Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include "database.php";
- $content = false;
- $game;
- $page = isset($_GET['page']) ? $_GET['page'] : null;
- $action = isset($_GET['action']) ? $_GET['action'] : null;
- $username = isset($_POST['name']) ? sanatize($_POST['name']) : null;
- $password = isset($_POST['wachtwoord']) ? sanatize($_POST['wachtwoord']) : null;
- $gameActionResult;
- $user;
- switch($page)
- {
- case "register":
- $content = "create_account.php";
- break;
- case "register_check":
- $hash = password_hash($password, PASSWORD_BCRYPT);
- $sql = "INSERT INTO user_accounts (username, hash)
- VALUES ('{$username}', '{$hash}')";
- if ($conn->query($sql) === FALSE)
- {
- echo "Error: " . $sql . "<br>" . $conn->error;
- }
- else {
- header("Location: " . "index.php?page=login");
- }
- break;
- case "login":
- $content = "login.php";
- break;
- case "login_check":
- $sql = "SELECT hash FROM user_accounts WHERE username='{$username}'";
- $result = $conn->query($sql);
- if ($result->num_rows > 0)
- {
- $row = $result->fetch_assoc();
- if(password_verify($password, $row['hash']))
- {
- $length = 50;
- $token = bin2hex(random_bytes($length));
- $sql = "UPDATE user_accounts SET token='{$token}' WHERE username='{$username}'";
- if ($conn->query($sql) === TRUE) {
- //echo "Token Set";
- }
- setcookie("token", $token, time() + (86400 * 30), "/");
- header('Location: index.php?page=game');
- }
- else
- {
- echo "Verkeerd";
- }
- } else {
- echo "Geen account met die naam gevonden";
- }
- break;
- case "logout":
- $content = "logout.php";
- break;
- case "check_login":
- require "logcheck.php";
- break;
- case "register_user":
- break;
- case "game":
- $game = "game.php";
- $token = isset($_COOKIE['token']) ? $_COOKIE['token'] : null;
- if ($token != null) {
- $sql = "SELECT * FROM user_accounts WHERE token='{$token}'";
- $result = $conn->query($sql);
- if ($result->num_rows > 0) {
- $user = $result->fetch_assoc();
- } else {
- header("Location: index.php?page=login");
- }
- } else {
- header("Location: index.php?page=login");
- }
- switch ($action)
- {
- case "Gather":
- if ($user['actions'] > 0) {
- $user['gold'] += 2;
- $user['actions'] -= 1;
- } else {
- echo "niet genoeg acties";
- }
- $content = "Gather.php";
- break;
- case "Adventure":
- require "adventure.php";
- break;
- case "Rest":
- if ($user['gold'] > 0) {
- $user['actions'] += 2;
- $user['gold'] -= 1;
- $user['hitpoints'] += 5;
- } else {
- echo "niet genoeg goud";
- }
- break;
- case "Resurrect":
- if ($user['hitpoints'] < 0) {
- $user['gold'] -= 50;
- $user['hitpoints'] = 100;
- }
- break;
- case "Reset":
- $user['hitpoints'] = 100;
- $user['gold'] = 0;
- $user['actions'] = 25;
- break;
- default:
- }
- $sql2 = "UPDATE user_accounts SET actions={$user['actions']}, gold={$user['gold']} , hitpoints={$user['hitpoints']} WHERE id={$user['id']}";
- $conn->query($sql2);
- break;
- default:
- $content = "welcome.php";
- }
- require "Template.php";
- function sanatize($value) {
- $value = trim($value);
- $value = stripcslashes($value);
- $value = htmlspecialchars($value);
- return $value;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement