Sky/Dragon-Scourge
Sky/Dragon-Scourge
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
50516c3280
Dragon-Scourge/cookies.php
Jamin Blount 50516c3280 Beta 5 Build 19 
07.28.2007 - Build 19 (Consolation Prize):
- Added "moddedby" column to controlrow. Will display next to normal
Scourge copyright.
- Added SigBot, which lets players display their character stats in
forum signature images.
- PVP fights now properly escape the opposing player's $userrow before
updating.
- Fixed misspellings of 'bonusdefense' in spells.php.
- Fixed error that occurred when you failed to select a spell slot when
adding new spells.
- Minor changes to err() output.
2017-02-05 12:01:47 -06:00

46 lines
1.8 KiB
PHP
Raw Blame History

<?php // cookies.php :: Handles cookies. (Mmm, tasty!)
// Dragon Scourge
//
// Program authors: Jamin Blount
// Copyright (C) 2007 by renderse7en
// Script Version 1.0 Beta 5 Build 19
// You may not distribute this program in any manner, modified or
// otherwise, without the express, written consent from
// renderse7en.
//
// You may make modifications, but only for your own use and
// within the confines of the Dragon Scourge License Agreement
// (see our website for that).
function checkcookies() {
include('config.php');
global $controlrow;
$row = false;
if (isset($_COOKIE[$controlrow["cookiename"]])) {
// COOKIE FORMAT:
// {ID} {USERNAME} {PASSWORDHASH} {REMEMBERME}
$theuser = explode(" ",$_COOKIE[$controlrow["cookiename"]]);
if (!is_numeric($theuser[0])) { err("Invalid cookie data (Error 0). Please clear cookies and log in again."); }
$row = dorow(doquery("SELECT * FROM <<accounts>> WHERE username='$theuser[1]' LIMIT 1"));
if ($row == false) { err("Invalid cookie data (Error 1). Please clear cookies and log in again."); }
if ($row["id"] != $theuser[0]) { err("Invalid cookie data (Error 2). Please clear cookies and log in again."); }
if (md5($row["password"] . "--" . $dbsettings["secretword"]) !== $theuser[2]) { err("Invalid cookie data (Error 3). Please clear cookies and log in again."); }
// If we've gotten this far, cookie should be valid, so write a new one.
$newcookie = implode(" ",$theuser);
if ($theuser[3] == 1) { $expiretime = time()+31536000; } else { $expiretime = 0; }
setcookie ($controlrow["cookiename"], $newcookie, $expiretime, "/", $controlrow["cookiedomain"], 0);
}
return $row;
}
?>
Reference in New Issue View Git Blame Copy Permalink