-
Quem Está Navegando 0 membros estão online
- Nenhum usuário registrado visualizando esta página.
-
Conteúdo Similar
-
- 0 respostas
- 300 visualizações
-
- 1 resposta
- 523 visualizações
-
- 0 respostas
- 609 visualizações
-
- 1 resposta
- 702 visualizações
-
- 1 resposta
- 390 visualizações
-
Pergunta
Master68 1
seguinte erro = Parse error: syntax error, unexpected 'case' (T_CASE) in D:\xampp\htdocs\account.php on line 465 || na linha 465 tem assim = #####CHANGE PASSWORD#####
case "password":
Vou postar o php todo não sei se pode qq coisa me avisa que removo , estou muito precisando da ajuda de vcs
código disponível:
<?php
session_start();
include ('config.php');
$acc_logged = $_SESSION['account'];
$pass_logged = $_SESSION['password'];
if(!isset($_GET['page']))
{
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
connect_db();
include ('top.inc.php');
$noguildid = 0;
$empty = "";
$joinchar = $_POST['name'];
echo "<script language=\"JavaScript\">\n";
echo "function askConfirm(txt,url) {\n";
echo "if (confirm(txt) == true) {\n";
echo "document.location=url\n";
echo "return true;\n";
echo "} \n";
echo "}\n";
echo "</script>";
if ($acc_logged != "" && $acc_logged != null && $pass_logged != "" && $pass_logged != null) {
$login = $_GET['login'];
if ($login == "true") {
echo "<p>You have successfully logged in!</p>";
}
$result = $_GET['result'];
if (isset($result) && result != "" && result != null) {
if ($result == "char_success") {
echo "<h1>Congratulations!</h1><p>Your character was successfully created!</p>";
}
}
echo '<h1>Account Home:</h1>';
echo '<h2>Options:</h2>';
echo '<a href="account.php?page=char">Create new Character</a><br />';
echo '<a href="account.php?page=password">Change Password</a><br />';
$query2 = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$ownguild_check = mysql_query("SELECT ownguild FROM players WHERE account = '".mysql_escape_string($acc_logged)."' AND ownguild = '1'") or die(mysql_error());
if(mysql_num_rows($ownguild_check) == 1){
echo '<a href="guild.php">Manage Guild</a><br />';
}
else {
if($sql2['premDays'] >= $guild_premdays)
echo '<a href="guild.php?page=create">Create Guild</a><br />';
}
if($sql2['hide'] == 1)
{
$hide = "Yes";
}
else
{
$hide = "No";
}
if($sql2['hidemail'] == 1)
{
$hidemail = "Yes";
}
else
{
$hidemail = "No";
}
if($sql2['type'] > 2)
{
echo '<a href="manager.php">SQL Manager</a><br />';
echo '<a href="news.php?act=post">Post News</a><br />';
}
echo '<h2>Personal Information:</h2>';
echo '<table>';
echo '<tr><td>Name: </td><td>'.$sql2['rlname'].'</td></tr>';
echo '<tr><td>Location: </td><td>'.$sql2['location'].'</td></tr>';
echo '<tr><td>Email: </td><td>'.$sql2['email'].'</td></tr>';
echo '<tr><td>Hidden info: </td><td><a href="account.php?page=hide&type=2">'.$hide.'</a></td></tr>';
echo '<tr><td>Hidden email: </td><td><a href="account.php?page=hide&type=3">'.$hidemail.'</a></td></tr>';
}
echo '</table><br />';
echo '<h1>Character information:</h1>';
echo '<table border="0" cellSpacing="0" cellpadding="2" width="500px">';
echo '<tr>';
echo '<td><b>Name:</b></td><td><b>Comment:</b></td><td><b>Hidden:</b></td><td><b>Access:</b></td><td><b>Level:</b></td><td><b>Guild:</b></td>';
echo '</tr>';
$query = mysql_query("SELECT * FROM `players` WHERE (`account` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql = mysql_fetch_array($query))
{
if($sql['hide'] == 1)
{
$hidechar = "Yes";
}
else
{
$hidechar = "No";
}
$id=$i+1;
echo ($i % 2) ? "<tr bgcolor=\"\">" : "<tr bgcolor=\"\">";
echo '<td><a href="info.php?act=players&char='.$sql['name'].'">'.$sql['name'].'</a></td>';
echo '<td><a href="account.php?page=comment&charname='.$sql['name'].'">Edit</a></td>';
echo '<td><a href="account.php?page=hide&char='.$sql['name'].'&type=1">'.$hidechar.'</a></td>';
echo '<td>'.$sql['level'].'</td>';
echo '<td>';
$guild_query = mysql_query("SELECT * FROM `guilds` WHERE (`guildid` = '".mysql_escape_string($sql['guildid'])."') ");
while($guild_sql = mysql_fetch_array($guild_query))
{
if($sql['guildid'] >= 1)
