, accno, password, type, premDays, email, blocked, rlname, location, hide, hidemail) values(NULL,'$acc_logged','$pass_logged','1','0','$mail','0', '$rlname', '$location', '$show', '$hidemail')";
$__reg['account'] = mysql_escape_string($acc_logged);
$__reg['pwd'] = mysql_escape_string($pass_logged);
$__reg['mail'] = mysql_escape_string($mail);
$__reg['rln'] = mysql_escape_string($rlname);
$__reg['loc'] = mysql_escape_string($location);
$__reg['show'] = mysql_escape_string($show);
$__reg['hidemail'] = mysql_escape_string($hidemail);
$sql = "INSERT INTO accounts(id, accno, password, type, premDays, "
. "premEnd, email, blocked, rlname, location, hide, hidemail)"
. " values(NULL,'$__reg[account]','$__reg[pwd]','1','0','0',"
. "'$__reg[mail]','0', '$__reg[rln]', '$__reg[loc]', "
. "'$__reg[show]', '$__reg[hidemail]')";
mysql_query($sql);
session_unset();
?>
<h1>Congratulations!</h1><p>Your account were successfully created. Please login to create your first character.<br /></p>
<?
}
}
}
}
}
}
}
else {
if ($acc_logged != "") {
?>
<h1>Error!</h1><p>Please fill in all fields.</p><br /><br />
<?php
}
}
if ($created != true) {
?>
<h1>Create account:</h1>
<form action="account.php?page=register" method="post">
<p>Account Number:<br />
<input name="account" type="password" value="" class="textfield" maxlength="8" /><font color="red">* <i>(6-8 digits)</i></font></p>
<p>Password:<br />
<input name="password" type="password" value="" class="textfield" /><font color="red">* <i>(at least 3 characters)</i></font></p>
<h1>Real life information:</h1>
<p>Real name:<br />
<input name="rlname" type="text" value="" class="textfield"></p>
<p>Location:<br />
<input name="location" type="text" value="" class="textfield"></p>
<p>Hide real life info?<br />
Yes <input type="radio" name="hide" value="1" style="border: 0;" checked /> No <input type="radio" name="hide" value="0" style="border: 0;"></p>
<p>Email adress:<br />
<input name="mail" type="text" value="" class="textfield"></p>
<p>Hide Email Adress?<br />
Yes<input type="radio" name="hidemail" value="1" style="border: 0;" checked /> No <input type="radio" name="hidemail" value="0" style="border: 0;"></p>
<p><font color="red">Note: The real life information is a way for you to recieve your account again if it gets hacked. So please type it in.</font></p>
<br />
<input type="submit" value="Create Account" />
<input type="reset" value="Clear Form" />
</form>
<?php
}
mysql_close();
break;
#####CHANGE PASSWORD#####
case "password":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
ob_start();
$query = mysql_query("SELECT * FROM accounts WHERE (accno = '".mysql_escape_string($_SESSION['account'])."' AND password = '".mysql_escape_string($_SESSION['password'])."')") or die(mysql_error());
if(mysql_num_rows($query) == 0)
{
echo '<h1>Unknown error.</h1><p>Please contact the webmaster.</p>';
include ('footer.inc.php');
die;
}
else
$query2 = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql = mysql_fetch_array($query2))
{
echo "<h1>Change Password:</h1>";
if($sql['password'] == $_POST['opass'])
{
$Sql = "UPDATE accounts SET password = '".mysql_escape_string($_POST['npass'])."' WHERE accno = '".mysql_escape_string($_SESSION['account'])."' AND password = '".mysql_escape_string($_SESSION['password'])."'";
if (!$Result = mysql_query($Sql)) {
echo "Error at updateing.<br/>\n";
echo "Error is: <b>" . mysql_error() . "</b><br/>\n";
echo "Error in SQL: <b>" . $Sql . "</b><br/>\n";
die();
}
else {
echo "<p>Succesfully changed your password.</p>";
$_SESSION['password'] = $_POST['npass'];
echo '<p><a href="account.php">Return home</a></p>';
include ('footer.inc.php');
die;
}
}
echo '
<form method="post" action="account.php?page=password">
<p>Current Password:<br /><input type="password" name="opass" size="21"></p>
<p>New Password:<br /><input type="password" name="npass" size="21"></p>
<p><input type="submit" value="Submit" name="submit"></p>
</form>
<p><a href="account.php">Return home</a></p>';
}
}
break;
#####COMMENT#####
case "comment":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$comment = $_POST['comment'];
$query = mysql_query("SELECT * FROM players WHERE (account = '".mysql_escape_string($_SESSION['account'])."' AND name = '".mysql_escape_string($_REQUEST['charname'])."')") or die(mysql_error());
if(mysql_num_rows($query) == 0)
{
echo "<h1>Error</h1><p>This is not you char, or it does not exist.</p>";
include ('footer.inc.php');
die;
}
// elseif(isset($_POST['form']))
if ($_SERVER['REQUEST_METHOD'] == "POST")
{
if(strlen($_POST['comment']) > 255)
{
echo '<h1>Error:</h1>';
echo '<p>Your comment is too big.</p>';
include ('footer.inc.php');
die;
}
else
{
$comment = $_POST['comment'];
$comment = htmlentities($comment);
$Sql = "UPDATE players SET comment = '".mysql_real_escape_string($comment)."' WHERE account = '".$_SESSION['account']."' AND name = '".$_REQUEST['charname']."'";
if (!$Result = mysql_query($Sql)) {
echo "<h1>Error</h1>";
echo "<p>Error in: <b>" . mysql_error() . "</b></p>";
include ('footer.inc.php');
die();
}
else {
echo '<h1>Congratulations!</h1>';
echo '<p>Your comment has been changed.</p>';
}
}
}
else {
$sql = mysql_fetch_assoc($query);
?>
<form action="account.php?page=comment&charname=<?= $_REQUEST['charname'];?>" method="POST">
<h1>Comment edit:</h1>
<p>
<textarea name="comment" cols="45" rows="10"> <?= stripslashes($sql['comment']); ?> </textarea>
</p>
<input type="Submit" value="Edit comment" name="form">
<input type="Reset" value="Clear Form">
</form>
<?
}
echo '<p><a href="account.php">Return home</a></p>';
}
break;
#####CHARACTER CREATE FORM#####
case "char":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$check = mysql_query('SELECT * FROM players WHERE (name = '.mysql_escape_string($namein).')');
$acc = "";
$pass = "";
$acc = $_SESSION['account'];
$pass = $_SESSION['password'];
$playername = $_POST['name'];
echo '<h1>Create new character:</h1>';
echo '<form action="account.php?page=chargo" method="POST">';
echo '<h2>Name:</h2>';
echo '<input type="text" name="name" class="textfield" maxlength="'.$charlenght.'" /><br />';
echo '<br /><h2>Vocation:</h2>';
if ($chartype == 'rook') {
echo '<input type="radio" name="voc" value="0" style="border: 0;" checked /> No Vocation<br />';
}
else {
echo '<input type="radio" name="voc" value="1" style="border: 0;" checked /> Sorcerer<br />';
echo '<input type="radio" name="voc" value="2" style="border: 0;" /> Druid<br />';
echo '<input type="radio" name="voc" value="3" style="border: 0;" /> Paladin<br />';
echo '<input type="radio" name="voc" value="4" style="border: 0;" /> Knight<br />';
}
echo '<br /><h2>Sex:</h2>';
echo '<input type="radio" name="sex" value="1" style="border: 0;" checked /> Male<br />';
echo '<input type="radio" name="sex" value="0" style="border: 0;" /> Female<br />';
echo '<br />';
echo '<input type="submit" value="Create" />';
}
break;
#####CREATE CHARACTER ACTION#####
case "chargo":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
ob_start();
$error = 0;
$namein = preg_replace('/\s\s+/', ' ', $_POST['name']);
$vocin = (int)$_POST['voc'];
$sexin = (int)$_POST['sex'];
$check = mysql_query("SELECT * FROM players WHERE name = '".mysql_escape_string($namein)."' LIMIT 1") or die(mysql_error());
if ($sexin != 0 && $sexin != 1)
{
$error_msg = 'Invalid sex.';
$error++;
}
elseif( ( $vocin != 0 && $chartype == 'rook' ) || ( ( $vocin < 1 || $vocin > 4 ) && $chartype != 'rook' ) )
{
$error_msg = 'Invalid vocation.';
$error++;
}
elseif ($namein == "" || $_POST['sex'] == "" || $_POST['voc'] == "")
{
$error_msg = 'You did not fill in all fields.';
$error++;
}
elseif(!preg_match("/^[a-zA-Z][a-zA-Z ]*[a-zA-Z]$/", $namein))
{
$error_msg = 'Your name contains illegal characters.';
$error++;
}
elseif(preg_match("/[ ]{2,}/", $namein))
{
$error_msg = 'Check the ammount of spaces in your nickname.';
$error++;
}
elseif(preg_match("/^gm/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^premium/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^prem/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^admin/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^vip/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^suport/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^account/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^adm/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^cm/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^supote/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^g o d/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^g m/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^npc/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^lgm/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^lgod/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^norwa/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^gud/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^gamemaster/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^god/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^god/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(mysql_num_rows($check) != 0)
{
$error_msg = 'The character name is taken. Please go <a href="create_character.php">back</a>.';
$error++;
}
elseif (strlen($namein) < 2 || strlen($namein) > $charlenght)
{
$error_msg = 'You may not have characters with more than '.$charlenght.' characters.';
$error++;
}
if ($error != 0)
{
echo '<h1>Error</h1><p>'.$error_msg.'</p>';
include ('footer.inc.php');
}
else
{
$namein = mysql_escape_string($namein);
// No voc settings.
if($vocin == 0) {
mysql_query("INSERT INTO players(name, access, account, level, vocation,"
. " cid, health, healthmax, direction, experience, lookbody, lookfeet, "
. "lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, "
. "masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, "
. "guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull)"
. " values('".$namein."','0','$acc_logged','$startlvl','0','675','" .$novoc['hp']
. "','" .$novoc['hp']. "','2','$startexp','116','116','116','116','128','"
. $novoc['mag']. "','" .$novoc['mana']. "','" .$novoc['mana']. "','0','$templepos','$templepos','$startspeed','" .$novoc['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2398','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$novoc['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$novoc['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$novoc['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$novoc['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$novoc['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$novoc['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$novoc['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Sorcerer settings.
elseif($vocin == 1) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','1','675','" .$sorc['hp']. "','" .$sorc['hp']. "','2','$startexp','116','116','116','116','128','" .$sorc['mag']. "','" .$sorc['mana']. "','" .$sorc['mana']. "','0','$templepos','$templepos','$startspeed','" .$sorc['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2190','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$sorc['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$sorc['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$sorc['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$sorc['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$sorc['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$sorc['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$sorc['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Druid settings.
elseif($vocin == 2) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','2','675','" .$druid['hp']. "','" .$druid['hp']. "','2','$startexp','116','116','116','116','128','" .$druid['mag']. "','" .$druid['mana']. "','" .$druid['mana']. "','0','$templepos','$templepos','$startspeed','" .$druid['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2182','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$druid['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$druid['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$druid['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$druid['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$druid['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$druid['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$druid['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Paladin settings.
elseif($vocin == 3) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','3','675','" .$paladin['hp']. "','" .$paladin['hp']. "','2','$startexp','116','116','116','116','128','" .$paladin['mag']. "','" .$paladin['mana']. "','" .$paladin['mana']. "','0','$templepos','$templepos','$startspeed','" .$paladin['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','3964','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$paladin['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$paladin['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$paladin['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$paladin['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$paladin['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$paladin['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$paladin['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Knight settings.
elseif($vocin == 4) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','4','675','" .$knight['hp']. "','" .$knight['hp']. "','2','$startexp','116','116','116','116','128','" .$knight['mag']. "','" .$knight['mana']. "','" .$knight['mana']. "','0','$templepos','$templepos','$startspeed','" .$knight['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2409','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$knight['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$knight['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$knight['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$knight['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$knight['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$knight['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$knight['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
echo '<h1>Congratulations</h1><p>Successfully created character '.$namein.'.<br />Please click <a href="account.php">here </a>to go back home.</p>';
}
}
break;
##### ACCOUNT RECOVERY #####
case "lost":
include('top.inc.php');
connect_db();
echo '<h1>Lost account interface:</h1>';
if ($_POST['op'] == "recuperar") {
if($_POST['tipo'] == "email") {
if(isset($_POST['email']) && $_POST['email'] != "") {
$acc_query = mysql_query("SELECT * FROM `accounts` WHERE (`email` = '" .mysql_escape_string($_POST['email']). "') LIMIT 1");
if(mysql_num_rows($acc_query)==0)
{ $error='Invalid e-mail.'; }
while($acc_sql=mysql_fetch_array($acc_query)) {
$rec_acc=$acc_sql['accno'];
$rec_pass=$acc_sql['password'];
$endereco=$acc_sql['email'];
$nome=$acc_sql['rlname'];
}
} else {
$error='You did not fill in the field.';
}
if(empty($error)) {
require("class.phpmailer.php");
$mail = new PHPMailer();
// To load the Portuguese version
$mail->SetLanguage("br", "language/");
$mail->IsSMTP(); // set mailer to use SMTP
$mail->Host = "ssl://smtp.gmail.com"; // specify main and backup server
$mail->SMTPAuth = true; // turn on SMTP authentication
$mail->Username = "[email protected]"; // SMTP username
$mail->Password = "dohc2007"; // SMTP password
$mail->From = "[email protected]";
$mail->FromName = "Viking Server";
$mail->AddAddress($endereco, $nome); // name is optional
$mail->AddReplyTo("[email protected]", "Viking Server");
$mail->WordWrap = 50; // set word wrap to 50 characters
$mail->IsHTML(true); // set email format to HTML
$mail->Subject = "Account information";
$mail->Body = "<p>Dear Viking player,</p>
<p>Here is your login information:</p>
<p><b>Account number:</b> " .$rec_acc. "<br />
<b>Password:</b> " .$rec_pass. "</p>
<br /><br /><p>See you in Viking Server!<br />
Your Viking Server Team</p>";
$mail->AltBody = "Account number: " .$rec_acc. " || Password: " .$rec_pass. "";
if(!$mail->Send())
{
echo "The message cannot sended. <p>";
echo "Mailer Error: " . $mail->ErrorInfo;
echo "</p><p>Inform the Viking-Server Suport about this error: [email protected]</p>";
exit;
}
echo "<p>Email sent successfully.</p>";
} else {
echo '<p>' .$error. ' Please turn <a href="account.php?page=lost">back</a>.</p>';
}
}
else
if($_POST['tipo'] == "account") {
if(isset($_POST['account']) && $_POST['account'] != "") {
$acc_query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '" .mysql_escape_string($_POST['account']). "') LIMIT 1");
if(mysql_num_rows($acc_query)==0)
{ $error='Invalid account number.'; }
while($acc_sql=mysql_fetch_array($acc_query)) {
$rec_acc=$acc_sql['accno'];
$rec_pass=$acc_sql['password'];
$endereco=$acc_sql['email'];
$nome=$acc_sql['rlname'];
}
} else {
$error='You did not fill in the field.';
}
if(empty($error)) {
require("class.phpmailer.php");
$mail = new PHPMailer();
// To load the Portuguese version
$mail->SetLanguage("br", "language/");
$mail->IsSMTP(); // set mailer to use SMTP
$mail->Host = "ssl://smtp.gmail.com"; // specify main and backup server
$mail->SMTPAuth = true; // turn on SMTP authentication
$mail->Username = "[email protected]"; // SMTP username
$mail->Password = "dohc2007"; // SMTP password
$mail->From = "[email protected]";
$mail->FromName = "Viking Server";
$mail->AddAddress($endereco, $nome); // name is optional
$mail->AddReplyTo("[email protected]", "Viking Server");
$mail->WordWrap = 50; // set word wrap to 50 characters
$mail->IsHTML(true); // set email format to HTML
$mail->Subject = "Account information";
$mail->Body = "<p>Dear Viking player,</p>
<p>Here is your login information:</p>
<p><b>Account number:</b> " .$rec_acc. "<br />
<b>Password:</b> " .$rec_pass. "</p>
<br /><br /><p>See you in Viking Server!<br />
Your Viking Server Team</p>";
$mail->AltBody = "Account number: " .$rec_acc. " || Password: " .$rec_pass. "";
if(!$mail->Send())
{
echo "The message cannot sended. <p>";
echo "Mailer Error: " . $mail->ErrorInfo;
echo "</p><p>Inform the Viking-Server Suport about this error: [email protected]</p>";
exit;
}
echo "<p>Email sent successfully.</p>";
} else {
echo '<p>' .$error. ' Please turn <a href="account.php?page=lost">back</a>.</p>';
}
}
} else {
echo '<p>If you have forgotten your account number or password, you can request to have your account information emailed. Please fill in your registered email address or your account number.</p>';
echo '<table><tr><td align="center" width="50%"><form action="account.php?page=lost" method="post">';
echo '<br />Insert your e-mail:<br /><input type="text" class="textfield" name="email">';
echo '<input type="hidden" name="op" value="recuperar"><input type="submit" value="Send"><input type="hidden" name="tipo" value="email"></form></td>';
echo '<td align="center" width="50%"><form action="account.php?page=lost" method="post">';
echo '<br />Insert your account number:<br /><input type="text" class="textfield" name="account">';
echo '<input type="hidden" name="op" value="recuperar"><input type="submit" value="Send"><input type="hidden" name="tipo" value="account"></form></td></tr></table>';
}
break;
}
include ('footer.inc.php');
?>
Please login or register to see this attachment.
-
-