Файл: weatut.ru/index.php
Строк: 135
<?php
require_once ('system/func.php');
require_once ('system/header.php');
noauth(); // Закроем от авторизованных
/* СЧЕТЧИКИ */
$registr = mysql_num_rows(mysql_query("SELECT * FROM `users`"));
echo '<div class="linetop"></div>';
echo '<div class="title"><center> Битва Миров </center></div>';
echo '<div class="line"></div>';
if(isset($_GET['soc'])){
echo "<div class = 'block center'>";
if(isset($_GET['go'])){
$soc = file_get_contents('http://ulogin.ru/token.php?token='.text($_POST['token']).'&host='.text($_SERVER['HTTP_HOST']));
$soc_user = json_decode($soc, true);
$soc = $soc_user['network']; // соц. сеть
$soc_id = $soc_user['identity']; // id из соц. сети
$soc_key = md5(md5($soc.($soc_id+10)));
$_SESSION['soc']['soc'] = $soc;
$_SESSION['soc']['id'] = $soc_id;
$_SESSION['soc']['key'] = $soc_key;
header("Location:?soc");
exit();
}
$soc = text($_SESSION['soc']['soc']);
$soc_id = text($_SESSION['soc']['id']);
$soc_key = text($_SESSION['soc']['key']);
$search = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `is_soc` = '".$soc."' AND `is_soc_id` = '".$soc_id."' AND `is_soc_key` = '".(md5($soc_key))."' "));
if($search != null && !empty($search['is_soc_key'])){
setcookie('uid', $search['id'], time()+86400*365, '/');
setcookie('is_soc_key', $soc_key, time()+86400*365, '/');
header('location: /');
exit();
}
else{
if(isset($_POST['login'])){
$login = text($_POST['login']);
$sex = text($_POST['sex']);
$side = text($_POST['side']);
$us = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `login` = '".$login."' "));
if($sex != 'm' && $sex != 'w'){$err = "Невыбран пол!";}
if($side != 'good' && $side != 'evil'){$err.$err = "Невыбран пол!";}
if(empty($login)) $err = 'Введите логин<br>';
elseif(mb_strlen($login) > 20 or mb_strlen($login) < 3) $err.$err = 'Логин не может быть короче 3 и длиннее 20 символов<br>';
elseif($us != null) $err.$err = 'Такой логин уже занят<br>';
if($err != true){
mysql_query("INSERT INTO `users` SET `login` = '".$login."', `password` = '".(md5($soc_key))."',`is_soc` = '".$soc."',`is_soc_id` = '".$soc_id."',`is_soc_key` = '".(md5($soc_key))."', `color` = 'white', `email` = '".$mail."', `sex` = '".$sex."', `side` = '".$side."', `registr` = '".time()."', `crystals` = '1500'");
$uid = mysql_insert_id();
setcookie('uid', $uid, time()+86400*365, '/');
setcookie('is_soc_key', $soc_key, time()+86400*365, '/');
header('location: /');
exit();
}
if($err != null){
logi("<font color = 'red'>".$err."</font>");
}
header('location:?soc');
exit();
}
echo "
".(logs())."
<form method = 'post' action = 'http://?soc'>
Логин<br>
<input class = 'center' type = 'text' name = 'login' maxlength = '50'>
Ваш пол:<br>
<select name = 'sex'><option value = 'm'>Мужской</option><option value = 'w'>Женский</option></select><br>
Выберите сторону:<br>
<select name = 'side'><option value = 'good'>Добро</option><option value = 'evil'>Зло</option></select><br>
<input type = 'submit' class = 'btn' value = 'Начать Игру'>
</form>
</div>
<a href = '/' class = 'link'><img src = '/images/icons/home.png' width = '15px' alt = '*'> На главную</a>
";
}
}
else{
echo '<div class="bdr bg_blue mb2"><div class="wr1"><div class="wr2"><div class="wr3"><div class="wr4"><div class="wr5"><div class="wr6"><div class="wr7"><div class="wr8">
<div class="ml10 mb10 mr10 small cntr sh">
<img src="/images/other/welcome.png"><br> Новая эпическая игра Битва Миров!<br>Победи их всех! </div>
<div class="clb"></div>
</div></div></div></div></div></div></div></div></div>';
echo '<div class="cntr"><a href="/registration" class="ubtn mt-15 inbl green mb5"><span class="ul"><span class="ur">Начать игру</span></span></a></div>';
echo '<div class="bdr bg_blue mb2"><div class="wr1"><div class="wr2"><div class="wr3"><div class="wr4"><div class="wr5"><div class="wr6"><div class="wr7"><div class="wr8">
<div class="ml10 mt10 mb10 mr10 cntr sh">';
$koll = mysql_num_rows(mysql_query("SELECT * FROM `bashna`"));
$good = mysql_num_rows(mysql_query("SELECT * FROM `bashna` WHERE `side` = 'good'"));
$evil = mysql_num_rows(mysql_query("SELECT * FROM `bashna` WHERE `side` = 'evil'"));
if($good/$koll < $evil/$koll){
$domin = round($evil/$koll*100)."% лидирует ".ico('icons','evil.png')." зло";
}elseif($evil/$koll < $good/$koll){
$domin = round($good/$koll*100)."% лидирует ".ico('icons','good.png')." добро";
}else{
$domin = "50% ничья";
}
echo "Баланс сил $domin<hr>";
if(isset($_REQUEST['success'])){
$name = text($_POST['nickname']);
$pass = text($_POST['password']);
$sql = mysql_fetch_array(mysql_query("SELECT `login`,`password` FROM `users` WHERE `login` = '".$name."' and `password`='".md5($pass)."' LIMIT 1"));
if(empty($name)) msg('Введите логин');
elseif(empty($pass)) msg('Введите пароль');
elseif($sql == 0) msg('Такой пользователь не найден');
else {
setcookie('login', $name, time()+86400*365, '/');
setcookie('password', md5($pass), time()+86400*365, '/');
header('location: /');
}
}
echo "
<script src='//ulogin.ru/js/ulogin.js'></script>
<div id='uLogin' data-ulogin='display=panel;fields=first_name,last_name;providers=vkontakte,odnoklassniki,mailru,facebook;redirect_uri=http%3A%2F%2Fweatut.ru%3Fsoc%3Dtrue%26go'></div>
";
echo '
<form action="" method="post">
Логин:<br>
<input class="center" type="text" name="nickname" maxlength="50" value="" /><br>
Пароль:<br>
<input class="center" type="password" name="password" maxlength="50" value="" /><br>
<div class="mb5"></div>
<span class="ubtn inbl green"><span class="ul"><input class="ur" type="submit" name="success" value="Войти"></span></span>
<div class="mt10 small">
<a href="/password/" class="darkgreen_link">Забыли пароль?</a></div>
</form></div></div></div></div></div></div></div></div></div></div>';
}
require_once ('system/footer.php');
?>