{
if($sql['ownguild'] >= 1)
{
echo "<a href=\"javascript:askConfirm('Do you want to delete " . htmlentities($guild_sql['guildname']) . "?','guild.php?page=leave&show=delete&id=".$sql['id']."&guildid=".$sql['guildid']."');\">Delete</a></center></td>";
}
else
{
echo "<a href=\"javascript:askConfirm('Do you want to leave " . htmlentities($guild_sql['guildname']) . "?','guild.php?page=leave&show=leave&id=".$sql['id']."&guildid=".$sql['guildid']."');\">Leave</a></center></td>";
}
}
}
echo '</tr>';
++$i;
}
echo '</table>';
}
}
}
switch($_GET['page']){
#####HIDE ACTIONS#####
case "hide":
$type = $_GET['type'];
$char = $_GET['char'];
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != "" && $type != null))
header("Location: index.php");
else {
connect_db();
switch($type){
case 1:
$player_query = mysql_query("SELECT hide FROM players WHERE (`name` = '".mysql_escape_string($char)."') ") or die(mysql_error());
$player_sql = mysql_fetch_array($player_query);
if(mysql_num_rows($player_query)==0) {
echo "<h1>Error</h1><p>Please contact the webmaster.</p>";
}
else {
if($player_sql['hide'] == 1){
mysql_query("UPDATE players set `hide` = `hide`-1 WHERE name='".mysql_escape_string($char)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE players set `hide` = `hide`+1 WHERE name='".mysql_escape_string($char)."'") or die(mysql_error());
}
}
break;
case 2:
$acc_logged_query = mysql_query("SELECT hide FROM `accounts` WHERE accno = '".mysql_escape_string($acc_logged)."'") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['hide'] == 1){
mysql_query("UPDATE accounts set `hide` = `hide`-1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE accounts set `hide` = `hide`+1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
break;
case 3:
$acc_logged_query = mysql_query("SELECT hidemail FROM `accounts` WHERE accno = '".mysql_escape_string($acc_logged)."'") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['hidemail'] == 1){
mysql_query("UPDATE accounts set `hidemail` = `hidemail`-1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
else {
mysql_query("UPDATE accounts set `hidemail` = `hidemail`+1 WHERE accno='".mysql_escape_string($acc_logged)."'") or die(mysql_error());
}
break;
}
header("Location: account.php");
}
break;
#####DELETE CHARACTER#####
case "delete":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$char = $_GET['charname'];
$passin = $_POST['password'];
$query = mysql_query("SELECT * FROM players WHERE (account = '".mysql_escape_string($acc_logged)."' AND name = '".mysql_escape_string($char)."')") or die(mysql_error());
$query_sql = mysql_fetch_array($query);
$acc_logged_query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
$acc_logged_sql = mysql_fetch_array($acc_logged_query);
if($acc_logged_sql['password'] == $passin)
{
if(mysql_num_rows($query) == 0)
{
echo '<h2>Error</h2>';
echo '<p>This is not you char, or it does not exist.</p>';
include ('footer.inc.php');
die;
}
else
{
$query_sql['id'] = mysql_escape_string($query_sql['id']);
$skills = "DELETE FROM skills where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($skills) or die(mysql_error());
$deaths = "DELETE FROM deathlist where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($deaths) or die(mysql_error());
$items = "DELETE FROM items where player = '" .mysql_escape_string($query_sql['id']). "'";
mysql_query($items) or die(mysql_error());
$Sql = "DELETE FROM players WHERE account='".mysql_escape_string($_SESSION['account'])."' AND id = '".mysql_escape_string($query_sql['id'])."'";
if (!$Result = mysql_query($Sql)){
echo "Error at updating.<br />\n";
echo "Error is: <b>" . mysql_error() . "</b><br/>\n";
echo "Error in SQL: <b>" . $Sql . "</b><br/>\n";
die();
}
else {
echo '<h1>Congratulations!</h1>';
echo '<p>You have now deleted ' .$query_sql['name']. ' from your account. <br />Please click <a href="account.php">here</a> to go back home!</p>';
include ('footer.inc.php');
die;
}
}
}
else
{
?>
<h1>Character deletion:</h1>
<p>You want to delete: <a href="info.php?act=players&char=<? echo $char;?>"><? echo $char;?></a></p>
<form action="account.php?page=delete&charname=<?=$char;?>" method="POST">
<p>Password: <input name="password" type="password" value="" class="textfield"></p>
<input type="Submit" value="Delete Character">
<input type="Reset" value="Clear Form">
</form>
<p><a href="account.php">Return home.</a></p>
<?php
}
}
break;
#####LOGIN#####
case "login":
$acc_logged = $_REQUEST['account'];
$pass_logged = $_REQUEST['password'];
if (isset($acc_logged) && isset($pass_logged)) {
connect_db();
$query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."' AND `password` = '".mysql_escape_string($pass_logged)."') ");
if(mysql_num_rows($query) == 1)
{
$sql = mysql_fetch_array($query);
$_SESSION["account"] = $acc_logged;
$_SESSION["password"] = $pass_logged;
header ("Location: account.php");
} else {
header ("Location: index.php");
}
}
else
{
header ("Location: index.php");
}
break;
#####LOGOUT#####
case "logout":
session_unset();
header("Location: index.php");
break;
#####REGISTER#####
case "register":
include ('top.inc.php');
connect_db();
$error = 0;
$id = 0;
$id++;
$mail = $_POST['mail'];
$acc_logged = $_POST['account'];
$pass_logged = $_POST['password'];
$hidemail = $_POST['hidemail'];
$rlname = $_POST['rlname'];
$location = $_POST['location'];
$show = $_POST['hide'];
$md = md5($acc_logged);
if (isset($acc_logged) && isset($pass_logged) && $acc_logged != "" && $pass_logged != "") {
if ($acc_logged == "111111" || $acc_logged == "1") {
echo "<h1>Error!</h1><p>Due to safetey reasons this account number is blocked!</p><br />";
$error = 1;
}
if (strlen($acc_logged) < 6 || strlen($acc_logged) > 8 || strlen($pass_logged) < 3 || strlen($rlname) > 17 || strlen($location) > 25 || strlen($mail) > 40) {
echo "<h1>Error!</h1><p>Please fill out the form correctly!</p>";
$error = 1;
} else if (!is_numeric($acc_logged)) {
echo "<h1>Error!</h1><p>Your account number must consist of 6 to 8 digits!</p>";
$error = 1;
} else {
$temp = strspn("$pass_logged", "qwertyuiopasdfghjklzxcvbnmQWERTYUIOPASDFGHJKLZXCVBNM1234567890 ");
if ($temp != strlen($pass_logged)) {
echo "<h1>Error!</h1><p>Your password must consist of more then 2 letters or numbers (ABC, abc, 123 and blankspaces)!</p>";
$error = 1;
} else {
if ($rlname == '') {
echo "<h1>Error!</h1><p>Please fill your real life name due to safety reasons.</p>";
$error = 1;
} else {
if ($location == '') {
echo "<h1>Error!</h1><p>Please fill in your location due to safety reasons.</p>";
$error = 1;
} else {
if ($mail == '') {
echo "<h1>Error!</h1><p>Please fill your email adress due to safety reasons.</p>";
$error = 1;
} else {
if ($error == 0) {
$query = mysql_query('SELECT * FROM accounts WHERE (accno = '.mysql_escape_string($acc_logged).')');
if (mysql_num_rows($query) != 0) {
echo("<h1>Error!</h1><p>This account number already exist. Please go <a href=\"account.php?page=register\">back</a> and refill the form.</p>");
include ('footer.inc.php');
die;
}
//$sql = "INSERT INTO accounts(id, accno, password, type, premDays, email, blocked, rlname, location, hide, hidemail) values(NULL,'$acc_logged','$pass_logged','1','0','$mail','0', '$rlname', '$location', '$show', '$hidemail')";
$__reg['account'] = mysql_escape_string($acc_logged);
$__reg['pwd'] = mysql_escape_string($pass_logged);
$__reg['mail'] = mysql_escape_string($mail);
$__reg['rln'] = mysql_escape_string($rlname);
$__reg['loc'] = mysql_escape_string($location);
$__reg['show'] = mysql_escape_string($show);
$__reg['hidemail'] = mysql_escape_string($hidemail);
$sql = "INSERT INTO accounts(id, accno, password, type, premDays, "
. "premEnd, email, blocked, rlname, location, hide, hidemail)"
. " values(NULL,'$__reg[account]','$__reg[pwd]','1','0','0',"
. "'$__reg[mail]','0', '$__reg[rln]', '$__reg[loc]', "
. "'$__reg[show]', '$__reg[hidemail]')";
mysql_query($sql);
session_unset();
?>
<h1>Congratulations!</h1><p>Your account were successfully created. Please login to create your first character.<br /></p>
<?
}
}
}
}
}
}
}
else {
if ($acc_logged != "") {
?>
<h1>Error!</h1><p>Please fill in all fields.</p><br /><br />
<?php
}
}
if ($created != true) {
?>
<h1>Create account:</h1>
<form action="account.php?page=register" method="post">
<p>Account Number:<br />
<input name="account" type="password" value="" class="textfield" maxlength="8" /><font color="red">* <i>(6-8 digits)</i></font></p>
<p>Password:<br />
<input name="password" type="password" value="" class="textfield" /><font color="red">* <i>(at least 3 characters)</i></font></p>
<h1>Real life information:</h1>
<p>Real name:<br />
<input name="rlname" type="text" value="" class="textfield"></p>
<p>Location:<br />
<input name="location" type="text" value="" class="textfield"></p>
<p>Hide real life info?<br />
Yes <input type="radio" name="hide" value="1" style="border: 0;" checked /> No <input type="radio" name="hide" value="0" style="border: 0;"></p>
<p>Email adress:<br />
<input name="mail" type="text" value="" class="textfield"></p>
<p>Hide Email Adress?<br />
Yes<input type="radio" name="hidemail" value="1" style="border: 0;" checked /> No <input type="radio" name="hidemail" value="0" style="border: 0;"></p>
<p><font color="red">Note: The real life information is a way for you to recieve your account again if it gets hacked. So please type it in.</font></p>
<br />
<input type="submit" value="Create Account" />
<input type="reset" value="Clear Form" />
</form>
<?php
}
mysql_close();
break;
#####CHANGE PASSWORD#####
case "password":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
ob_start();
$query = mysql_query("SELECT * FROM accounts WHERE (accno = '".mysql_escape_string($_SESSION['account'])."' AND password = '".mysql_escape_string($_SESSION['password'])."')") or die(mysql_error());
if(mysql_num_rows($query) == 0)
{
echo '<h1>Unknown error.</h1><p>Please contact the webmaster.</p>';
include ('footer.inc.php');
die;
}
else
$query2 = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '".mysql_escape_string($acc_logged)."') ") or die(mysql_error());
while($sql = mysql_fetch_array($query2))
{
echo "<h1>Change Password:</h1>";
if($sql['password'] == $_POST['opass'])
{
$Sql = "UPDATE accounts SET password = '".mysql_escape_string($_POST['npass'])."' WHERE accno = '".mysql_escape_string($_SESSION['account'])."' AND password = '".mysql_escape_string($_SESSION['password'])."'";
if (!$Result = mysql_query($Sql)) {
echo "Error at updateing.<br/>\n";
echo "Error is: <b>" . mysql_error() . "</b><br/>\n";
echo "Error in SQL: <b>" . $Sql . "</b><br/>\n";
die();
}
else {
echo "<p>Succesfully changed your password.</p>";
$_SESSION['password'] = $_POST['npass'];
echo '<p><a href="account.php">Return home</a></p>';
include ('footer.inc.php');
die;
}
}
echo '
<form method="post" action="account.php?page=password">
<p>Current Password:<br /><input type="password" name="opass" size="21"></p>
<p>New Password:<br /><input type="password" name="npass" size="21"></p>
<p><input type="submit" value="Submit" name="submit"></p>
</form>
<p><a href="account.php">Return home</a></p>';
}
}
break;
#####COMMENT#####
case "comment":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$comment = $_POST['comment'];
$query = mysql_query("SELECT * FROM players WHERE (account = '".mysql_escape_string($_SESSION['account'])."' AND name = '".mysql_escape_string($_REQUEST['charname'])."')") or die(mysql_error());
if(mysql_num_rows($query) == 0)
{
echo "<h1>Error</h1><p>This is not you char, or it does not exist.</p>";
include ('footer.inc.php');
die;
}
// elseif(isset($_POST['form']))
if ($_SERVER['REQUEST_METHOD'] == "POST")
{
if(strlen($_POST['comment']) > 255)
{
echo '<h1>Error:</h1>';
echo '<p>Your comment is too big.</p>';
include ('footer.inc.php');
die;
}
else
{
$comment = $_POST['comment'];
$comment = htmlentities($comment);
$Sql = "UPDATE players SET comment = '".mysql_real_escape_string($comment)."' WHERE account = '".$_SESSION['account']."' AND name = '".$_REQUEST['charname']."'";
if (!$Result = mysql_query($Sql)) {
echo "<h1>Error</h1>";
echo "<p>Error in: <b>" . mysql_error() . "</b></p>";
include ('footer.inc.php');
die();
}
else {
echo '<h1>Congratulations!</h1>';
echo '<p>Your comment has been changed.</p>';
}
}
}
else {
$sql = mysql_fetch_assoc($query);
?>
<form action="account.php?page=comment&charname=<?= $_REQUEST['charname'];?>" method="POST">
<h1>Comment edit:</h1>
<p>
<textarea name="comment" cols="45" rows="10"> <?= stripslashes($sql['comment']); ?> </textarea>
</p>
<input type="Submit" value="Edit comment" name="form">
<input type="Reset" value="Clear Form">
</form>
<?
}
echo '<p><a href="account.php">Return home</a></p>';
}
break;
#####CHARACTER CREATE FORM#####
case "char":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
$check = mysql_query('SELECT * FROM players WHERE (name = '.mysql_escape_string($namein).')');
$acc = "";
$pass = "";
$acc = $_SESSION['account'];
$pass = $_SESSION['password'];
$playername = $_POST['name'];
echo '<h1>Create new character:</h1>';
echo '<form action="account.php?page=chargo" method="POST">';
echo '<h2>Name:</h2>';
echo '<input type="text" name="name" class="textfield" maxlength="'.$charlenght.'" /><br />';
echo '<br /><h2>Vocation:</h2>';
if ($chartype == 'rook') {
echo '<input type="radio" name="voc" value="0" style="border: 0;" checked /> No Vocation<br />';
}
else {
echo '<input type="radio" name="voc" value="1" style="border: 0;" checked /> Sorcerer<br />';
echo '<input type="radio" name="voc" value="2" style="border: 0;" /> Druid<br />';
echo '<input type="radio" name="voc" value="3" style="border: 0;" /> Paladin<br />';
echo '<input type="radio" name="voc" value="4" style="border: 0;" /> Knight<br />';
}
echo '<br /><h2>Sex:</h2>';
echo '<input type="radio" name="sex" value="1" style="border: 0;" checked /> Male<br />';
echo '<input type="radio" name="sex" value="0" style="border: 0;" /> Female<br />';
echo '<br />';
echo '<input type="submit" value="Create" />';
}
break;
#####CREATE CHARACTER ACTION#####
case "chargo":
if ((!isset($acc_logged) && isset($pass_logged) && $acc_logged != null && $acc_logged != "" && $pass_logged != null && $pass_logged != ""))
header("Location: index.php");
else {
include ('top.inc.php');
connect_db();
ob_start();
$error = 0;
$namein = preg_replace('/\s\s+/', ' ', $_POST['name']);
$vocin = (int)$_POST['voc'];
$sexin = (int)$_POST['sex'];
$check = mysql_query("SELECT * FROM players WHERE name = '".mysql_escape_string($namein)."' LIMIT 1") or die(mysql_error());
if ($sexin != 0 && $sexin != 1)
{
$error_msg = 'Invalid sex.';
$error++;
}
elseif( ( $vocin != 0 && $chartype == 'rook' ) || ( ( $vocin < 1 || $vocin > 4 ) && $chartype != 'rook' ) )
{
$error_msg = 'Invalid vocation.';
$error++;
}
elseif ($namein == "" || $_POST['sex'] == "" || $_POST['voc'] == "")
{
$error_msg = 'You did not fill in all fields.';
$error++;
}
elseif(!preg_match("/^[a-zA-Z][a-zA-Z ]*[a-zA-Z]$/", $namein))
{
$error_msg = 'Your name contains illegal characters.';
$error++;
}
elseif(preg_match("/[ ]{2,}/", $namein))
{
$error_msg = 'Check the ammount of spaces in your nickname.';
$error++;
}
elseif(preg_match("/^gm/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^premium/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^prem/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^admin/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^vip/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^suport/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^account/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^adm/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^cm/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^supote/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^g o d/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^g m/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^npc/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^lgm/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^lgod/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^norwa/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^gud/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^gamemaster/i", $namein))
{
$error_msg = 'You may not create a Gamemaster.';
$error++;
}
elseif(preg_match("/^god/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(preg_match("/^god/i", $namein))
{
$error_msg = 'You may not create a God.';
$error++;
}
elseif(mysql_num_rows($check) != 0)
{
$error_msg = 'The character name is taken. Please go <a href="create_character.php">back</a>.';
$error++;
}
elseif (strlen($namein) < 2 || strlen($namein) > $charlenght)
{
$error_msg = 'You may not have characters with more than '.$charlenght.' characters.';
$error++;
}
if ($error != 0)
{
echo '<h1>Error</h1><p>'.$error_msg.'</p>';
include ('footer.inc.php');
}
else
{
$namein = mysql_escape_string($namein);
// No voc settings.
if($vocin == 0) {
mysql_query("INSERT INTO players(name, access, account, level, vocation,"
. " cid, health, healthmax, direction, experience, lookbody, lookfeet, "
. "lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, "
. "masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, "
. "guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull)"
. " values('".$namein."','0','$acc_logged','$startlvl','0','675','" .$novoc['hp']
. "','" .$novoc['hp']. "','2','$startexp','116','116','116','116','128','"
. $novoc['mag']. "','" .$novoc['mana']. "','" .$novoc['mana']. "','0','$templepos','$templepos','$startspeed','" .$novoc['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2398','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$novoc['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$novoc['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$novoc['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$novoc['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$novoc['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$novoc['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$novoc['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Sorcerer settings.
elseif($vocin == 1) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','1','675','" .$sorc['hp']. "','" .$sorc['hp']. "','2','$startexp','116','116','116','116','128','" .$sorc['mag']. "','" .$sorc['mana']. "','" .$sorc['mana']. "','0','$templepos','$templepos','$startspeed','" .$sorc['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2190','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$sorc['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$sorc['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$sorc['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$sorc['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$sorc['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$sorc['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$sorc['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Druid settings.
elseif($vocin == 2) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','2','675','" .$druid['hp']. "','" .$druid['hp']. "','2','$startexp','116','116','116','116','128','" .$druid['mag']. "','" .$druid['mana']. "','" .$druid['mana']. "','0','$templepos','$templepos','$startspeed','" .$druid['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2182','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$druid['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$druid['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$druid['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$druid['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$druid['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$druid['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$druid['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Paladin settings.
elseif($vocin == 3) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','3','675','" .$paladin['hp']. "','" .$paladin['hp']. "','2','$startexp','116','116','116','116','128','" .$paladin['mag']. "','" .$paladin['mana']. "','" .$paladin['mana']. "','0','$templepos','$templepos','$startspeed','" .$paladin['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','3964','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$paladin['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$paladin['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$paladin['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$paladin['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$paladin['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$paladin['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$paladin['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
// Knight settings.
