Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?PHP
- session_start();
- require "../script.php";
- if(isset($_GET['SKINID'])) {
- function getUserSkinInfo($uid, $skinId) {
- require "../../inc/bdd.php";
- $sql = $db->prepare("SELECT s.* FROM `skins` s INNER JOIN `users` m ON m.id = :id AND s.skinid = :skinId");
- $sql->bindParam("id", $uid);
- $sql->bindParam("skinId", $skinId);
- $sql->execute();
- $data = $sql->fetch();
- require "../../inc/bdd.php";
- $arraysql = $db->prepare('SELECT skinList, skin FROM users WHERE id = :uid');
- $arraysql->bindParam('uid',$uid);
- $arraysql->execute();
- $data_array = $arraysql->fetch();
- $skListStr = $data_array["skinList"];
- $Array = explode(",", $skListStr);
- $poss = 0;
- for($i=0;$i<count($Array);$i++) {
- if($_GET['SKINID'] == $Array[$i]) {
- $poss = 1;
- }
- }
- return $poss;
- }
- function colorToStr($color) {
- $color = array_map("ord", str_split($color));
- return implode(";", $color);
- }
- function getDataFromSession($session) {
- require "../../inc/bdd.php";
- $sql = $db->prepare("SELECT * FROM `users` WHERE `session` = :session");
- $sql->bindParam("session", $session);
- $sql->execute();
- return $sql->fetch();
- }
- $session = $_SESSION['session'];
- $uid = getDataFromSession($session)["id"];
- $result = Array();
- $result["RESULT"] = 0;
- $skinId = intval($_GET["SKINID"]);
- $skinColor = $_GET["SKINCOLOR"];
- $avatarCol = urldecode($skinColor);
- $userSkinInfo = getUserSkinInfo($uid, $skinId);
- if ($userSkinInfo != 0) {
- $result["RESULT"] = 1;
- $skinColor = colorToStr($skinColor);
- require "../../inc/bdd.php";
- $sql = $db->prepare("UPDATE `users` SET `skin` = :skin, `colors` = :colors, `colorAvatar` = :avatarCol WHERE `id` = :id");
- $sql->bindParam("skin", $skinId);
- $sql->bindParam("colors", $skinColor);
- $sql->bindParam('avatarCol', $avatarCol);
- $sql->bindParam("id", $uid);
- $sql->execute();
- $sql->closeCursor();
- } else {
- $result["RESULT"] = 0;
- }
- die(http_build_query($result));
- } elseif(isset($_GET['FAVORI_BDD'])) {
- function getDataFromSession($session) {
- require "../../inc/bdd.php";
- $sql = $db->prepare('SELECT * FROM `users` WHERE `session` = :session');
- $sql->bindParam('session', $session);
- $sql->execute();
- return $sql->fetch();
- }
- function getUserSkinInfo($uid, $skinId) {
- require "../../inc/bdd.php";
- $sql = $db->prepare("SELECT s.* FROM `skins` s INNER JOIN `users` m ON m.id = :id AND s.skinid = :skinId");
- $sql->bindParam("id", $uid);
- $sql->bindParam("skinId", $skinId);
- $sql->execute();
- $data = $sql->fetch();
- require "../../inc/bdd.php";
- $arraysql = $db->prepare('SELECT skinList, skin FROM users WHERE id = :uid');
- $arraysql->bindParam('uid',$uid);
- $arraysql->execute();
- $data_array = $arraysql->fetch();
- $skListStr = $data_array["skinList"];
- $Array = explode(",", $skListStr);
- $poss = 0;
- for($i=0;$i<count($Array);$i++) {
- if($_GET['SKINID'] == $Array[$i]) {
- $poss = 1;
- }
- }
- return $poss;
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement