<?php
error_reporting(E_ALL ^ E_NOTICE ^ E_WARNING);
if (isset($_GET['viewsource']))
{
echo("<html><head><title>Source for submitquests.php</title></head>");
echo("<body style='white-space:nowrap'>");
show_source("submitquests.php");
die("</body></html>");
}
$total = (int)$_POST['total']; //Total number of quests submitted
$SubmittedBy = $_POST['SubmittedBy'];
//For reporting back to the plugin
$quests_added = ""; //A quest with these name(s) didn't already exist
$quests_updated = ""; //A quest with these name(s) existed but with different details
$quests_alreadyexist = ""; //A quest with these name(s) existed with the same details -- not added
// Connection to mysql is done in sql_config.php, which is included before this file
if (defined('MYSQL_CONNECTED'))
{
//Quests are numbered starting at 0
for ($i = 0; $i < $total; $i++)
{
$QuestName = $_POST["QuestName$i"]; //e.g. "QuestName7" for the 8th quest -- naming convention similar for other values ("Text7", "Item7", ...)
if (($result = mysql_query("SELECT * FROM QuestTimer_AvailableQuests WHERE QuestName = '$QuestName'")) &&
($result_del = mysql_query("SELECT * FROM QuestTimer_DeletedQuests WHERE QuestName = '$QuestName'")))
{
$insert_quest = true;
$updated = false;
$_Text = strtolower(stripslashes($_POST["Text$i"]));
$_Item = strtolower(stripslashes($_POST["Item$i"]));
$_Chest = strtolower(stripslashes($_POST["Chest$i"]));
$_Droppable = ($_POST["Droppable$i"] && $_POST["Item$i"] != '');
$_Days = stripslashes($_POST["Days$i"]);
$_Hours = stripslashes($_POST["Hours$i"]);
$_Minutes = stripslashes($_POST["Minutes$i"]);
while ($insert_quest && ($data = mysql_fetch_array($result)))
{
$updated = true;
if (strtolower($data["Text"]) == $_Text && strtolower($data["Item"]) == $_Item && strtolower($data["Chest"]) == $_Chest &&
($data["Droppable"] && $data["Item"] != '') == $_Droppable &&
$data["Days"] == $_Days && $data["Hours"] == $_Hours && $data["Minutes"] == $_Minutes)
{
$quests_alreadyexist = $quests_alreadyexist . stripslashes($QuestName) . ", ";
$insert_quest = false;
}
}
while ($insert_quest && ($data = mysql_fetch_array($result_del)))
{
if (strtolower($data["Text"]) == $_Text && strtolower($data["Item"]) == $_Item && strtolower($data["Chest"]) == $_Chest &&
($data["Droppable"] && $data["Item"] != '') == $_Droppable &&
$data["Days"] == $_Days && $data["Hours"] == $_Hours && $data["Minutes"] == $_Minutes)
{
$quests_alreadyexist = $quests_alreadyexist . stripslashes($QuestName) . ", ";
$insert_quest = false;
}
}
if ($insert_quest)
{
if ($updated)
$quests_updated = $quests_updated . stripslashes($QuestName) . ", ";
else
$quests_added = $quests_added . stripslashes($QuestName) . ", ";
$Days = $_POST["Days$i"];
$Hours = $_POST["Hours$i"];
$Minutes = $_POST["Minutes$i"];
$Text = $_POST["Text$i"];
$Item = $_POST["Item$i"];
$Chest = $_POST["Chest$i"];
$Droppable = $_POST["Droppable$i"];
if(!mysql_query("INSERT INTO QuestTimer_AvailableQuests (QuestName,Days,Hours,Minutes,Text,Item,Chest,Droppable,SubmittedBy,DateAdded,Approved)
VALUES ('$QuestName','$Days','$Hours','$Minutes','$Text','$Item','$Chest','$Droppable','$SubmittedBy','" . gmdate('Y-m-d H:i:s') . "', '0')"))
die('<error reason="SQL Query error (inserting): ' . mysql_error() . '" />');
}
}
else die('<error reason="SQL Query error (selecting): ' . mysql_error() . '" />');
}
//Remove trailing commas
if (strlen($quests_added) > 0) $quests_added = substr($quests_added, 0, -2);
if (strlen($quests_updated) > 0) $quests_updated = substr($quests_updated, 0, -2);
if (strlen($quests_alreadyexist) > 0) $quests_alreadyexist = substr($quests_alreadyexist, 0, -2);
echo("<Success added=\"$quests_added\" updated=\"$quests_updated\" alreadyexist=\"$quests_alreadyexist\" />");
}
else echo('<error reason="Failed to connect to database" />');
?>
|