A script of a browsergame I wrote years ago

// Or: What little kids do with PHP :D

<?php

if ($userally == '') {

$prfbews = "SELECT * FROM ally_bews WHERE usrid=$userid";
 $prfbewsq = mysql_query($prfbews);
$bews = mysql_num_rows($prfbewsq);

if ($bews == 0) {

 if ($urlloc == '' OR $urlloc == 'sally' OR $urlloc == 'gally') {
echo "<table id='chtable'><tr>";
 if ($urlloc == 'sally') {

 echo "<td style='background-image: url(\"style/interface/chtable-bg.png\");'>
       <a href='?ally,sally'>Ally Suchen</a></td>&nbsp;&nbsp;";
 }else{
 echo "<td><a href='?ally,sally'>Ally Suchen</a></td>&nbsp;&nbsp;";
 }

 if ($urlloc == 'gally') {

 echo "<td style='background-image: url(\"style/interface/chtable-bg.png\");'>
       <a href='?ally,gally'>Ally Gründen</a></td>&nbsp;&nbsp;";
 }else{
 echo "<td><a href='?ally,gally'>Ally Gründen</a></td>&nbsp;&nbsp;";
 }
 echo "</tr></table>";

if ($urlloc == 'sally') {

    echo "<table id='suche' style='top: 200px;'><tr><td><form action='". $_SELF['PHP'] ."' method='POST'></td>
          <td><select name='allyskat'>
                        <option value='tag'>Tag</option>
                        <option value='name'>Name</option>
          </select></td>
          <td><input type='text' class='input_text' name='sallyv'></td>
          <td><input type='submit' class='sbutton' name='search' value='Suchen'></td></tr></form></table>";

if (isset($_POST['search'])) {
$allyskat = $_POST['allyskat'];
$sallyfor = $_POST['sallyv'];
echo "<table id='table' style='top: 250px;'>";
$ulsql = "SELECT * FROM allys WHERE ". $allyskat ." LIKE '%". $sallyfor ."%'";
 $ulq = mysql_query($ulsql);
while ($ulrow= mysql_fetch_assoc($ulq)) {

    $ulid = $ulrow['id'];
    $ulname = $ulrow['name'];
    $ulally = $ulrow['tag'];

echo "<tr><td><a href='?ally,bewerben,". $ulid . "'>" . $ulally . "</a></td>
      <td>" . $ulname . "</td></tr>";

    }
echo "</table>";
  }
 }else if ($urlloc == 'gally') {

    echo "<table id='table'><tr><form action='". $_SELF['PHP'] ."' method='POST' id='gcon'>
          <td>Name:</td><td><input type='text' class='input_text' name='Name'></td></tr>
          <td>Tag:</td><td><input type='text' class='input_text' name='Tag'  onchange='checkLength(this.value.length, \"4\",
          \"<small>Das Tag darf <br>max 4 Zeichen haben</small>\", \"taglenghterror2\", \"g\");'
          name='allytag'><p id='taglenghterror2'></td></tr>
          <td></td><td><input type='submit' class='sbutton' name='g' id='g' value='Gründen'></td></tr></form></table>";


if (isset($_POST['g'])) {

    $allytag = htmlentities($_POST['Tag']);
    $allyname = htmlentities($_POST['Name']);


$gallysql = "INSERT INTO allys VALUES('', '$allyname', '$allytag', '', '', '', '')";
  mysql_query($gallysql);

$adaasql = "SELECT * FROM allys WHERE name='$allyname'";
  $adaaq = mysql_query($adaasql);
while ($adaarow= mysql_fetch_assoc($adaaq)) {

    $allyid = $adaarow['id'];

}


$memallysql = "INSERT INTO ally_member VALUES('$userid', '$allyid', 'Leader')";
$rangallysql = "INSERT INTO ally_ränge VALUES('$allyid', 'Leader', '5')";
$updtuserdata = "UPDATE userdata SET ally='$allyname' WHERE id='$userid'";
mysql_query($memallysql);
mysql_query($rangallysql);
mysql_query($updtuserdata);

