05e8a73b5aebad548f0b7c6df51553fcf6b213b2
[brisk.git] / web / index_wr.php
1 <?php
2 /*
3  *  brisk - index_wr.php
4  *
5  *  Copyright (C) 2006-2014 Matteo Nastasi
6  *                          mailto: nastasi@alternativeoutput.it
7  *                                  matteo.nastasi@milug.org
8  *                          web: http://www.alternativeoutput.it
9  *
10  * This program is free software; you can redistribute it and/or modify
11  * it under the terms of the GNU General Public License as published by
12  * the Free Software Foundation; either version 2 of the License, or
13  * (at your option) any later version.
14  *
15  * This program is distributed in the hope that it will be useful, but
16  * WITHOUT ANY WARRANTY; without even the implied warranty of
17  * MERCHANTABLILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18  * General Public License for more details. You should have received a
19  * copy of the GNU General Public License along with this program; if
20  * not, write to the Free Software Foundation, Inc, 59 Temple Place -
21  * Suite 330, Boston, MA 02111-1307, USA.
22  *
23  */
24
25 $mlang_indwr = array( 'unknownerr'    => array( 'it' => 'errore sconosciuto',
26                                                 'en' => 'unknown error'),
27                       'btn_backtotab' => array( 'it' => 'Torna ai tavoli.',
28                                                 'en' => 'Back to tables.' ),
29                       'warrrepl'  => array( 'it' => '<br>Il nominativo &egrave; stato inoltrato all\'amministratore.<br><br>Nell\'arco di pochi giorni verr&agrave;<br><br>notificata al garantito l\'avvenuta registrazione.',
30                                             'en' => '<br>The subscription was forwarded to the administrator.<br><br>In a few days we will notify<br><br>your friend the occurred registration.'),
31                       'btn_close' => array( 'it' => 'chiudi',
32                                             'en' => 'close' ),
33                       'commerr' => array( 'it' => '<b>E\' occorso un errore durante il salvataggio, riprova o contatta l\'amministratore.</b>',
34                                           'en' => '<b>An error was occurred during the saving, try again or contact the administrator.</b>'),
35                       'coerrdb' => array( 'it' => '<b>Il database è temporaneamente irraggiungibile, riprova più tardi o contatta l\'amministratore.</b>',
36                                           'en' => '<b>The database is temporarly unavailable, retry to later or conctact the administrator.</b>'),
37                       'warrmust' => array( 'it' => '<b>Per autenticare qualcuno devi a tua volta essere autenticato e certificato.</b>',
38                                            'en' => 'To authenticate somebody you have to be authenticated and certified yourown'),
39                       'mesgrepl' => array( 'it' => '<br><br>Il messaggio &egrave; stato inoltrato all\'amministratore.',
40                                            'en' => '<br><br>The message was forwarded to the administrator'),
41                       'mesgmust' => array( 'it' => '<b>Per mandare messaggi all\'amministratore devi essere autenticato.</b>',
42                                            'en' => 'To send a message to the administrator you have to be authenticated'),
43                       'shutmsg'  => array( 'it' => '<b>Il server sta per essere riavviato, non possono avere inizio nuove partite.</b>',
44                                            'en' => '<b>The server is going to be rebooted, new games are not allowed.</b>'),
45                       'mustauth' => array( 'it' => '<b>Il tavolo a cui volevi sederti richiede autentifica.</b>',
46                                            'en' => '<b>The table where you want to sit require authentication</b>'),
47                       'mustcert' => array( 'it' => '<b>Il tavolo a cui volevi sederti richiede autentifica e certificazione.</b>',
48                                            'en' => '<b>The table where you want to sit require authentication and certification</b>'),
49                       'tabwait'=> array( 'it' => '<b>Il tavolo si &egrave; appena liberato, ci si potr&agrave; sedere tra %d secondi.',
50                                            'en' => '<b>The table is only just opened, you will sit down in %d seconds.'),
51                       'mustfirst'=> array( 'it' => '<b>Il tuo utente può sedersi al tavolo solo per primo.</b>',
52                                            'en' => '<b>Your can sit down as first user only.' ),
53                       'pollmust' => array( 'it' => '<b>Per partecipare al sondaggio devi essere autenticato.</b>',
54                                            'en' => '<b>To vote for the poll you have to be authenticated</b>'),
55                       'pollnone' => array( 'it' => '<br><br>Al momento non è attivo alcun sondaggio.',
56                                            'en' => '<br><br>At this moment no polls are active.'),
57                       'pollchoo' => array( 'it' => '<br><br>Non hai espresso nessuna preferenza.',
58                                            'en' => '<br><br>You don\'t choose any preference, do it'),
59                       'pollagai' => array( 'it' => '<br>Per questo sondaggio hai già votato.<br><br>Non si può esprimere la propria preferenza più di una volta.',
60                                            'en' => '<br>You just express your preference about this poll.<br><br>You cannot do it again.'),
61                       'pollrec'  => array ('it' => '<br><br>Il tuo voto è stato registrato.',
62                                            'en' => '<br><br>Your vote had be stored.'),
63                       'badwake_a'=> array( 'it' => '<br>Ti sei alzato da un tavolo senza il consenso degli altri giocatori.<br><br>Dovrai aspettare ancora ',
64                                            'en' => '<br>You stand up without the permission of the other players.<br><br>You will wait '),
65                       'badwake_b'=> array( 'it' => ' prima di poterti sedere nuovamente.',
66                                            'en' => ' before you can sit down again.'),
67                       'btn_stays'=> array( 'it' => 'resta in piedi.',
68                                            'en' => 'stay standing.'),
69                       'badsit_a' => array( 'it' => '<br>Tu o qualcuno col tuo stesso indirizzo IP si è alzato da un tavolo senza il consenso degli altri giocatori.<br><br>Dovrai aspettare ancora ',
70                                            'en' => '<br>You or someone with your same IP address is standing up from a table without the permission of the other players <br><br>You will wait '),
71                       'badsit_b' => array( 'it' => ' prima di poterti sedere nuovamente.<br><br>Se non sei stato tu ad alzarti e possiedi un login con password, autenticandoti con quello, potrai accedere.',
72                                            'en' => ' before you can sit down again. If you don\'t leave the table and you have a login with a password, authenticating with this one you will access'),
73                       'nu_loginau' => array('it' => "login già in uso",
74                                             'en' => "login already in use"),
75                       'nu_emailau' => array('it' => "email già utilizzata",
76                                             'en' => "email already in use"),
77                       'nu_msubj' => array( 'it' => 'Brisk: verifica email',
78                                            'en' => 'Brisk: email verification'),
79                       // %s(guar) %s(login) %s(baseurl) %d(code) %s(hash)
80                       'nu_mtext' => array( 'it' =>
81 'Ciao, sono l\' amministratore del sito di Brisk.
82
83 L\' utente \'%s\' ha garantito per te col nickname \'%s\',
84 vai al link: <%s>
85 per confermare il tuo indirizzo di posta elettronica.
86
87 Ciò è necessario per ottenere la password.
88
89 Saluti e buone partite, mop.',
90                                            'en' => 'EN mtext [%s] [%s] [%s]'),
91                       'nu_mhtml' => array( 'it' => 'Ciao, sono l\' amministratore del sito di Brisk.<br><br>
92 L\' utente \'%s\' ha garantito per te col nickname \'%s\',<br>
93 <a href="%s">clicca qui</a> per confermare il tuo indirizzo di posta elettronica.<br><br>
94 Ciò è necessario per ottenere la password.<br><br>
95 Saluti e buone partite, mop.<br>',
96                                            'en' => 'EN mhtml [%s] [%s] [%s]'),
97
98                       'ap_mtext' => array( 'it' =>
99 'Ciao, sono l\' amministratore del sito di Brisk.
100
101 Ti sei registrato col nickname \'%s\',
102 vai al link: <%s>
103 per confermare il tuo indirizzo di posta elettronica.
