Compare commits

..

No commits in common. "2801550bddbdc73043018de9884a541d97543bf3" and "30588252d867d64de5c8d0cc67fa3a4bc321b7b9" have entirely different histories.

11 changed files with 128 additions and 194 deletions

View File

@ -40,7 +40,8 @@ $r->get('/spell/:id', 'healspells');
$r->get('/showchar', 'showchar'); $r->get('/showchar', 'showchar');
$r->get('/onlinechar/:id', 'onlinechar'); $r->get('/onlinechar/:id', 'onlinechar');
$r->get('/showmap', 'showmap'); $r->get('/showmap', 'showmap');
$r->form('/babblebox', 'babblebox'); $r->get('/babblebox', 'babblebox');
$r->post('/babblebox', 'babblebox');
// [code, handler, params, middleware] // [code, handler, params, middleware]
$l = $r->lookup($_SERVER['REQUEST_METHOD'], $_SERVER['REQUEST_URI']); $l = $r->lookup($_SERVER['REQUEST_METHOD'], $_SERVER['REQUEST_URI']);
@ -168,7 +169,7 @@ function showchar()
if ($userrow["magiclist"] == "") $userrow["magiclist"] = "None"; if ($userrow["magiclist"] == "") $userrow["magiclist"] = "None";
$array = ["content" => parsetemplate(gettemplate("showchar"), $userrow), "title" => "Character Information"]; $array = ["content" => parsetemplate(gettemplate("showchar"), $userrow), "title" => "Character Information"];
echo render('minimal', $array); echo parsetemplate("<html>\n" . gettemplate("minimal"), $array);
} }
function onlinechar($id) function onlinechar($id)
@ -204,39 +205,31 @@ function onlinechar($id)
function showmap() function showmap()
{ {
global $userrow; $array = ["content" => "<center><img src=\"/img/map.gif\" alt=\"Map\" /></center>", "title" => "Map"];
echo parsetemplate("<html>\n" . gettemplate("minimal"), $array);
$pos = sprintf(
'<div style="position: absolute; width: 5px; height: 5px; border-radius: 1000px; border: solid 1px black; background-color: red; left: %dpx; top: %dpx;"></div>',
round(258 + $userrow['longitude'] * (500 / 500) - 3),
round(258 - $userrow['latitude'] * (500 / 500) - 3)
);
echo render('minimal', [
'content' => '<img src="/img/map.gif" alt="Map">'.$pos,
'title' => 'Map'
]);
} }
/**
* Either render the latest 40 chats to the babblebox, or add a chat to it and redirect. This is used
* within an iframe.
*/
function babblebox() function babblebox()
{ {
global $userrow; global $userrow;
if ($_SERVER['REQUEST_METHOD'] === 'POST') { if (isset($_POST["babble"])) {
$safecontent = make_safe($_POST["babble"]); $safecontent = makesafe($_POST["babble"]);
if (!empty($safecontent)) { if (!empty($safecontent)) {
db()->query('INSERT INTO babble (posttime, author, babble) VALUES (CURRENT_TIMESTAMP, ?, ?);', db()->query('INSERT INTO babble (posttime, author, babble) VALUES (CURRENT_TIMESTAMP, ?, ?);', [$userrow['username'], $safecontent]);
[$userrow['username'], $safecontent]);
} }
redirect('/babblebox'); redirect('/babblebox');
} }
$babblebox['content'] = '';
$query = db()->query('SELECT * FROM babble ORDER BY id DESC LIMIT 40;'); $query = db()->query('SELECT * FROM babble ORDER BY id DESC LIMIT 40;');
echo render('babblebox', ['messages' => $query]); while ($babblerow = $query->fetchArray(SQLITE3_ASSOC)) {
$new = "<div class=\"message\">[<b>{$babblerow["author"]}</b>] {$babblerow["babble"]}</div>\n";
$babblebox["content"] = $new . $babblebox["content"];
}
$babblebox["content"] .= '<form action="/babblebox" method="post" style="margin-top: 1rem;"><input type="text" name="babble" maxlength="255" style="width: 100%;"><br><input type="submit" name="submit" value="Babble"><input type="reset" name="reset" value="Clear"></form>';
echo parsetemplate("<html>\n" . gettemplate("babblebox"), $babblebox);
} }
/** /**

View File

@ -11,31 +11,31 @@ function register_routes(Router $r): Router
global $userrow; global $userrow;
if (isset($userrow) && $userrow !== false && $userrow['authlevel'] === 1) { if (isset($userrow) && $userrow !== false && $userrow['authlevel'] === 1) {
$r->get('/admin', 'Admin\donothing'); $r->get('/admin', 'Admin\donothing');
$r->get('/admin/main', 'Admin\primary');
$r->form('/admin/main', 'Admin\primary'); $r->post('/admin/main', 'Admin\primary');
$r->get('/admin/items', 'Admin\items'); $r->get('/admin/items', 'Admin\items');
$r->form('/admin/items/:id', 'Admin\edititem'); $r->get('/admin/items/:id', 'Admin\edititem');
$r->post('/admin/items/:id', 'Admin\edititem');
$r->get('/admin/drops', 'Admin\drops'); $r->get('/admin/drops', 'Admin\drops');
$r->form('/admin/drops/:id', 'Admin\editdrop'); $r->get('/admin/drops/:id', 'Admin\editdrop');
$r->post('/admin/drops/:id', 'Admin\editdrop');
$r->get('/admin/towns', 'Admin\towns'); $r->get('/admin/towns', 'Admin\towns');
$r->form('/admin/towns/:id', 'Admin\edittown'); $r->get('/admin/towns/:id', 'Admin\edittown');
$r->post('/admin/towns/:id', 'Admin\edittown');
$r->get('/admin/monsters', 'Admin\monsters'); $r->get('/admin/monsters', 'Admin\monsters');
$r->form('/admin/monsters/:id', 'Admin\editmonster'); $r->get('/admin/monsters/:id', 'Admin\editmonster');
$r->post('/admin/monsters/:id', 'Admin\editmonster');
$r->get('/admin/level', 'Admin\levels'); $r->get('/admin/level', 'Admin\levels');
$r->form('/admin/level/:id', 'Admin\editlevel'); $r->get('/admin/level/:id', 'Admin\editlevel');
$r->post('/admin/level/:id', 'Admin\editlevel');
$r->get('/admin/spells', 'Admin\spells'); $r->get('/admin/spells', 'Admin\spells');
$r->form('/admin/spells/:id', 'Admin\editspell'); $r->get('/admin/spells/:id', 'Admin\editspell');
$r->post('/admin/spells/:id', 'Admin\editspell');
$r->get('/admin/users', 'Admin\users'); $r->get('/admin/users', 'Admin\users');
$r->form('/admin/users/:id', 'Admin\edituser'); $r->get('/admin/users/:id', 'Admin\edituser');
$r->post('/admin/users/:id', 'Admin\edituser');
$r->form('/admin/news', 'Admin\addnews'); $r->get('/admin/news', 'Admin\addnews');
$r->post('/admin/news', 'Admin\addnews');
} }
return $r; return $r;
} }
@ -318,7 +318,7 @@ function edittown($id)
if ($mp < 0) $errors[] = "Map price must be a number greater than or equal to 0."; if ($mp < 0) $errors[] = "Map price must be a number greater than or equal to 0.";
if ($tp < 0) $errors[] = "Travel points must be a number greater than or equal to 0."; if ($tp < 0) $errors[] = "Travel points must be a number greater than or equal to 0.";
if (count($errors) === 0) { if ($errors == 0) {
db()->query('UPDATE towns SET name=?, latitude=?, longitude=?, innprice=?, mapprice=?, travelpoints=?, itemslist=? WHERE id=?;', [ db()->query('UPDATE towns SET name=?, latitude=?, longitude=?, innprice=?, mapprice=?, travelpoints=?, itemslist=? WHERE id=?;', [
$n, $la, $lo, $ip, $mp, $tp, $il, $id $n, $la, $lo, $ip, $mp, $tp, $il, $id
]); ]);

View File

@ -8,9 +8,11 @@ use Router;
function register_routes(Router $r): Router function register_routes(Router $r): Router
{ {
$r->form('/fight', 'Fights\fight'); $r->get('/fight', 'Fights\fight');
$r->post('/fight', 'Fights\fight');
$r->get('/victory', 'Fights\victory'); $r->get('/victory', 'Fights\victory');
$r->form('/drop', 'Fights\drop'); $r->get('/drop', 'Fights\drop');
$r->post('/drop', 'Fights\drop');
$r->get('/dead', 'Fights\dead'); $r->get('/dead', 'Fights\dead');
return $r; return $r;
} }

View File

@ -9,7 +9,8 @@ use Router;
function register_routes(Router $r): Router function register_routes(Router $r): Router
{ {
$r->get('/forum/thread/:x/:x', 'Forum\showthread'); $r->get('/forum/thread/:x/:x', 'Forum\showthread');
$r->form('/forum/new', 'Forum\newthread'); $r->get('/forum/new', 'Forum\newthread');
$r->post('/forum/new', 'Forum\newthread');
$r->post('/forum/reply', 'Forum\reply'); $r->post('/forum/reply', 'Forum\reply');
$r->get('/forum/list/:x', 'Forum\donothing'); $r->get('/forum/list/:x', 'Forum\donothing');
$r->get('/forum', 'Forum\donothing'); $r->get('/forum', 'Forum\donothing');

View File

@ -8,7 +8,8 @@ use Router;
function register_routes(Router $r): Router function register_routes(Router $r): Router
{ {
$r->form('/inn', 'Towns\inn'); $r->get('/inn', 'Towns\inn');
$r->post('/inn', 'Towns\inn');
$r->get('/buy', 'Towns\buy'); $r->get('/buy', 'Towns\buy');
$r->get('/buy2/:id', 'Towns\buy2'); $r->get('/buy2/:id', 'Towns\buy2');
$r->post('/buy3/:id', 'Towns\buy3'); $r->post('/buy3/:id', 'Towns\buy3');

View File

@ -6,12 +6,17 @@ use Router;
function register_routes(Router $r): Router function register_routes(Router $r): Router
{ {
$r->form('/login', 'Users\login'); $r->get('/login', 'Users\login');
$r->post('/login', 'Users\login');
$r->get('/logout', 'Users\logout'); $r->get('/logout', 'Users\logout');
$r->form('/register', 'Users\register'); $r->get('/register', 'Users\register');
$r->form('/lostpassword', 'Users\lostpassword'); $r->post('/register', 'Users\register');
$r->form('/changepassword', 'Users\changepassword'); $r->get('/lostpassword', 'Users\lostpassword');
$r->form('/verify', 'Users\verify'); $r->post('/lostpassword', 'Users\lostpassword');
$r->get('/changepassword', 'Users\changepassword');
$r->post('/changepassword', 'Users\changepassword');
$r->get('/verify', 'Users\verify');
$r->post('/verify', 'Users\verify');
return $r; return $r;
} }

View File

@ -2,10 +2,9 @@
require_once __DIR__ . '/database.php'; require_once __DIR__ . '/database.php';
define('VERSION', '1.2.5'); define('VERSION', '1.2.3');
define('BUILD', 'Reawaken'); define('BUILD', 'Reawaken');
define('START', microtime(true)); define('START', microtime(true));
define('DEBUG', true);
/** /**
* Open or get SQLite database connection. * Open or get SQLite database connection.
@ -24,26 +23,6 @@ function redirect(string $location): void
exit; exit;
} }
/**
* Return the path to a view file.
*/
function template(string $name): string
{
return "../templates/$name.php";
}
/**
* Render a view with the given data. Looks for `$path_to_base_view` through `template()`. Can be used redundantly
* within the template.
*/
function render(string $path_to_base_view, array $data = []): string|false
{
ob_start();
extract($data);
require template($path_to_base_view);
return ob_get_clean();
}
function gettemplate($templatename) { // SQL query for the template. function gettemplate($templatename) { // SQL query for the template.
$filename = __DIR__ . "/../templates/" . $templatename . ".php"; $filename = __DIR__ . "/../templates/" . $templatename . ".php";
@ -86,12 +65,8 @@ function is_email($email) { // Thanks to "mail(at)philipp-louis.de" from php.net
} }
/** function makesafe($d) {
* Use htmlentities with UTF-8 encoding to ensure we're only outputting healthy, safe and effective HTML. return htmlentities($d);
*/
function make_safe(string $content): string
{
return htmlentities($content, ENT_QUOTES, 'UTF-8');
} }
/** /**
@ -236,8 +211,7 @@ function display($content, $title, $topnav=true, $leftnav=true, $rightnav=true,
"totaltime" => round(getmicrotime() - START, 4), "totaltime" => round(getmicrotime() - START, 4),
"numqueries" => db()->count, "numqueries" => db()->count,
"version" => VERSION, "version" => VERSION,
"build" => BUILD, "build" => BUILD
"querylog" => DEBUG ? '<pre>'.print_r(db()->log, true).'</pre>' : ''
]); ]);
echo "<html>\n" . $page; echo "<html>\n" . $page;
@ -583,4 +557,3 @@ function guest_only(): void
{ {
if (checkcookies()) redirect('/login'); if (checkcookies()) redirect('/login');
} }