  }
 }else if ($urlloc == 'bewerben') {

  $bewbsql = "SELECT * FROM allys WHERE id='$urlnum'";
    $bewbq = mysql_query($bewbsql);
 while ($bewbrow= mysql_fetch_assoc($bewbq)) {

  $bewaname = htmlentities($bewbrow['name']);
  $bewatag = htmlentities($bewbrow['tag']);

 }

    echo "<table id='table'>
          <form action='". $_SELF['PHP'] ."' method='POST'>
          <tr><td> Allyname: </td><td> ". $bewaname ." [". $bewatag ."]&nbsp;</td></tr>
          <tr><td>Bewerbungstext:</td><td>
          <textarea name='btext' rows='10' cols='30'>". $muster ."</textarea></td></tr>
          <tr><td><input type='button' value='Muster'></td>
          <td><input type='submit' name='abs' value='Bewerben'></td></tr>
          </form></table>";

    if (isset($_POST['abs'])) {

        $btext = nl2br(htmlentities($_POST['btext']));

       $insbewsql = "INSERT INTO ally_bews VALUES ('$urlnum', '$userid', '$btext')";
        mysql_query($insbewsql);

        echo "<script type=\"text/javascript\">
                  window.location.href=\"./game.php?ally\";
              </script>";

    }


  }
 }
}
}else if ($userally != '') {

  $absql = "SELECT * FROM allys WHERE name='$userally'";
    $abq = mysql_query($absql);
while ($abrow= mysql_fetch_assoc($abq)) {

  $abid = $abrow['id'];
  $abname = $abrow['name'];
  $abtag = $abrow['tag'];
  $abde = wordwrap(functionBBCode($abrow['descext'], 70 , "<br>", 1));
  $abdi = wordwrap(functionBBCode($abrow['descint'], 70 , "<br>", 1));
  $abpoints = $abrow['punkte'];
  $abplace = $abrow['place'];

 }


 $umemsql = "SELECT * FROM ally_member WHERE usrid='$userid' AND allyid='$abid'";
  $umemq = mysql_query($umemsql);
while ($umemrow= mysql_fetch_assoc($umemq)) {

    $allyusrrang = $umemrow['rang'];

}

  $rbsql = "SELECT * FROM ally_ränge WHERE allyid='$abid' AND rangname='$allyusrrang'";
   $rbq = mysql_query($rbsql);
 while ($rbrow= mysql_fetch_assoc($rbq)) {

    $rbrname = $rbrow['rangname'];
    $rbrights = $rbrow['rangrights'];
    $usrrights = $rbrow['rangrights'];

 }

  $bewssql = "SELECT * FROM ally_bews WHERE allyid='$abid'";
    $bewsq = mysql_query($bewssql);
     $bewsc = mysql_num_rows($bewsq);

      if ($bewsc == '') {

       $bewsc = '0';
      }

  $countmsql = "SELECT * FROM ally_member WHERE allyid='$abid'";
    $countmq = mysql_query($countmsql);
   $countm = mysql_num_rows($countmq);

if ($urlloc == '') {
 echo "<div><table><tr><td class='overtd' style='background-image: url(style/tables/ally-overdesc.png);'>
      <b style='font-size: 15px; color: white;'>Ihre Allianz<b></td></tr></table>

      <table id='allytable1'><tr><td>Name:</td></tr>
      <tr><td>Tag:</td></tr>
      <tr><td>Mitglieder:</td></tr>
      <tr><td>Punkte:</td></tr>
      <tr><td>Ihr Rang:</td></tr>
      </table>

      <table id='allytable2'>
      <tr><td>" . $abname . "</td></tr>
      <tr><td>". $abtag ."</td></tr>
      <tr><td>". $countm; if ($userally == $abname) {
      echo "<a href='?ally,members'>  (Memberliste)</a>";
      }
      echo "</td></tr>
      <tr><td>". $abpoints ." (Platz: <b>". $abplace ."</b> )</td></tr>
      <tr><td>". $allyusrrang; if ($usrrights > 3) {
      echo "<a href='?ally,bally'> (Ally bearbeiten)</a>";

      }
      echo "</td></tr>
      </table>

      <table style='background-image: url('interface/button-drop.png');'>
      <tr><td style='text-align: center; background-image: url(style/tables/ally-overdesc.png); height: 20px;
      padding: 5px; width: 542px;'>
      <b style='font-size: 15px; color: white;'>Externe Page<b></td></tr></table>
      <table style='margin-top: -5px;' id='descext'>
      <tr style='margin-top: -200px;'><td style='border-bottom: 5px solid black; border-top: 5px solid black;'>
      <div style='min-height: 100px;'>". $abde ."</div></td></tr>
      </table>
      <br><br><br><br>

      <table><tr><td style='text-align: center; background-image: url(style/tables/ally-overdesc.png); height: 20px;
      padding: 5px; width: 542px;'>
      <b style='font-size: 15px; color: white;'>Interne Infos<b></td></tr></table>
      <table style='margin-top: -5px;' id='descext'><tr><td style='border-bottom: 5px solid black; border-top: 5px solid black;'>
      <div style='min-height: 100px;'>". $abdi ."</div></td></tr>
      </table></div>";
}else if ($urlloc == 'bally' && $usrrights >= '3') {


    echo "<div style='position: relative; left: 80px; top: 25px;'>
          ";
          if ($rbrights == 5) {
          echo "<a href='?ally,brang' class='typlink'>Ränge bearbeiten&nbsp;||</a>";
          }
          echo " </div>
          <div style='min-height: 500px;'><table id='table'><tr><form action='". $_SELF['PHP'] ."' method='POST' id='allybscon'>
          <td>Name:</td><td>". $abname ."</td></tr>
          <tr><td>Tag:</td><td><input class='input_text' value='". $abtag ."' onkeyup='checkLength(this.value.length, \"4\",
          \"<small>Das Tag darf <br>max 4 Zeichen haben</small>\", \"taglenghterror\", \"allybs\");'
          name='newtag'><p id='taglenghterror'></td></tr>
          <tr><td></td><td><a href='?ally,mbews'>Bewerbungen(". $bewsc .")</a></td></tr>
          <tr><td><small>(max 1000 Zeichen)</small></td><td><textarea name='newdescext' cols='40' rows='10'
          onkeyup='checkLength(this.value.length, \"1000\",
          \"<small>Der externe Text darf <br>max 1000 Zeichen haben</small>\", \"delenghterror\", \"allybs\");'
          name='newde'>". strip_tags($abde) ."</textarea><p id='delenghterror'></td></tr>
          <tr><td><small>(max 500 Zeichen)</small></td><td><textarea name='newdescint' cols='40' rows='10'
          onkeyup='checkLength(this.value.length, \"500\", \"<small>Der interne Text darf <br>max 500 Zeichen haben</small>\",
          \"dilenghterror\", \"allybs\");'>". strip_tags($abdi) ."</textarea><p id='dilenghterror'></td></tr>
          <tr><td></td><td><input type='submit' value='Ändern' name='allybs' id='allybs'><p id='aerror'></p></td></tr>
          </table></div>";


if (isset($_POST['allybs'])) {

    $newtag = $_POST['newtag'];
    $newde = nl2br(htmlentities($_POST['newdescext']));
    $newdi = nl2br(htmlentities($_POST['newdescint']));
  if (strlen($newde) < 1001 && strlen($newdi) < 501) {
    if (strlen($newtag) < 5) {
      $updtallysql = "UPDATE allys SET tag='$newtag', descext='$newde', descint='$newdi'
      WHERE allyid='$abid'";
       mysql_query($updtallysql);


    echo "<script type=\"text/javascript\">
             window.location.href=\"./game.php?ally\";
         </script>";

      }else{
     echo "<script type='text/javascript'>
          writeInto('Das Tag hat zu viele Zeichen, max 4!', 'aerror');
          </script>";
    }
   }else{
    echo "<script type='text/javascript'>
          writeInto('Zu viele Zeichen im Text', 'aerror');
          </script>";
   }
  }


 }else if ($urlloc == 'bmem' && $usrrights == '5') {

    $mlbsql = "SELECT * FROM ally_member WHERE allyid='$abid' && usrid='$urlnum'";
     $mlbq = mysql_query($mlbsql);
while ($mlbrow= mysql_fetch_assoc($mlbq)) {
      $memid = $mlbrow['usrid'];
      $memrang = $mlbrow['rang'];

        $mlusrsql = "SELECT * FROM userdata WHERE id='$memid'";
         $mlusrq = mysql_query($mlusrsql);
    while ($mlusrrow= mysql_fetch_assoc($mlusrq)) {

        $memname = $mlusrrow['name'];
        $mempoints = round($mlusrrow['punkte']);
    }

      $rangchecksql = "SELECT * FROM ally_ränge WHERE allyid='$abid' AND rangname='$memrang'";
        $rangcheckq = mysql_query($rangchecksql);
   while ($rcrow= mysql_fetch_assoc($rangcheckq)) {

        $mrangrights = $rcrow['rangrights'];
  }


    echo "<div style='min-height: 500px;'><table id='table'><tr><form action='". $_SELF['PHP'] ."' method='POST'>
          <td>Name:</td><td>". $memname ."</td></tr>
          <tr><td>Rechte:</td><td><select name='aerang'>";
          $arnsql = "SELECT * FROM ally_ränge WHERE allyid='$abid'";
   $arnq = mysql_query($arnsql);
while ($arnrow= mysql_fetch_assoc($arnq)) {
  $arang = $arnrow['rangname'];

  echo "<option value=" . $arang . ">" . $arang . "</option>";

}

          echo "</select></td></tr>
          <tr><td></td><td><input type='submit' value='Ändern' name='memb'></td></tr>
          </table></div>";


if (isset($_POST['memb'])) {

      $aerang = $_POST['aerang'];

          $memupdt = "UPDATE ally_member SET rang='$aerang' WHERE allyid=$abid AND usrid=$memid";
          mysql_query($memupdt);

        echo "<script type=\"text/javascript\">
             window.location.href=\"./game.php?ally,members\";
         </script>";

    }


  }
 }else if ($urlloc == 'brang' && $usrrights == '5') {

    if ($urlnum != '') {

      $srangsql = "SELECT * FROM ally_ränge WHERE allyid='$abid' && rangname='$urlnum'";
        $srangq = mysql_query($srangsql);
    while ($srangrow= mysql_fetch_assoc($srangq)) {

          $rname = $srangrow['rangname'];
          $rrights = $srangrow['rangrights'];

          if ($rrights == '1') {
          $rrights = 'Member';
          }else if ($rrights == '2') {
          $rrights = 'eMember';
          }else if ($rrights == '3') {
          $rrights = 'Verwalter';
          }else if ($rrights == '4') {
          $rrights = 'Co-Leader';
          }else if ($rrights == '5') {
          $rrights = 'Leader';
          }

          echo "<table id='table'><form method='POST' action='". $SELF['PHP'] ."'>
                <tr><td>Name:</td><td><input class='input_text' type='text' name='rname' value='". $rname ."'></td></tr>
                <tr><td>Rechte:</td><td>  &nbsp;". $rrights ."&nbsp;&nbsp;<select name='rrights'>
                <option value='1'>Member</option>
                <option value='2'>eMember</option>
                <option value='3'>Verwalter</option>
                <option value='4'>CoLeader</option>
                <option value='5'>Leader</option></td></tr>
                <tr><td>Löschen?<input type='checkbox' name='del' value='del'></td><td><input type='submit' name='bearbrange' value='Ändern'></td></tr>
                </form></table>";

          if (isset($_POST['bearbrange'])) {
          echo "PASS 1";
              $nrname = $_POST['rname'];
              $nrrights = $_POST['rrights'];
              $del = $_POST['del'];

                  if (isset($del)) {

                      $delrang = "DELETE FROM ally_ränge WHERE allyid='$abid' AND rangname='$rname'";
                        mysql_query($delrang);

                  echo "<script type=\"text/javascript\">
                              window.location.href=\"./game.php?ally,brang\";
                          </script>";
                  }

        }
      }
    }else if ($urlnum == '') {

     echo "<div style='position: relative; left: 80px; top: 25px;'>
           <a href='?ally' class='typlink'>Zurück&nbsp;||</a>
           <a href='?ally,rangadd' class='typlink'>Rang hinzufügen&nbsp;||</a>
           </div>
           <table id='table'><tr><td>Rangname</td><td>Rangrechte</td><td>Aktionen</td></tr>";

      $rbsql = "SELECT * FROM ally_ränge WHERE allyid='$abid' ORDER BY rangrights DESC";
        $rbq = mysql_query($rbsql);
     while ($rbrow= mysql_fetch_assoc($rbq)) {

        $rbrname = $rbrow['rangname'];
        $rbrrights = $rbrow['rangrights'];

        if ($rbrrights == 1){
          $rbrrights = "<span onmouseover='Tip(\"Memberliste ansehen\");' onmouseout='UnTip();'>Member</span>";
        }else if ($rbrrights == 2){
          $rbrrights = "<span onmouseover='Tip(\"+Rundmails schreiben\");' onmouseout='UnTip();'>eMember</span>";
        }else if ($rbrrights == 3){
          $rbrrights = "<span onmouseover='Tip(\"+Ally bearbeiten\");' onmouseout='UnTip();'>Verwalter</span>";
        }else if ($rbrrights == 4){
          $rbrrights = "<span onmouseover='Tip(\"+Bewerbungen bearbeiten\");' onmouseout='UnTip();'>Co-Leader</span>";
        }else if ($rbrrights == 5){
          $rbrrights = "<span onmouseover='Tip(\"+Member bearbeiten,<br>kicken,Ränge bearbeiten\");' onmouseout='UnTip();'>
          Leader</span>";
        }


        echo "<tr><td>". $rbrname . "</td><td>". $rbrrights . "</td><td>" . "<a href='?ally,brang,". $rbrname . "'>bearbeiten</a></td></tr>";


     }
     echo "</table>";
    }
 }else if ($urlloc == 'rangadd') {
  if ($usrrights == '5') {
    echo "<table id='table'>
          <form method='POST' action='". $_SELF['PHP'] ."'>
          <tr><td>Name</td><td><input class='input_text' type='text' name='raddname'></td></tr>
          <tr><td>Rechte</td><td><select name='raddrights'>
          <option value='1' onmouseover='Tip(\"Memberliste ansehen\");' onmouseout='UnTip();'>Member</option>
          <option value='2' onmouseover='Tip(\"+Rundmails schreiben\");' onmouseout='UnTip();'>eMember</option>
          <option value='3' onmouseover='Tip(\"+Ally bearbeiten\");' onmouseout='UnTip();'>Verwalter</option>
          <option value='4' onmouseover='Tip(\"+Bewerbungen bearbeiten\");' onmouseout='UnTip();'>Co-Leader</option>
          <option value='5' onmouseover='Tip(\"+Member bearbeiten,<br>kicken,Ränge bearbeiten\");' onmouseout='UnTip();'>
          Leader</option></td></tr>
          <tr><td></td><td><input type='submit' name='addrange' value='Hinzufügen'></td></tr>
          </form></table>";
       }

     if (isset($_POST['addrange'])) {
       echo "PASS 1";
        $addrname = htmlentities($_POST['raddname']);
        $addrrights = $_POST['raddrights'];

          if ($addrname != '') {

            $addrsql = "INSERT INTO ally_ränge VALUES ('$abid', '$addrname', '$addrrights')";
              mysql_query($addrsql);

           echo "<script type=\"text/javascript\">
                              window.location.href=\"./game.php?ally,brang\";
                          </script>";


      }
     }


 }else if ($urlloc == 'mbews' && $usrrights >= 4) {

 echo "<table id='table'><tr><td>Name:</td><td>Bewerbung:</td><td>Aktionen:</td></tr>";

    $bewssql = "SELECT * FROM ally_bews WHERE allyid='$abid'";
    $bewsq = mysql_query($bewssql);
  while ($bewsrow= mysql_fetch_assoc($bewsq)) {

      $bewusrid = $bewsrow['usrid'];
      $bewtext = $bewsrow['btext'];

   $bewusrsql = "SELECT * FROM userdata WHERE id='$bewusrid'";
    $bewusrq = mysql_query($bewusrsql);
  while ($burow= mysql_fetch_assoc($bewusrq)) {

      $bewusrname = $burow['name'];
      $bewusrid = $burow['id'];

   }

         echo "<tr><td>". $bewusrname ."</td><td>". $bewtext ."</td>
         <td><a href='?ally,del,". $bewusrid ."'>Delete</a>
         <form action='". $_SELF['PHP'] ."' method='POST'>
         <input type='submit' name='annmn' value='OK'>
         </form>
         </td></tr>";

      if (isset($_POST['annmn'])) {

        $insmemsql = "INSERT INTO ally_member VALUES ('$bewusrid', '$abid', '')";
        $insudsql = "UPDATE userdata SET ally='$abname' WHERE id='$bewusrid'";
        $delbewssql = "DELETE FROM ally_bews WHERE allyid='$abid' AND usrid='$bewusrid'";
          mysql_query($insmemsql);
          mysql_query($insudsql);
          mysql_query($delbewssql);

        echo "<script type=\"text/javascript\">
             window.location.href=\"./game.php?ally\";
         </script>";

    }
  }
 echo "</table>";


 }else if ($urlloc == 'members') {

echo "<table id='table'><tr><td>Name</td><td>Rang</td><td>Punkte</td><td>Aktionen</td></tr>
      <tr><td></td><td></td><td> </td><td></td></tr>";

    $mlbsql = "SELECT * FROM ally_member WHERE allyid='$abid'";
     $mlbq = mysql_query($mlbsql);
while ($mlbrow= mysql_fetch_assoc($mlbq)) {

      $memid = $mlbrow['usrid'];
      $memrang = $mlbrow['rang'];

        $mlusrsql = "SELECT * FROM userdata WHERE id='$memid'";
         $mlusrq = mysql_query($mlusrsql);
    while ($mlusrrow= mysql_fetch_assoc($mlusrq)) {

        $memname = $mlusrrow['name'];
        $mempoints = round($mlusrrow['punkte']);
    }

      $rangchecksql = "SELECT * FROM ally_ränge WHERE allyid='$abid' AND rangname='$memrang'";
        $rangcheckq = mysql_query($rangchecksql);
   while ($rcrow= mysql_fetch_assoc($rangcheckq)) {

        $rangrights = $rcrow['rangrights'];
  }

      echo "<tr><td>". $memname ."</td><td>". $memrang ."</td>
            <td>". $mempoints ."</td>";
            if ($rbrights == 5) {
            echo "<td><a href='?ally,bmem,". $memid ."'>Bearbeiten</a></td>";
            }
            echo "</tr>";
  }
      echo "</table>";
 }
}

if ($urlloc == 'anz') {

    $aanzsql = "SELECT * FROM allys WHERE id='$urlnum'";
     $aanzq = mysql_query($aanzsql);
while ($aanzrow= mysql_fetch_assoc($aanzq)) {

    $anzaname = $aanzrow['name'];
     $anzatag = $aanzrow['tag'];
     $anzadesc = wordwrap(functionBBCode($aanzrow['descext'], 70 , "<br>", 1));

    echo "<div><table><tr><td class='overtd' style='background-image: url(style/tables/ally-overdesc.png);'>
      <b style='font-size: 15px; color: white;'>". $anzaname ."[". $anzatag ."]<b></td></tr></table>

      <table id='descext' style='margin-top: -5px;'>
      <tr><td style='border-bottom: 5px solid black; border-top: 5px solid black;'>
      <div style='min-height: 100px;'>". $anzadesc ."</div></td></tr>
      </table>";
}


}
?>