Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- header("Content-Type: text/html; charset=utf-8");
- if(!isset($_REQUEST["username"])) { return; }
- if(!isset($_REQUEST["fraktion"])) { return; }
- //if(!preg_match("/^\w+[.|_]?\w+$/", $_REQUEST["username"])) {
- if(!preg_match("/^\w+[.|_]?\w+[.|_]?$/", $_REQUEST["username"])){
- return;
- } else if(!preg_match("|^\d+$|", $_REQUEST["fraktion"])) {
- return;
- }
- $transferProtokoll = "http";
- $sqlHost = "***";
- $sqlUser = "***";
- $sqlPassword = "***";
- $sqlDatabase = "***";
- $sqlTable = "whitelist";
- //if (!$link = mysql_connect($sqlHost, $sqlUser, $sqlPassword))
- if (!$link = mysql_connect($sqlHost, $sqlDatabase, $sqlPassword))
- {
- echo 'Keine Verbindung zu dem mysql Server möglich';
- exit;
- } else if (!mysql_select_db($sqlDatabase, $link)) {
- echo 'Konnte die Datenbank nicht selektieren';
- exit;
- }
- $check = mysql_db_query($sqlDatabase,'SELECT username,fraktion FROM '.$sqlTable.'
- WHERE fraktion="'.$_REQUEST["fraktion"].'" AND username="'.$_REQUEST["username"].'"');
- $result = mysql_fetch_row($check);
- if($result[0] == $_REQUEST["username"] && $result[1] == $_REQUEST["fraktion"]) {
- echo("1");
- } else { echo("0"); }
- mysql_close($link);
- exit;
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement