IsleHorse/HISP
1
0
Fork 0
mirror of https://github.com/islehorse/HISP.git synced 2025-04-07 05:35:41 +12:00
Code Issues Projects Releases Packages Wiki Activity Actions

Implement /account.php

Browse source
This commit is contained in:
SilicaAndPina 2021-07-10 00:01:37 +12:00
parent d09a92ef9f
commit db82b96faa
5 changed files with 148 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

83
WebInterface/master-site/account.php
View file

@ -45,7 +45,8 @@ if(!is_logged_in())
if(isset($_GET['CONNECT']))
{
$server = getServerById($_GET['CONNECT']);
$server_id = $_GET['CONNECT'];
$server = getServerById($server_id);
if($server !== null)
{
@ -58,18 +59,36 @@ if(isset($_GET['CONNECT']))
$redirectUrl .= '/';
$redirectUrl .= 'account.php?SLID='.(string)$playerId.'&C='.base64_url_encode(hex2bin($hmac));
set_LastOn($playerId, $server_id);
header("Location: ".$redirectUrl);
exit();
}
}
include("web/header.php");
$player_id = $_SESSION['PLAYER_ID'];
$lastOnServer = get_LastOn($player_id);
$moveToFront = getServerById($lastOnServer);
if($moveToFront !== null){
for($i = 0; $i < count($server_list); $i++){
if($server_list[$i]['id'] == $lastOnServer)
unset($server_list[$i]);
}
array_unshift($server_list, $moveToFront);
}
?>
<?php #<TR><TD><IMG SRC=/web/servericons/pinto.gif></TD><TD><B><FONT COLOR=GREEN>You were on this server last time:</FONT><BR>SERVER: PINTO.HORSEISLE.COM</B><BR><BR></TD><TD><B>Not Subscribed</B><BR>Quest Points: 75pts<BR>Times Online: 3<BR>Last On: 0.84 days ago<BR></TD><TD><B>17<BR>players<BR>online<BR>now</B></TD><TD><B><A HREF=?CONNECT=pinto>[LOG IN]</A></B></TD></TR><TR><TD COLSPAN=5><HR>?>
<?php #<TABLE WIDTH=80% BGCOLOR=FFAABB BORDER=0 CELLPADDING=4 CELLSPACING=0><TR><TD class=newslist><B>[June 23, 2020 Latest Horse Isle News] Horse Isle 1 Compromise:</B><BR>Unfortunately, some troublemakers made a mess of HI1.<BR>We have reverted to a backup from 4am PST and taken some precautions. So, anything you "did" this morning was reverted.<br>We have also given all subs +12hrs to cover the down time.<br><br>Because passwords for accounts were likely compromised, we setup a system to verify and unlock for players' protection. When you try to login you will be prompted to reset your password. We can automatically unlock most players' accounts, but some will require manual support via email. Just follow the directions and please be patient with us.<br><br>Sorry about the trouble. HI1 was never designed to survive so long into this new mean digital world. ;)<br><br>P.S. The XSS alert was a simple javascript alert, just meaningless and harmless.<br><br>Thanks!<BR></TD></TR></TABLE> ?><BR><B>We have a <A HREF=//master.horseisle.com/beginnerguide/>Beginner Guide</A> online to help new players learn how to play.</B><BR><BR><B><FONT SIZE=+1>Horse Isle Server List</FONT></B><BR>Each server is completely independent and has identical game content. Money/horses/subscriptions are all tied to a particular server.
Normally you will only play on one server. <B>Playing on any server uses up playtime on all servers</B>, so you do not gain any free time. Reasons for playing on more than one include joining a friend, or in case your normal server is down.
Multiple servers are required since there is a max capacity of around 150 players online per server.<BR><B>Please note, a profile on any individual server will be permanently deleted after 183 days (6 months) of not logging into the game on that specific server or your subscription expiring, whichever is later.</b><TABLE CELLPADDING=5 CELLSPACING=0 BORDER=0 BGCOLOR=FFFFFF><TR><TD COLSPAN=5></TD></TR><TR><TD COLSPAN=2><B>GAME SERVERS</B> (all identical please only join 1 or 2)</TD><TD><B>PROFILE</B> (not current)</TD><TD><B>ONLINE</B></TD><TD><B>LOGIN</B></TD></TR></TD></TR><TR><TD COLSPAN=5><HR></TD></TR>
