TravianZ/allianz.php

<?php
//fix by ronix
use App\Utils\AccessLogger;

if(isset($_GET['aid']) && !is_numeric($_GET['aid'])) die('Hacking Attemp');
include ("GameEngine/Village.php");
include ("GameEngine/Chat.php");
AccessLogger::logRequest();

$start = $generator->pageLoadTimeStart();
$alliance->procAlliance($_GET);
if(isset($_GET['newdid'])) {
	$_SESSION['wid'] = $_GET['newdid'];
	if(isset($_GET['s'])){
		header("Location: ".$_SERVER['PHP_SELF']."?s=".preg_replace("/[^a-zA-Z0-9_-]/","",$_GET['s']));
		exit;
	}else if(isset($_GET['aid'])){
		header("Location: ".$_SERVER['PHP_SELF']."?aid=".preg_replace("/[^a-zA-Z0-9_-]/","",$_GET['aid']));
		exit;
	}else{
		header("Location: ".$_SERVER['PHP_SELF']);
		exit;
	}
}
if(isset($_GET['s'])){
	$automation->isWinner();
}

if(isset($_GET['fid'])){
	$fid = preg_replace("/[^0-9]/","",$_GET['fid']);
	$forum = mysqli_query($GLOBALS['link'],"SELECT * FROM " . TB_PREFIX . "forum_cat WHERE id = ".(int) $fid."");
	$forum_type = mysqli_fetch_array($forum);
	if($forum_type['forum_name'] != "" && $forum_type['forum_area'] == 0){
		if($forum_type['alliance'] != $session->alliance){
			header("Location: ".$_SERVER['PHP_SELF']);
			exit;
		}
	}
}else if(isset($_GET['fid2'])){
	$fid = preg_replace("/[^0-9]/","",$_GET['fid2']);
	$forum = mysqli_query($GLOBALS['link'],"SELECT * FROM " . TB_PREFIX . "forum_cat WHERE id = ".(int) $fid."");
	if (!empty($forum)) {
		$forum_type = mysqli_fetch_array($forum);
		if($forum_type['forum_name'] != "" && $forum_type['forum_area'] != 1){
			if($forum_type['forum_area'] == 0){
				if($forum_type['alliance'] != $session->alliance){
					header("Location: ".$_SERVER['PHP_SELF']);
					exit;
				}
			}else if($forum_type['forum_area'] == 2){
				if($forum_type['alliance'] != $session->alliance){
					header("Location: ".$_SERVER['PHP_SELF']);
					exit;
				}
			}else if($forum_type['forum_area'] == 3){
				if($forum_type['alliance'] != $session->alliance){
					header("Location: ".$_SERVER['PHP_SELF']);
					exit;
				}
			}else{
				header("Location: ".$_SERVER['PHP_SELF']);
				exit;
			}
		}
	}	
}
if(isset($_GET['aid']) or isset($_GET['fid']) or isset($_GET['fid2']) or $session->alliance!=0){
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
<head>
	<title><?php

	   echo SERVER_NAME . ' &raquo; &raquo; &raquo; Alliance ';
	   
	   if (!empty($_GET['s'])) {
	       switch ($_GET['s']) {
	           case '2':
	               echo 'Forum ('.$alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'].')';
	               break;
	               
	           case '6':
	               echo 'Chat ('.$alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'].')';
	               break;
	               
	           case '3':
	               echo 'Attacks ('.$alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'].')';
	               break;
	               
	           case '4':
	               echo 'News ('.$alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'].')';
	               break;
	               
	           case '5':
	               echo 'Options ('.$alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'].')';
	               break;
	       }
	   } else {
	       echo $alliance->allianceArray['tag'] . ' - ' . $alliance->allianceArray['name'];
	   }

?></title>
	<link rel="shortcut icon" href="favicon.ico"/>
	<meta http-equiv="cache-control" content="max-age=0" />
	<meta http-equiv="pragma" content="no-cache" />
	<meta http-equiv="expires" content="0" />
	<meta http-equiv="imagetoolbar" content="no" />
	<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
	<script src="mt-full.js?0faab" type="text/javascript"></script>
	<script src="unx.js?f4b7f" type="text/javascript"></script>
	<script src="new.js?0faab" type="text/javascript"></script>
	<link href="<?php

	   echo GP_LOCATE;

?>lang/en/lang.css?f4b7d" rel="stylesheet" type="text/css" />
	<link href="<?php

	   echo GP_LOCATE;

?>lang/en/compact.css?f4b7f" rel="stylesheet" type="text/css" />
	<?php

	   if($session->gpack == null || GP_ENABLE == false) {
		echo "
	<link href='" . GP_LOCATE . "travian.css?e21d2' rel='stylesheet' type='text/css' />
	<link href='" . GP_LOCATE . "lang/en/lang.css?e21d2' rel='stylesheet' type='text/css' />";
	   } else {
		echo "
	<link href='" . $session->gpack . "travian.css?e21d2' rel='stylesheet' type='text/css' />
	<link href='" . $session->gpack . "lang/en/lang.css?e21d2' rel='stylesheet' type='text/css' />";
	   }

?>
	<script type="text/javascript">

		window.addEvent('domready', start);
				function getMouseCoords(e) {
					var coords = {};
					if (!e) var e = window.event;
					if (e.pageX || e.pageY) 	{
						coords.x = e.pageX;
						coords.y = e.pageY;
					}
					else if (e.clientX || e.clientY) 	{
						coords.x = e.clientX + document.body.scrollLeft
							+ document.documentElement.scrollLeft;
						coords.y = e.clientY + document.body.scrollTop
							+ document.documentElement.scrollTop;
					}
					return coords;
				}

				function med_mouseMoveHandler(e, desc_string){
					var coords = getMouseCoords(e);
					med_showDescription(coords, desc_string);
				}

				function med_closeDescription(){
					var layer = document.getElementById("medal_mouseover");
					layer.className = "hide";
				}

				function init_local(){
					med_init();
				}

				function med_init(){
					layer = document.createElement("div");
					layer.id = "medal_mouseover";
					layer.className = "hide";
					document.body.appendChild(layer);
				}

				function med_showDescription(coords, desc_string){
					var layer = document.getElementById("medal_mouseover");
					layer.style.top = (coords.y + 25)+ "px";
					layer.style.left = (coords.x - 20) + "px";
					layer.className = "";
					layer.innerHTML = desc_string;
				}
	</script>
</head>


<body class="v35 ie ie8">
<div class="wrapper">
<img style="filter:chroma();" src="img/x.gif" id="msfilter" alt="" />
<div id="dynamic_header">
	</div>
<?php
	   include ("Templates/header.tpl");

?>
<div id="mid">
<?php
$invite_permission = $database->getAlliancePermission($session->uid, "opt4", 0);
	   include ("Templates/menu.tpl");

	   if(isset($_GET['s']) && $_GET['s'] == 2) {
		echo '<div id="content"  class="forum">';
	   } else {
		echo '<div id="content"  class="alliance">';
	   }

	   if(isset($_GET['s'])) {
	   if($_GET['s'] != 5 or $session->sit == 0){
		switch($_GET['s']) {
			case 2:
				if(isset($_POST['vote'])){
				$alliance->Vote($_POST);
				}
				include ("Templates/Alliance/forum.tpl");
				break;
			case 3:
				include ("Templates/Alliance/attacks.tpl");
				break;
			case 4:
				include ("Templates/Alliance/news.tpl");
				break;
			case 5:
				include ("Templates/Alliance/option.tpl");
				break;
			case 6:
				include ("Templates/Alliance/chat.tpl");
				break;
			case 1:
			default:
				include ("Templates/Alliance/overview.tpl");
				break;
		}
		// Options
	   }else{
		header("Location: ".$_SERVER['PHP_SELF']);
		exit;
	   }}else if(isset($_GET['delinvite']) && $invite_permission == 1){
		include ("Templates/Alliance/invite.tpl");
	    } elseif(isset($_POST['o'])) {
		switch($_POST['o']) {
			case 1:
				if(isset($_POST['s']) == 5 && isset($_POST['a_user'])) {
					$alliance->procAlliForm($_POST);
					//echo "Funcion para el cambio de nombre de la alianza";
					include ("Templates/Alliance/changepos.tpl");
				} else {
					include ("Templates/Alliance/assignpos.tpl");
				}
				break;
			case 2:
				if(isset($_POST['s']) == 5 && isset($_POST['a']) == 2) {
					$alliance->procAlliForm($_POST);
					include ("Templates/Alliance/kick.tpl");
				} else {
					include ("Templates/Alliance/kick.tpl");
				}
				break;
			case 3:
				if(isset($_POST['s']) == 5 && isset($_POST['a']) == 3) {
					$alliance->procAlliForm($_POST);
					//echo "Funcion para el cambio de nombre de la alianza";
					include ("Templates/Alliance/allidesc.tpl");
				} else {
					include ("Templates/Alliance/allidesc.tpl");
				}
				break;
			case 4:
				if(isset($_POST['s']) == 5 && isset($_POST['a']) == 4) {
					$alliance->procAlliForm($_POST);
					//echo "Funcion para el cambio de nombre de la alianza";
					include ("Templates/Alliance/invite.tpl");
				} else {
					include ("Templates/Alliance/invite.tpl");
				}
				break;
			case 5:
				$alliance->setForumLink($_POST);
				include ("Templates/Alliance/linkforum.tpl");
				break;
			case 6:
				if(isset($_POST['dipl']) and isset($_POST['a_name'])) {
					$alliance->procAlliForm($_POST);
					include ("Templates/Alliance/chgdiplo.tpl");
				} else {
					include ("Templates/Alliance/chgdiplo.tpl");
				}
				break;
			case 11:
				if(isset($_POST['s']) == 5 && isset($_POST['a']) == 11) {
					$alliance->procAlliForm($_POST);
					//echo "Funcion para el cambio de nombre de la alianza";
					include ("Templates/Alliance/quitalli.tpl");
				} else {
					include ("Templates/Alliance/quitalli.tpl");
				}
				break;
			default:
				include ("Templates/Alliance/option.tpl");
				break;
			case 100:
				if(isset($_POST['s']) == 5 && isset($_POST['a']) == 100) {
					$alliance->procAlliForm($_POST);
					//echo "Funcion para el cambio de nombre de la alianza";
					include ("Templates/Alliance/changename.tpl");
				} else {
					include ("Templates/Alliance/changename.tpl");
				}
				break;
			case 101:
				$database->diplomacyCancelOffer($_POST['id']);
				include ("Templates/Alliance/chgdiplo.tpl");
				break;
			case 102:
				$database->diplomacyInviteDenied($_POST['id'], $_POST['alli2']);
				include ("Templates/Alliance/chgdiplo.tpl");
				break;
			case 103:
			if($database->checkDiplomacyInviteAccept($session->alliance, $_POST['type'])){
				$database->diplomacyInviteAccept($_POST['id'], $_POST['alli2']);
			}
				include ("Templates/Alliance/chgdiplo.tpl");
				break;
			case 104:
				$database->diplomacyCancelExistingRelationship($_POST['id'], $_POST['alli2']);
				include ("Templates/Alliance/chgdiplo.tpl");
		}
		} else {
		include ("Templates/Alliance/overview.tpl");
		}

?>
</div>
<br /><br /><br /><br /><div id="side_info">
<?php
include("Templates/multivillage.tpl");
include("Templates/quest.tpl");
include("Templates/news.tpl");
include("Templates/links.tpl");
?>
</div>
<div class="clear"></div>
</div>
<div class="footer-stopper"></div>
<div class="clear"></div>

<?php

	   include ("Templates/footer.tpl");
	   include ("Templates/res.tpl");

?>
<div id="stime">
<div id="ltime">
<div id="ltimeWrap">
<?php

	   echo CALCULATED;

?> <b><?php

	   echo round(($generator->pageLoadTimeEnd() - $start) * 1000);

?></b> ms

<br /><?php

	   echo SERVER_TIME;

?> <span id="tp1" class="b"><?php

	   echo date('H:i:s');

?></span>
</div>
	</div>
</div>

<div id="ce"></div>
</body>
</html>
<?php
}else{
header("Location: spieler.php?uid=".$session->uid);
exit;
}
?>