104
105 Ciò è necessario per ottenere la password.
106
107 Saluti e buone partite, mop.',
108                                            'en' => 'EN mtext [%s] [%s]'),
109
110                       'ap_mhtml' => array( 'it' => 'Ciao, sono l\' amministratore del sito di Brisk.<br><br>
111 Ti sei registrato col nickname \'%s\',<br>
112 <a href="%s">clicca qui</a> per confermare il tuo indirizzo di posta elettronica.<br><br>
113 Ciò è necessario per ottenere la password.<br><br>
114 Saluti e buone partite, mop.<br>',
115                                            'en' => 'EN mhtml [%s] [%s]'),
116                       );
117
118 define('LICMGR_CHO_ACCEPT', 0);
119 define('LICMGR_CHO_REFUSE', 1);
120 define('LICMGR_CHO_AFTER',  2);
121
122 function index_wr_main(&$brisk, $remote_addr_full, $get, $post, $cookie)
123 {
124     GLOBAL $G_domain, $G_webbase, $G_mail_seed;
125     GLOBAL $G_shutdown, $G_alarm_passwd, $G_ban_list, $G_black_list, $G_lang, $G_room_help, $G_room_about;
126     GLOBAL $G_room_passwdhowto, $mlang_indwr;
127     GLOBAL $G_tos_vers;
128
129     log_load("index_wr.php");
130     $remote_addr = addrtoipv4($remote_addr_full);
131
132     if (($mesg = gpcs_var('mesg', $get, $post, $cookie)) === FALSE)
133         unset($mesg);
134
135     if (($cl_step = gpcs_var('stp', $get, NULL, NULL)) === FALSE)
136         $cl_step = -2;
137
138     if (($sess = gpcs_var('sess', $get, $post, $cookie)) === FALSE)
139         $sess = "";
140
141
142     if (DEBUGGING == "local" && $remote_addr != '127.0.0.1') {
143         echo "Debugging time!";
144         return (FALSE);
145     }
146
147     /*
148      *  MAIN
149      */
150     $is_spawn = FALSE;
151
152     log_wr(0, 'index_wr.php: COMM: '.xcapemesg($mesg));
153     log_wr('COMM: '.xcapemesg($mesg));
154
155     $curtime = time();
156     $dt = date("H:i ", $curtime);
157
158     if (($user = $brisk->get_user($sess, &$idx)) == FALSE) {
159         $argz = explode('|', xcapemesg($mesg));
160
161         if ($argz[0] == 'getchallenge') {
162             if (isset($get['cli_name']))
163                 $cli_name = $get['cli_name'];
164             if (($a_sem = Challenges::lock_data(TRUE)) != FALSE) {
165                 log_main("chal lock data success");
166
167                 if (($chals = &Challenges::load_data()) != FALSE) {
168
169                     $token =  uniqid("");
170                     // echo '2|'.$argz[1].'|'.$token.'|'.$remote_addr.'|'.$curtime.'|';
171                     // exit;
172
173                     if (($login_new = validate_name(urldecode($cli_name))) != FALSE) {
174                         if ($chals->add($login_new, $token, $remote_addr, $curtime) != FALSE) {
175                             log_send("SUCCESS: token:".$token);
176                             echo '0|'.$token;
177                         }
178                         else {
179                             log_send("getchallenge FAILED");
180                             echo '1|';
181                         }
182                     }
183                     else {
184                         log_send("getchallenge FAILED");
185                         echo '1|';
186                     }
187                     if ($chals->ismod()) {
188                         Challenges::save_data(&$chals);
189                     }
190                 }
191
192
193                 Challenges::unlock_data($a_sem);
194             }
195             else {
196                 echo "CHALLENGE LOCK FAILED\n";
197                 return FALSE;
198             }
199         }
200         else if ($argz[0] == 'auth') {
201             printf("challenge|ok");
202         }
203         else if ($argz[0] == 'help') {
204             /* MLANG: "torna ai tavoli" */
205             echo show_notify(str_replace("\n", " ", $G_room_help[$G_lang]), 0, $mlang_indwr['btn_close'][$G_lang], 600, 500);
206         }
207         else if ($argz[0] == 'about') {
208             echo show_notify(str_replace("\n", " ", $G_room_about[$G_lang]), 0, $mlang_indwr['btn_close'][$G_lang], 400, 230);
209         }
210         else if ($argz[0] == 'passwdhowto') {
211             echo show_notify(str_replace("\n", " ", $G_room_passwdhowto[$G_lang]), 0, $mlang_indwr['btn_close'][$G_lang], 400, 200);
212         }
213         else if ($argz[0] == 'roadmap') {
214             echo show_notify(str_replace("\n", " ", $G_room_roadmap[$G_lang]), 0, $mlang_indwr['btn_close'][$G_lang], 400, 200);
215         }
216         else if ($argz[0] == 'placing') {
217             require_once("briskin5/Obj/briskin5.phh");
218             require_once("briskin5/Obj/placing.phh");
219
220             echo show_notify(str_replace("\n", " ", placings_show(FALSE)), 0, $mlang_indwr['btn_close'][$G_lang], 800, 600);
221         }
222         else if ($argz[0] == 'whysupport') {
223             echo show_notify(str_replace("\n", " ", $G_room_whysupport[$G_lang]), 0, $mlang_indwr['btn_close'][$G_lng], 400, 200);
224         }
225         else if ($argz[0] == 'apprendice') {
226             if (($cli_name = gpcs_var('cli_name', $get, $post, $cookie)) === FALSE)
227                 $cli_name = "";
228
229             if (($cli_email = gpcs_var('cli_email', $get, $post, $cookie)) === FALSE)
230                 $cli_email = "";
231
232             $mesg_to_user = "";
233
234             // check existence of username or email
235             $is_trans = FALSE;
236             do {
237                 if (($bdb = BriskDB::create()) == FALSE)
238                     break;
239
240                 // FIXME: CHECK IP AS PREVIOUS REQUIRER
241
242                 $cli_name = urldecode($cli_name);
243                 $cli_email = urldecode($cli_email);
244
245                 // check for already used fields
246                 if (($idret = $bdb->check_record_by_login_or_email($cli_name, $cli_email)) != 0) {
247                     $mesg_to_user = ($idret == 1 ?  $mlang_indwr['nu_loginau'][$G_lang] :
248                                      ($idret == 2 ? $mlang_indwr['nu_emailau'][$G_lang] :
249                                       $mlang_indwr['unknownerr'][$G_lang]));
250                     break;
251                 }
252
253                 $bdb->transaction('BEGIN');
254                 $is_trans = TRUE;
255                 //   insert the new user disabled with reason NU_MAILED
256                 // FIXME: move 'no-guaran' user into configuration file
257                 if (($usr_obj = $bdb->user_add($cli_name, 'THE_PASS', $cli_email,
258                                                USER_FLAG_TY_DISABLE | USER_FLAG_TY_APPR,
259                                                USER_DIS_REA_NU_MAILED, 10103)) == FALSE) {
260                     fprintf(STDERR, "ERROR: user_add FAILED\n");
261                     break;
262                 }
263
264                 if (($mail_code = $bdb->mail_reserve_code()) == FALSE) {
265                     fprintf(STDERR, "ERROR: mail reserve code FAILED\n");
266                     break;
267                 }
268                 $hash = md5($curtime . $G_alarm_passwd . $cli_name . $cli_email);
269
270                 $confirm_page = sprintf("http://%s/%s/mailmgr.php?f_act=checkmail&f_code=%d&f_hash=%s",
271                                         $G_domain, $G_webbase, $mail_code, $hash);
272                 $subj = $mlang_indwr['nu_msubj'][$G_lang];
273                 $body_txt = sprintf($mlang_indwr['ap_mtext'][$G_lang],
274                                     $cli_name, $confirm_page);
275                 $body_htm = sprintf($mlang_indwr['ap_mhtml'][$G_lang],
276                                     $cli_name, $confirm_page);
277
278                 $mail_item = new MailDBItem($mail_code, $usr_obj->code, MAIL_TYP_CHECK,
279                                             $curtime, $subj, $body_txt, $body_htm, $hash);
280
281                 if (brisk_mail($cli_email, $subj, $body_txt, $body_htm) == FALSE) {
282                     // mail error
283                     fprintf(STDERR, "ERROR: mail send FAILED\n");
284                     break;
285                 }
286
287                 // save the mail
288                 if ($mail_item->store($bdb) == FALSE) {
289                     // store mail error
290                     fprintf(STDERR, "ERROR: store mail FAILED\n");
291                     break;
292                 }
293
294                 echo "1";