elseif($vocin == 4) {
mysql_query("INSERT INTO players(name, access, account, level, vocation, cid, health, healthmax, direction, experience, lookbody, lookfeet, lookhead, looklegs, looktype, maglevel, mana, manamax, manaspent, masterpos, pos, speed, cap, maxdepotitems, food, sex, guildid, guildrank, guildnick, lastlogin, lastip, save, redskulltime, redskull) values('$namein','0','$acc_logged','$startlvl','4','675','" .$knight['hp']. "','" .$knight['hp']. "','2','$startexp','116','116','116','116','128','" .$knight['mag']. "','" .$knight['mana']. "','" .$knight['mana']. "','0','$templepos','$templepos','$startspeed','" .$knight['cap']. "','$maxdepotitems','0','$sexin','0','','','0','0','1','0','0')") or die(mysql_error());
$query2 = mysql_query("SELECT * FROM `players` WHERE (`name` = '".$namein."') ") or die(mysql_error());
while($sql2 = mysql_fetch_array($query2))
{
$playerid = $sql2['id'];
}
$item1 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','1','0','0','2461','0','0','0','','')";
$item2 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','2','0','0','2170','0','0','0','','')";
$item3 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','3','0','0','1988','0','0','0','','')";
$item4 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','4','0','0','2467','0','0','0','','')";
$item5 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','5','0','0','2512','0','0','0','','')";
$item6 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','6','0','0','2409','0','0','0','','')";
$item7 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','7','0','0','2649','0','0','0','','')";
$item8 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','8','0','0','2643','0','0','0','','')";
$item10 = "INSERT INTO items(player, slot, sid, pid, type, number, actionid, decaystate, text, specialdesc) values('$playerid','10','0','0','2120','0','0','0','','')";
$skills1 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','0','" .$knight['fist']. "','0')";
$skills2 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','1','" .$knight['club']. "','0')";
$skills3 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','2','" .$knight['sword']. "','0')";
$skills4 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','3','" .$knight['axe']. "','0')";
$skills5 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','4','" .$knight['dist']. "','0')";
$skills6 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','5','" .$knight['shield']. "','0')";
$skills7 = "INSERT INTO skills(player, id, skill, tries) values('$playerid','6','" .$knight['fish']. "','0')";
mysql_query($item1) or die(mysql_error());
mysql_query($item2) or die(mysql_error());
mysql_query($item3) or die(mysql_error());
mysql_query($item4) or die(mysql_error());
mysql_query($item5) or die(mysql_error());
mysql_query($item6) or die(mysql_error());
mysql_query($item7) or die(mysql_error());
mysql_query($item8) or die(mysql_error());
mysql_query($item10) or die(mysql_error());
mysql_query($skills1) or die(mysql_error());
mysql_query($skills2) or die(mysql_error());
mysql_query($skills3) or die(mysql_error());
mysql_query($skills4) or die(mysql_error());
mysql_query($skills5) or die(mysql_error());
mysql_query($skills6) or die(mysql_error());
mysql_query($skills7) or die(mysql_error());
}
echo '<h1>Congratulations</h1><p>Successfully created character '.$namein.'.<br />Please click <a href="account.php">here </a>to go back home.</p>';
}
}
break;
##### ACCOUNT RECOVERY #####
case "lost":
include('top.inc.php');
connect_db();
echo '<h1>Lost account interface:</h1>';
if ($_POST['op'] == "recuperar") {
if($_POST['tipo'] == "email") {
if(isset($_POST['email']) && $_POST['email'] != "") {
$acc_query = mysql_query("SELECT * FROM `accounts` WHERE (`email` = '" .mysql_escape_string($_POST['email']). "') LIMIT 1");
if(mysql_num_rows($acc_query)==0)
{ $error='Invalid e-mail.'; }
while($acc_sql=mysql_fetch_array($acc_query)) {
$rec_acc=$acc_sql['accno'];
$rec_pass=$acc_sql['password'];
$endereco=$acc_sql['email'];
$nome=$acc_sql['rlname'];
}
} else {
$error='You did not fill in the field.';
}
if(empty($error)) {
require("class.phpmailer.php");
$mail = new PHPMailer();
// To load the Portuguese version
$mail->SetLanguage("br", "language/");