<?php #<TABLE WIDTH=80% BGCOLOR=FFAABB BORDER=0 CELLPADDING=4 CELLSPACING=0><TR><TD class=newslist><B>[June 23, 2020 Latest Horse Isle News] Horse Isle 1 Compromise:</B><BR>Unfortunately, some troublemakers made a mess of HI1.<BR>We have reverted to a backup from 4am PST and taken some precautions. So, anything you "did" this morning was reverted.<br>We have also given all subs +12hrs to cover the down time.<br><br>Because passwords for accounts were likely compromised, we setup a system to verify and unlock for players' protection. When you try to login you will be prompted to reset your password. We can automatically unlock most players' accounts, but some will require manual support via email. Just follow the directions and please be patient with us.<br><br>Sorry about the trouble. HI1 was never designed to survive so long into this new mean digital world. ;)<br><br>P.S. The XSS alert was a simple javascript alert, just meaningless and harmless.<br><br>Thanks!<BR></TD></TR></TABLE> ?>
<?php
if(!userExistAny($player_id))
echo('<BR><B>We have a <A HREF=//'.$_SERVER['HTTP_HOST'].'/beginnerguide/>Beginner Guide</A> online to help new players learn how to play.</B><BR>');
?><BR><B><FONT SIZE=+1>Horse Isle Server List</FONT></B><BR>Each server is completely independent and has identical game content. Money/horses/subscriptions are all tied to a particular server.
Normally you will only play on one server. <B>Playing on any server uses up playtime on all servers</B>, so you do not gain any free time. Reasons for playing on more than one include joining a friend, or in case your normal server is down.
Multiple servers are required since there is a max capacity of around 150 players online per server.<BR><B>Please note, a profile on any individual server will be permanently deleted after 183 days (6 months) of not logging into the game on that specific server or your subscription expiring, whichever is later.</b><TABLE CELLPADDING=5 CELLSPACING=0 BORDER=0 BGCOLOR=FFFFFF><TR><TD COLSPAN=5><?php # <BR><FONT COLOR=550000><B>You have 8 rule violation points against your account. [ <A HREF=/web/rulesbroken.php>REVIEW VIOLATIONS</A> ]</B></FONT><BR> ?></TD></TR><TR><TD COLSPAN=2><B>GAME SERVERS</B> (all identical please only join 1 or 2)</TD><TD><B>PROFILE</B> (not current)</TD><TD><B>ONLINE</B></TD><TD><B>LOGIN</B></TD></TR></TD></TR><TR><TD COLSPAN=5><HR></TD></TR>
<?php
for($i = 0; $i < count($server_list); $i++)
{
$server = $server_list[$i];
@ -77,15 +96,63 @@ for($i = 0; $i < count($server_list); $i++)
$url = $server['site'];
$desc = $server['desc'];
$id = $server['id'];
$database = $server['database'];
$domain = parse_url($url, PHP_URL_HOST);
$join = '';
if(!userid_exists($server['database'], $_SESSION['PLAYER_ID']))
$num_on = getNoSubbedPlayersOnlineInServer($database);
$pExist = userid_exists($database, $player_id);
if(!$pExist)
$join = '<A HREF=joinserver.php?SERVER='.$id.'>[JOIN]</A>';
else
$join = '<A HREF=?CONNECT='.$id.'>[LOG IN]</A>';
echo('<TR><TD><IMG SRC=/web/servericons/'.$icon.'></TD><TD><B>SERVER: '.strtoupper($domain).'</B><BR>'.$desc.'</BR></TD><TD>no existing profile</TD><TD><B>0<BR>players<BR>online<BR>now</B></TD><TD><B>'.$join.'</B></TD></TR><TR><TD COLSPAN=5><HR></TD></TR>');
echo('<TR><TD><IMG SRC=/web/servericons/'.$icon.'></TD><TD><B>');
if($lastOnServer === $id)
echo('<FONT COLOR=GREEN>You were on this server last time:</FONT><BR>');
echo('SERVER: '.strtoupper($domain).'</B><BR>'.$desc.'</BR></TD>');
if(!$pExist)
{
echo('<TD>no existing profile</TD>');
}
else
{
$newUser = getUserExistInExt($database, $player_id);
if(!$newUser){
$loginDate = getUserLoginDate($database, $player_id);
$questPoints = getUserQuestPoints($database, $player_id);
$totalLogins = getUserTotalLogins($database, $player_id);
$subbed = getUserSubbed($database, $player_id);
}
else
{
$loginDate = time();
$questPoints = 0;
$totalLogins = 0;
$subbed = false;
}
echo('<TD>');
if($subbed)
echo('<FONT COLOR=GREEN><B>ACTIVE SUBSCRIPTION</B></FONT>');
else
echo('<B>Not Subscribed</B>');
$lastOn = 0.00;
$current_time = time();
$difference = $current_time - $loginDate;
$lastOn = $difference/86400;
echo('<BR>Quest Points: '.$questPoints.'.pts<BR>');
echo('Times Online: '.$totalLogins.'<BR>');
echo('Last On: '.number_format((float)$lastOn, 2, '.', '').' days ago<BR>');
echo('</TD>');
}
echo('<TD><B>'.$num_on.'<BR>players<BR>online<BR>now</B></TD><TD><B>'.$join.'</B></TD></TR><TR><TD COLSPAN=5><HR></TD></TR>');
}
?>