295                 $bdb->transaction('COMMIT');
296                 return TRUE;
297             } while(FALSE);
298             $bdb->transaction('ROLLBACK');
299             echo "$mesg_to_user";
300             return FALSE;
301         }
302         else {
303             log_wr("Get User Error");
304             echo "Get User Error:" + $argz[0];
305             return FALSE;
306         }
307         return TRUE;
308     } // end if (($user = $brisk->get_user($sess, ... == FALSE) {
309
310     $brisk->sess_cur_set($user->sess);
311     $argz = explode('|', xcapemesg($mesg));
312
313     log_wr('POSTSPLIT: '.$argz[0]);
314
315     // LACC UPDATED
316     $user->lacc = $curtime;
317     if ($user->cl_step < $cl_step) {
318         log_step(sprintf("%s|%s|%d|%d|%d|%d", $user->sess, $user->name, $user->step, $user->cl_step, $cl_step, $user->step - $user->cl_step));
319         $user->cl_step = $cl_step;
320     }
321
322     if ( ( ! $user->is_auth() ) &&
323         $brisk->ban_check($user->ip)) {
324         // TODO: find a way to add a nonblocking sleep(5) here
325         return (FALSE);
326     }
327
328     if ($argz[0] == 'ping') {
329         log_wr("PING RECEIVED");
330     }
331     else if ($argz[0] == 'prefs') {
332         if ($argz[1] == 'save') {
333             if (!isset($post['prefs'])) {
334                 return FALSE;
335             }
336
337             if (($prefs = Client_prefs::from_json($post['prefs'])) == FALSE) {
338                 $prefs = Client_prefs::from_user($user);
339             }
340             $prefs->store($user, TRUE);
341         }
342         else { // reset case as default
343             $prefs = Client_prefs::from_user($user);
344         }
345         $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
346         $user->comm[$user->step % COMM_N] .=  sprintf('prefs_load(\'%s\', true, %s);', json_encode($prefs),
347                                                       'false');
348         $user->step_inc();
349
350         if ($argz[1] == 'save') {
351             if ($user->stat == 'room' && $user->subst == 'standup') {
352                 $brisk->standup_update($user);
353             }
354             else if ($user->stat == 'room' && $user->subst == 'sitdown') {
355                 log_main("chatt_send pre table update");
356                 $brisk->table_update($user);
357                 log_main("chatt_send post table update");
358             }
359         }
360         echo "1";
361         return TRUE;
362     }
363     else if ($argz[0] == 'shutdown') {
364         log_auth($user->sess, "Shutdown session.");
365
366         $user->the_end = TRUE;
367
368         log_rd2("AUTO LOGOUT.");
369         if ($user->subst == 'sitdown' || $user->stat == 'table')
370             $brisk->room_wakeup($user);
371         else if ($user->subst == 'standup')
372             $brisk->room_outstandup(&$user);
373         else {
374             log_rd2("SHUTDOWN FROM WHAT ???");
375         }
376     }
377     else if ($argz[0] == 'warranty') {
378         if (($cli_name = gpcs_var('cli_name', $get, $post, $cookie)) === FALSE)
379             $cli_name = "";
380
381         if (($cli_email = gpcs_var('cli_email', $get, $post, $cookie)) === FALSE)
382             $cli_email = "";
383
384         $mesg_to_user = "";
385
386         log_wr("INFO:SKIP:argz == warranty name: [".$cli_name."] CERT: ".$user->is_cert());
387         if ($user->is_cert()) {
388             if (0 == 1) {
389                 if (($wa_lock = Warrant::lock_data(TRUE)) != FALSE) {
390                     if (($fp = @fopen(LEGAL_PATH."/warrant.txt", 'a')) != FALSE) {
391                         /* Unix time | session | nickname | IP | where was | mesg */
392                         fwrite($fp, sprintf("%ld|%s|%s|%s|\n", $curtime, xcapelt($user->name), xcapelt(urldecode($cli_name)), xcapelt(urldecode($cli_email))));
393                         fclose($fp);
394                     }
395                     Warrant::unlock_data($wa_lock);
396                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
397                     /* MLANG: "<br>Il nominativo &egrave; stato inoltrato all\'amministratore.<br><br>Nell\'arco di pochi giorni vi verr&agrave;<br><br>notificata l\'avvenuta registrazione." */