$mail->IsSMTP(); // set mailer to use SMTP
$mail->Host = "ssl://smtp.gmail.com"; // specify main and backup server
$mail->SMTPAuth = true; // turn on SMTP authentication
$mail->Username = "adm.lucas88@gmail.com"; // SMTP username
$mail->Password = "dohc2007"; // SMTP password
$mail->From = "dont-reply@viking-server.com";
$mail->FromName = "Viking Server";
$mail->AddAddress($endereco, $nome); // name is optional
$mail->AddReplyTo("dont-reply@viking-server.com", "Viking Server");
$mail->WordWrap = 50; // set word wrap to 50 characters
$mail->IsHTML(true); // set email format to HTML
$mail->Subject = "Account information";
$mail->Body = "<p>Dear Viking player,</p>
<p>Here is your login information:</p>
<p><b>Account number:</b> " .$rec_acc. "<br />
<b>Password:</b> " .$rec_pass. "</p>
<br /><br /><p>See you in Viking Server!<br />
Your Viking Server Team</p>";
$mail->AltBody = "Account number: " .$rec_acc. " || Password: " .$rec_pass. "";
if(!$mail->Send())
{
echo "The message cannot sended. <p>";
echo "Mailer Error: " . $mail->ErrorInfo;
echo "</p><p>Inform the Viking-Server Suport about this error: suporte_vikingserver@hotmail.com</p>";
exit;
}
echo "<p>Email sent successfully.</p>";
} else {
echo '<p>' .$error. ' Please turn <a href="account.php?page=lost">back</a>.</p>';
}
}
else
if($_POST['tipo'] == "account") {
if(isset($_POST['account']) && $_POST['account'] != "") {
$acc_query = mysql_query("SELECT * FROM `accounts` WHERE (`accno` = '" .mysql_escape_string($_POST['account']). "') LIMIT 1");
if(mysql_num_rows($acc_query)==0)
{ $error='Invalid account number.'; }
while($acc_sql=mysql_fetch_array($acc_query)) {
$rec_acc=$acc_sql['accno'];
$rec_pass=$acc_sql['password'];
$endereco=$acc_sql['email'];
$nome=$acc_sql['rlname'];
}
} else {
$error='You did not fill in the field.';
}
if(empty($error)) {
require("class.phpmailer.php");
$mail = new PHPMailer();
// To load the Portuguese version
$mail->SetLanguage("br", "language/");
$mail->IsSMTP(); // set mailer to use SMTP
$mail->Host = "ssl://smtp.gmail.com"; // specify main and backup server
$mail->SMTPAuth = true; // turn on SMTP authentication
$mail->Username = "adm.lucas88@gmail.com"; // SMTP username
$mail->Password = "dohc2007"; // SMTP password
$mail->From = "dont-reply@viking-server.com";
$mail->FromName = "Viking Server";
$mail->AddAddress($endereco, $nome); // name is optional
$mail->AddReplyTo("dont-reply@viking-server.com", "Viking Server");
$mail->WordWrap = 50; // set word wrap to 50 characters
$mail->IsHTML(true); // set email format to HTML
$mail->Subject = "Account information";
$mail->Body = "<p>Dear Viking player,</p>
<p>Here is your login information:</p>
<p><b>Account number:</b> " .$rec_acc. "<br />
<b>Password:</b> " .$rec_pass. "</p>
<br /><br /><p>See you in Viking Server!<br />
Your Viking Server Team</p>";
$mail->AltBody = "Account number: " .$rec_acc. " || Password: " .$rec_pass. "";
if(!$mail->Send())
{
echo "The message cannot sended. <p>";
echo "Mailer Error: " . $mail->ErrorInfo;
echo "</p><p>Inform the Viking-Server Suport about this error: suporte_vikingserver@hotmail.com</p>";
exit;
}
echo "<p>Email sent successfully.</p>";
} else {
echo '<p>' .$error. ' Please turn <a href="account.php?page=lost">back</a>.</p>';
}
}
} else {
echo '<p>If you have forgotten your account number or password, you can request to have your account information emailed. Please fill in your registered email address or your account number.</p>';
echo '<table><tr><td align="center" width="50%"><form action="account.php?page=lost" method="post">';
echo '<br />Insert your e-mail:<br /><input type="text" class="textfield" name="email">';
echo '<input type="hidden" name="op" value="recuperar"><input type="submit" value="Send"><input type="hidden" name="tipo" value="email"></form></td>';
echo '<td align="center" width="50%"><form action="account.php?page=lost" method="post">';
echo '<br />Insert your account number:<br /><input type="text" class="textfield" name="account">';
echo '<input type="hidden" name="op" value="recuperar"><input type="submit" value="Send"><input type="hidden" name="tipo" value="account"></form></td></tr></table>';
}
break;
}
include ('footer.inc.php');
?>
Link para o comentário
Compartilhar em outros sites
0 respostass a esta questão
Posts Recomendados