55
WebInterface/master-site/common.php
View file

@ -145,11 +145,66 @@ function check_password(int $userId, string $password)
return false;
}
function count_LastOn(int $userId)
{
include('config.php');
$connect = mysqli_connect($dbhost, $dbuser, $dbpass,$dbname) or die("Unable to connect to '$dbhost'");
$stmt = $connect->prepare("SELECT COUNT(*) FROM LastOn WHERE Id=?");
$stmt->bind_param("i", $userId);
$stmt->execute();
$result = $stmt->get_result();
$v = $result->fetch_row();
return intval($v[0]);
}
function get_LastOn(int $userId)
{
if(count_LastOn($userId) <= 0){
return "NONE";
}
include('config.php');
$connect = mysqli_connect($dbhost, $dbuser, $dbpass,$dbname) or die("Unable to connect to '$dbhost'");
$stmt = $connect->prepare("SELECT ServerId FROM LastOn WHERE Id=?");
$stmt->bind_param("i", $userId);
$stmt->execute();
$result = $stmt->get_result();
$v = $result->fetch_row();
return $v[0];
}
function set_LastOn(int $userId, string $lastOn)
{
include('config.php');
if(get_LastOn($userId) === "NONE")
{
$connect = mysqli_connect($dbhost, $dbuser, $dbpass,$dbname) or die("Unable to connect to '$dbhost'");
$stmt = $connect->prepare("INSERT INTO LastOn VALUES(?, ?)");
$stmt->bind_param("is", $userId, $lastOn);
$stmt->execute();
}
else
{
$connect = mysqli_connect($dbhost, $dbuser, $dbpass,$dbname) or die("Unable to connect to '$dbhost'");
$stmt = $connect->prepare("UPDATE LastOn SET ServerId=? WHERE Id=?");
$stmt->bind_param("si", $lastOn, $userId);
$stmt->execute();
}
}
function populate_db()
{
include('config.php');
$connect = mysqli_connect($dbhost, $dbuser, $dbpass,$dbname) or die("Unable to connect to '$dbhost'");
mysqli_query($connect, "CREATE TABLE IF NOT EXISTS Users(Id INT, Username TEXT(16),Email TEXT(128),Country TEXT(128),SecurityQuestion Text(128),SecurityAnswerHash TEXT(128),Age INT,PassHash TEXT(128), Salt TEXT(128),Gender TEXT(16), Admin TEXT(3), Moderator TEXT(3))");
mysqli_query($connect, "CREATE TABLE IF NOT EXISTS LastOn(Id INT, ServerId TEXT(1028))");
}

13
WebInterface/master-site/crosserver.php
View file

@ -317,6 +317,19 @@ function getNoPlayersOnlineGlobal()
return $playersOn;
}
function userExistAny($playerId)
{
include('servers.php');
for($i = 0; $i < count($server_list); $i++)
{
if(userid_exists($server_list[$i]['database'], $playerId)){
return true;
}
}
return false;
}
function getNoSubbedPlayersOnlineGlobal()
{
include('servers.php');

1
WebInterface/master-site/joinserver.php
View file

@ -25,6 +25,7 @@ if(isset($_GET['SERVER']))
$redirectUrl .= '/';
$redirectUrl .= 'account.php?SLID='.(string)$playerId.'&C='.base64_encode(hex2bin($hmac));
set_LastOn($playerId, $server_id);
header("Location: ".$redirectUrl);
exit();

10
WebInterface/master-site/web/rulesbroken.php
View file

@ -1,3 +1,4 @@
<HEAD>
<TITLE>HORSE ISLE - Online Multiplayer Horse Game</TITLE>
<META NAME="keywords" CONTENT="Horse Game Online MMORPG Multiplayer Horses RPG Girls Girly Isle World Island Virtual Horseisle Sim Virtual">
@ -96,10 +97,7 @@ color: #440000;
<TD WIDTH=100% BACKGROUND=/web/hoilgui4.gif align=right>
<B>
<TABLE CELLPADDING=0 CELLSPACING=2 BORDER=0><FORM METHOD=POST ACTION=/account.php>
<TR><TD><B>USER:</B></TD><TD><INPUT TYPE=TEXT SIZE=14 NAME=USER></TD></TR>
<TR><TD><B>PASS:</B></TD><TD><INPUT TYPE=PASSWORD SIZE=14 NAME=PASS></TD></TR>
<TR><TD></TD><TD><INPUT TYPE=SUBMIT VALUE=LOGIN> (<A HREF=/web/forgotpass.php>Forgot?</A>)</TD></TR></FORM></TABLE>
<TABLE BORDER=0 CELLPADDING=0 CELLSPACING=10><TR><TD><B>Logged in as: Thornbush</B><BR><BR><A HREF=/?LOGOUT=1><img src=/web/but-logout.gif border=0></A><BR><A HREF=/><img src=/web/but-mainpage.gif border=0></A></TD><TD><BR><A HREF=/account.php><img src=/web/but-serverlist.gif border=0></A><BR><A HREF=/web/news.php><img src=/web/but-news.gif border=0></A><BR><A HREF=/web/forums.php><img src=/web/but-forums.gif border=0></A><BR><A HREF=/web/helpcenter.php><img src=/web/but-helpcenter.gif border=0></A></TD></TR></TABLE>
</TD>
<TD WIDTH=29><IMG SRC=/web/hoilgui5.gif></TD></TR>
@ -115,7 +113,7 @@ We will not dispute, nor provide any more details about these Violations.<BR>
An account needs at least 10 points prior to being "Examined" to see if it requires removal or other steps.<BR>
So do not be concerned if you have 1 or 2 points against you. It has NO negative effect on your account.<BR>
Violations "Time Out" After 2 months and are removed from your record. The date shown is when we reviewed the violations, so may be a day or 2 later than the actual violation.<BR>
<BR><CENTER>Total Chat Violations: <BR><TABLE BORDER=1 CELLPADDING=4 CELLSPACING=0><TR><TD class=forumlist>Severity</TD><TD class=forumlist>Description of Rule Broken</TD><TD class=forumlist>Date</TD></TR></TAble></TD></TR></TABLE><TABLE BORDER=0 CELLPADDING=0 CELLSPACING=0 WIDTH=100%>
<BR><CENTER>Total Chat Violations: <BR><TABLE BORDER=1 CELLPADDING=4 CELLSPACING=0><TR><TD class=forumlist>Severity</TD><TD class=forumlist>Description of Rule Broken</TD><TD class=forumlist>Date</TD></TR><TR><TD><CENTER>4points</CENTER></TD><TD>Chat: No Swearing</TD><TD>Jul 02</TD></TR><TR><TD><CENTER>4points</CENTER></TD><TD>No spamming includes with autoreply</TD><TD>Jul 03</TD></TR></TAble></TD></TR></TABLE><TABLE BORDER=0 CELLPADDING=0 CELLSPACING=0 WIDTH=100%>
<TR>
<TD><IMG SRC=/web/hoilgui10.gif></TD>
<TD WIDTH=100% BACKGROUND=/web/hoilgui11.gif></TD>
@ -129,7 +127,7 @@ Violations "Time Out" After 2 months and are removed from your record. The date
[ <A HREF=/web/expectedbehavior.php>Expected Behavior</A> ]
[ <A HREF=/web/contactus.php>Contact Us</A> ]
[ <A HREF=/web/credits.php>Credits</A> ]<BR>
<FONT FACE=Verdana,Arial SIZE=-2>Copyright &copy; 2020 Horse Isle</FONT>
<FONT FACE=Verdana,Arial SIZE=-2>Copyright &copy; 2021 Horse Isle</FONT>
<!-- Google Analytics -->
<script src="http://www.google-analytics.com/urchin.js" type="text/javascript">