398                     $user->comm[$user->step % COMM_N] .=  show_notify($mlang_indwr['warrrepl'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 150);
399                     $user->step_inc();
400                     echo "1";
401                 }
402                 else {
403                     /* MLANG: "<b>E\' occorso un errore durante il salvataggio, riprova o contatta l\'amministratore.</b>" */
404                     $mesg_to_user = nickserv_msg($dt, $mlang_indwr['commerr'][$G_lang]);
405                 }
406             } // 0 == 1
407             else {
408                 // check existence of username or email
409                 $is_trans = FALSE;
410                 do {
411                     if (($bdb = BriskDB::create()) == FALSE)
412                         break;
413
414                     $cli_name = urldecode($cli_name);
415                     $cli_email = urldecode($cli_email);
416
417                     // check for already used fields
418                     if (($idret = $bdb->check_record_by_login_or_email($cli_name, $cli_email)) != 0) {
419                         $mesg_to_user = nickserv_msg($dt, ($idret == 1 ?  $mlang_indwr['nu_loginau'][$G_lang] :
420                                                            ($idret == 2 ? $mlang_indwr['nu_emailau'][$G_lang]
421                                                             : $mlang_indwr['unknownerr'][$G_lang])));
422                         break;
423                     }
424                     $bdb->transaction('BEGIN');
425                     $is_trans = TRUE;
426                     //   insert the new user disabled with reason NU_MAILED
427                     if (($usr_obj = $bdb->user_add($cli_name, 'THE_PASS', $cli_email,
428                                                    USER_FLAG_TY_DISABLE | USER_FLAG_TY_NORM,
429                                                    USER_DIS_REA_NU_MAILED, $user->code)) == FALSE) {
430                         fprintf(STDERR, "ERROR: user_add FAILED\n");
431                         break;
432                     }
433                     if (($mail_code = $bdb->mail_reserve_code()) == FALSE) {
434                         fprintf(STDERR, "ERROR: mail reserve code FAILED\n");
435                         break;
436                     }
437                     $hash = md5($curtime . $G_alarm_passwd . $cli_name . $cli_email);
438
439                     $confirm_page = sprintf("http://%s/%s/mailmgr.php?f_act=checkmail&f_code=%d&f_hash=%s",
440                                             $G_domain, $G_webbase, $mail_code, $hash);
441                     $subj = $mlang_indwr['nu_msubj'][$G_lang];
442                     $body_txt = sprintf($mlang_indwr['nu_mtext'][$G_lang],
443                                         $user->name, $cli_name, $confirm_page);
444                     $body_htm = sprintf($mlang_indwr['nu_mhtml'][$G_lang],
445                                         $user->name, $cli_name, $confirm_page);
446
447                     $mail_item = new MailDBItem($mail_code, $usr_obj->code, MAIL_TYP_CHECK,
448                                                 $curtime, $subj, $body_txt, $body_htm, $hash);
449
450                     if (brisk_mail($cli_email, $subj, $body_txt, $body_htm) == FALSE) {
451                         // mail error
452                         fprintf(STDERR, "ERROR: mail send FAILED\n");
453                         break;
454                     }
455                     // save the mail
456                     if ($mail_item->store($bdb) == FALSE) {
457                         // store mail error
458                         fprintf(STDERR, "ERROR: store mail FAILED\n");
459                         break;
460                     }
461                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
462                     /* MLANG: "<br>Il nominativo &egrave; stato inoltrato all\'amministratore.<br><br>Nell\'arco di pochi giorni vi verr&agrave;<br><br>notificata l\'avvenuta registrazione." */
463                     $user->comm[$user->step % COMM_N] .=  show_notify($mlang_indwr['warrrepl'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 150);