View File

@ -151,32 +151,6 @@ class Router
return $this->add('PATCH', $route, $handler); return $this->add('PATCH', $route, $handler);
} }
/**
* Register multiple verbs to the same route.
*/
public function many(array $methods, string $route, callable $handler): Router
{
foreach ($methods as $method) $this->add($method, $route, $handler);
return $this;
}
/**
* Register all verbs to the same route.
*/
public function any(string $route, callable $handler): Router
{
foreach (SELF::VALID_METHODS as $method) $this->add($method, $route, $handler);
return $this;
}
/**
* Some pages function entirely as forms; thus we can shorthand a GET/POST route.
*/
public function form(string $route, callable $handler): Router
{
return $this->many(['GET', 'POST'], $route, $handler);
}
/** /**
* Validate the given method against valid HTTP verbs. * Validate the given method against valid HTTP verbs.
*/ */

View File

@ -1,9 +1,10 @@
<html lang="en"> <?php
$template = <<<HTML
<head> <head>
<title>Babblebox</title> <title>Babblebox</title>
<style type="text/css"> <style type="text/css">
body { body {
background-image: url('/img/background.jpg'); background-image: url(/img/background.jpg);
color: black; color: black;
font: 11px verdana; font: 11px verdana;
margin: 0px; margin: 0px;
@ -36,23 +37,8 @@
} }
</style> </style>
</head> </head>
<body onload="window.scrollTo(0,99999)"> <body onload="window.scrollTo(0,99999)">
<?php {{content}}
$has_chats = false;
while ($row = $messages->fetchArray(SQLITE3_ASSOC)):
$has_chats = true;
?>
<div class="message">[<b><?= $row['author'] ?></b>] <?= $row['babble'] ?></div>
<?php
endwhile;
if (!$has_chats) echo 'There are no messages. :(';
?>
<form action="/babblebox" method="post" style="margin-top: 1rem;">
<input type="text" name="babble" maxlength="255" style="width: 100%;"><br>
<input type="submit" name="submit" value="Babble">
<input type="reset" name="reset" value="Clear">
</form>
</body> </body>
</html> </html>
HTML;

View File

@ -1,6 +1,7 @@
<html lang="en"> <?php
$template = <<<THEVERYENDOFYOU
<head> <head>
<title><?= $title ?></title> <title>{{title}}</title>
<style type="text/css"> <style type="text/css">
body { body {
background-image: url(/img/background.jpg); background-image: url(/img/background.jpg);
@ -59,9 +60,9 @@
} }
</style> </style>
</head> </head>
<body> <body><center>
<center> {{content}}
<?= $content ?> </center></body>
</center>
</body>
</html> </html>
THEVERYENDOFYOU;
?>

View File

@ -38,8 +38,6 @@ $template = <<<HTML
<div>{{totaltime}} Seconds, {{numqueries}} Queries</div> <div>{{totaltime}} Seconds, {{numqueries}} Queries</div>
<div>Version {{version}} {{build}}</div> <div>Version {{version}} {{build}}</div>
</footer> </footer>
{{querylog}}
</div> </div>
</body> </body>
</html> </html>