From 69f841af125005d8be5f16367bf385875717e1ce Mon Sep 17 00:00:00 2001 From: unknown Date: Thu, 18 Oct 2012 09:54:04 +0200 Subject: [PATCH] update sitters --- GameEngine/Profile.php | 2 +- spieler.php | 11 ----------- 2 files changed, 1 insertion(+), 12 deletions(-) diff --git a/GameEngine/Profile.php b/GameEngine/Profile.php index 492b2ffa..56fbdd52 100644 --- a/GameEngine/Profile.php +++ b/GameEngine/Profile.php @@ -136,7 +136,7 @@ class Profile { if($sitid == $session->userinfo['sit1'] || $sitid == $session->userinfo['sit2']) { $form->addError("sit",SIT_ERROR); } - else { + else if($sitid != $session->uid){ if($session->userinfo['sit1'] == 0) { if($session->access!=BANNED){ $database->updateUserField($post['uid'],"sit1",$sitid,1); diff --git a/spieler.php b/spieler.php index 86a2dcd6..214fccb5 100644 --- a/spieler.php +++ b/spieler.php @@ -27,15 +27,6 @@ if(isset($_GET['newdid'])) { else { $building->procBuild($_GET); } -if (isset($_POST['uid'])){ -if ($_POST['uid'] != $session->uid){ - die(); - header("Location: ".$_SERVER['PHP_SELF']); -}elseif($_POST['uid'] == $session->uid){ - $database->updateUserField($session->uid,"password",md5($_POST['pw']),1); - header("Location: ".$_SERVER['PHP_SELF']); -} -} if(isset($_GET['s'])){ $automation->isWinner(); } @@ -158,8 +149,6 @@ else if (isset($_GET['s'])) { if($_GET['s'] > 4 or $session->sit == 1) { header("Location: ".$_SERVER['PHP_SELF']."?uid=".preg_replace("/[^a-zA-Z0-9_-]/","",$session->uid)); } -}else{ -header("Location: ".$_SERVER['PHP_SELF']."?uid=".preg_replace("/[^a-zA-Z0-9_-]/","",$session->uid)); } ?>