quote_smart($_GET['order_by']) : 'rid'; if (preg_match('/^[_[:lower:]]{1,8}$/', $order_by)); else $order_by='rid'; $dir = (isset($_GET['dir'])) ? $sqlr->quote_smart($_GET['dir']) : 1; if (preg_match('/^[01]{1}$/', $dir)); else $dir=1; $order_dir = ($dir) ? 'ASC' : 'DESC'; $dir = ($dir) ? 0 : 1; //==========================$_GET and SECURE end============================= $result = $sqlr->query('SELECT realmlist.id AS rid, name, address, port, icon, color, timezone, (SELECT SUM(numchars) FROM realmcharacters WHERE realmid = rid) as sum FROM realmlist ORDER BY '.$order_by.' '.$order_dir.''); $total_realms = $sqlr->num_rows($result); $output .= '
'; if($user_lvl >= $action_permission['insert']) makebutton($lang_realm['add_realm'], 'realm.php?action=add_realm', 130); makebutton($lang_global['back'], 'javascript:window.history.back()', 130); $output .= ' '.$lang_realm['tot_realms'].' : '.$total_realms.'
'; if($user_lvl >= $action_permission['delete']) $output .= ' '; $output .= ' '; unset($dir); unset($order_dir); unset($order_by); $icon_type = get_icon_type(); $timezone_type = get_timezone_type(); while ($realm = $sqlr->fetch_assoc($result)) { $output .= ' '; if($user_lvl >= $action_permission['delete']) $output .= ' '; $output .= ' '; if (isset($server[$realm['rid']]['game_port'])) { if($user_lvl >= $action_permission['update']) $output .= ' '; else $output .= ' '; if (test_port($server[$realm['rid']]['addr'],$server[$realm['rid']]['game_port'])) $output .= ' '; else $output .= ' '; } else { $output .= ' '; } $output .= ' '; } unset($realm); unset($icon_type); unset($timezone_type); unset($result); $output .= '
'.$lang_global['delete_short'].''.$lang_realm['id'].' '.$lang_realm['name'].' '.$lang_realm['online'].' '.$lang_realm['tot_char'].' '.$lang_realm['address'].' '.$lang_realm['port'].' '.$lang_realm['icon'].' '.$lang_realm['color'].' '.$lang_realm['timezone'].'
'.$realm['rid'].''.$realm['name'].''.$realm['name'].''; if($user_lvl >= $action_permission['update']) $output .= ' '.$realm['name'].' ('.$lang_realm['notconfigured'].')'; else $output .= ''. $realm['name'].' ('.$lang_realm['notconfigured'].')'; $output .= ' ***'.$realm['sum'].' '.$realm['address'].' '.$realm['port'].' '.$icon_type[$realm['icon']][1].' '.$realm['color'].' '.$timezone_type[$realm['timezone']][1].'

'; } //#################################################################################################### // EDIT REALM //#################################################################################################### function edit_realm(&$sqlr) { global $output, $lang_global, $lang_realm, $server, $action_permission, $user_lvl; valid_login($action_permission['update']); if(empty($_GET['id'])) redirect('realm.php?error=1'); $id = $sqlr->quote_smart($_GET['id']); if(is_numeric($id)); else redirect('realm.php?error=1'); if ($realm = $sqlr->fetch_assoc($sqlr->query('SELECT realmlist.id AS rid, name, address, port, icon, color, timezone, (SELECT SUM(numchars) FROM realmcharacters WHERE realmid = rid) as sum FROM realmlist WHERE id ='.$id.'')) ) { $output .= '
'.$lang_realm['edit_realm'].'
'; if (isset($server[$realm['rid']]['game_port'])) { $output .= ' '; } else $output .= ' '; $output .= '
'.$lang_realm['id'].' '.$realm['rid'].'
'.$lang_realm['name'].'
'.$lang_realm['address'].'
'.$lang_realm['port'].'
'.$lang_realm['icon'].'
'.$lang_realm['color'].'
'.$lang_realm['timezone'].'
'.$lang_realm['status'].' '.(test_port($server[$realm['rid']]['addr'],$server[$realm['rid']]['game_port']) ? $lang_realm['online'] : $lang_realm['offline']).'
'.$lang_realm['tot_char'].' '.$realm['sum'].'
'.$lang_realm['conf_from_file'].'
'; if($user_lvl >= $action_permission['delete']) makebutton($lang_realm['delete'], 'realm.php?action=del_realm&id='.$realm['rid'].'" type="wrn', 130); unset($realm); $output .= ' '; makebutton($lang_realm['update'], 'javascript:do_submit()', 130); makebutton($lang_global['back'], 'realm.php" type="def', 130); $output .= '


'; } else error($lang_global['err_no_result']); } //#################################################################################################### // DO EDIT REALM //#################################################################################################### function doedit_realm(&$sqlr) { global $action_permission; valid_login($action_permission['update']); if (empty($_GET['id']) || empty($_GET['new_name']) || empty($_GET['new_address']) || empty($_GET['new_port']) || empty($_GET['new_icon']) || empty($_GET['new_timezone']) ) redirect('realm.php?error=1'); $id = $sqlr->quote_smart($_GET['id']); if(is_numeric($id)); else redirect('realm.php?error=1'); $new_name = $sqlr->quote_smart($_GET['new_name']); $new_address = $sqlr->quote_smart($_GET['new_address']); $new_port = $sqlr->quote_smart($_GET['new_port']); $new_icon = $sqlr->quote_smart($_GET['new_icon']); $new_color = $sqlr->quote_smart($_GET['new_color']); $new_timezone = $sqlr->quote_smart($_GET['new_timezone']); $query = $sqlr->query('UPDATE realmlist SET name=\''.$new_name.'\', address =\''.$new_address.'\' , port =\''.$new_port.'\', icon =\''.$new_icon.'\', color =\''.$new_color.'\', timezone =\''.$new_timezone.'\' WHERE id = '.$id.''); unset($new_name); unset($new_address); unset($new_port); unset($new_icon); unset($new_color); unset($new_timezone); if ($sqlr->affected_rows()) redirect('realm.php?error=3'); else redirect('realm.php?action=edit_realm&id='.$id.'&error=4'); } //#################################################################################################### // DELETE REALM //#################################################################################################### function del_realm(&$sqlr) { global $output, $lang_realm, $lang_global, $action_permission; valid_login($action_permission['delete']); if(empty($_GET['id'])) redirect('realm.php?error=1'); $id = $sqlr->quote_smart($_GET['id']); if(is_numeric($id)); else redirect('realm.php?error=1'); $output .= '

'.$lang_global['are_you_sure'].'


'.$lang_realm['realm_id'].': '.$id.'
'.$lang_global['will_be_erased'].'

'; } //#################################################################################################### // DO DELETE REALM //#################################################################################################### function dodel_realm(&$sqlr) { global $action_permission; valid_login($action_permission['delete']); if(empty($_GET['id'])) redirect('realm.php?error=1'); $id = $sqlr->quote_smart($_GET['id']); if(is_numeric($id)); else redirect('realm.php?error=1'); $sqlr->query('DELETE FROM realmlist WHERE id = '.$id.''); unset($id); if ($sqlr->affected_rows()) redirect('realm.php'); else redirect('realm.php?error=2'); } //#################################################################################################### // ADD NEW REALM //#################################################################################################### function add_realm(&$sqlr) { global $action_permission; valid_login($action_permission['insert']); if ($sqlr->query('INSERT INTO realmlist (id, name, address, port, icon, color, timezone) VALUES (NULL,"'.(($server_type) ? TRINITY : MANGOS).'", "127.0.0.1", 8085 ,0 ,0 ,1)')) redirect('realm.php'); else redirect('realm.php?error=4'); } //#################################################################################################### // SET REALM TO DEFAULT //#################################################################################################### function set_def_realm(&$sqlr) { global $action_permission; valid_login($action_permission['read']); $id = (isset($_GET['id'])) ? $sqlr->quote_smart($_GET['id']) : 1; if(is_numeric($id)); else $id = 1; if ($sqlr->num_rows($sqlr->query('SELECT id FROM realmlist WHERE id = '.$id.''))) $_SESSION['realm_id'] = $id; unset($id); $url = (isset($_GET['url'])) ? $_GET['url'] : 'index.php'; redirect($url); } function get_icon_type() { global $lang_realm; return Array ( 0 => array( 0,$lang_realm['normal']), 1 => array( 1,$lang_realm['pvp']), 4 => array( 4,$lang_realm['normal']), 6 => array( 6,$lang_realm['rp']), 8 => array( 8,$lang_realm['rppvp']), 16 => array(16,$lang_realm['ffapvp']), ); } function get_timezone_type() { global $lang_realm; return Array ( 1 => array( 1,$lang_realm['development']), 2 => array( 2,$lang_realm['united_states']), 3 => array( 3,$lang_realm['oceanic']), 4 => array( 4,$lang_realm['latin_america']), 5 => array( 5,$lang_realm['tournament']), 6 => array( 6,$lang_realm['korea']), 8 => array( 8,$lang_realm['english']), 9 => array( 9,$lang_realm['german']), 10 => array(10,$lang_realm['french']), 11 => array(11,$lang_realm['spanish']), 12 => array(12,$lang_realm['russian']), 14 => array(14,$lang_realm['taiwan']), 16 => array(16,$lang_realm['china']), 26 => array(26,$lang_realm['test_server']), 28 => array(28,$lang_realm['qa_server']), ); } //#################################################################################################### // MAIN //#################################################################################################### $err = (isset($_GET['error'])) ? $_GET['error'] : NULL; $output .= '
'; $lang_realm = lang_realm(); if (1 == $err) $output .= '

'.$lang_global['empty_fields'].'

'; elseif (2 == $err) $output .= '

'.$lang_realm['err_deleting'].'

'; elseif (3 == $err) $output .= '

'.$lang_realm['update_executed'].'

'; elseif (4 == $err) $output .= '

'.$lang_realm['update_err'].'

'; else $output .= '

'.$lang_realm['realm_data'].'

'; unset($err); $output .= '
'; $action = (isset($_GET['action'])) ? $_GET['action'] : NULL; if ('edit_realm' === $action) edit_realm($sqlr); elseif ('doedit_realm' === $action) doedit_realm($sqlr); elseif ('del_realm' === $action) del_realm($sqlr); elseif ('dodel_realm' === $action) dodel_realm($sqlr); elseif ('add_realm' === $action) add_realm($sqlr); elseif ('set_def_realm' === $action) set_def_realm($sqlr); else show_realm($sqlr); unset($action); unset($action_permission); unset($lang_realm); require_once 'footer.php'; ?>