464                     $user->step_inc();
465                     echo "1";
466                     $bdb->transaction('COMMIT');
467                 } while(FALSE);
468                 $bdb->transaction('ROLLBACK');
469             }
470
471         }
472         else {
473             /* MLANG: "<b>Per autenticare qualcuno devi a tua volta essere autenticato.</b>" */
474             $mesg_to_user = nickserv_msg($dt, $mlang_indwr['warrmust'][$G_lang]);
475         }
476
477         if ($mesg_to_user != "") {
478             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
479
480             $user->comm[$user->step % COMM_N] .= $mesg_to_user;
481             $user->step_inc();
482         }
483     }
484     else if ($argz[0] == 'mesgtoadm') {
485         if (($cli_subj = gpcs_var('cli_subj', $get, $post, $cookie)) === FALSE)
486             $cli_subj = "";
487
488         if (($cli_mesg = gpcs_var('cli_mesg', $get, $post, $cookie)) === FALSE)
489             $cli_mesg = "";
490
491         $mesg_to_user = "";
492
493         log_wr("INFO:SKIP:argz == mesgtoadm name: [".$user->name."] AUTH: ".$user->is_auth());
494         if ($user->is_auth()) {
495             if (($wa_lock = Warrant::lock_data(TRUE)) != FALSE) {
496                 if (($bdb = BriskDB::create()) != FALSE) {
497                     $bdb->users_load();
498
499                     if (($ema = $bdb->getmail($user->name)) != FALSE) {
500                         //  mail("nastasi",
501                         mail("brisk@alternativeoutput.it", urldecode($cli_subj), urldecode($cli_mesg), sprintf("From: %s <%s>", $user->name, $ema));
502                     }
503
504                     if (($fp = @fopen(LEGAL_PATH."/messages.txt", 'a')) != FALSE) {
505                         /* Unix time | session | nickname | IP | where was | mesg */
506                         fwrite($fp, sprintf("%ld|%s|%s|%s\n", $curtime, $user->name,
507                                             xcapelt(urldecode($cli_subj)), xcapelt(urldecode($cli_mesg))));
508                         fclose($fp);
509                     }
510                     Warrant::unlock_data($wa_lock);
511                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
512                     /* MLANG: "" */
513                     $user->comm[$user->step % COMM_N] .=  show_notify($mlang_indwr['mesgrepl'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 110);
514                     $user->step_inc();
515                     echo "1";
516                 }
517                 else {
518                     /* MLANG: "<b>Il database è temporaneamente irraggiungibile, riprova più tardi o contatta l\'amministratore.</b>" */
519                     $mesg_to_user = nickserv_msg($dt, $mlang_indwr['coerrdb'][$G_lang]);
520                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
521                 }
522             }
523             else {
524                 /* MLANG: "<b>E\' occorso un errore durante il salvataggio, riprova o contatta l\'amministratore.</b>" */
525                 $mesg_to_user = nickserv_msg($dt, $mlang_indwr['commerr'][$G_lang]);
526             }
527
528         }
529         else {
530             /* MLANG: "<b>Per autenticare qualcuno devi a tua volta essere autenticato.</b>" */
531             $mesg_to_user = nickserv_msg($dt, $mlang_indwr['mesgmust'][$G_lang]);
532         }
533
534         if ($mesg_to_user != "") {
535             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
536
537             $user->comm[$user->step % COMM_N] .= $mesg_to_user;
538             $user->step_inc();
539         }
540     }
541
542
543
544     else if ($argz[0] == 'poll') {
545         GLOBAL $G_with_poll, $G_poll_name;
546         if (($cli_choose = gpcs_var('cli_choose', $get, $post, $cookie)) === FALSE)
547             $cli_choose = "";
548
549         if (($cli_poll_name = gpcs_var('cli_poll_name', $get, $post, $cookie)) === FALSE)
550             $cli_poll_name = "";
551
552         $poll_lock = FALSE;
553         $mesg_to_user = "";
554
555         $fp = FALSE;
556         $echont = "0";
557
558   /*
559           DONE - autorizzato ?
560           DONE - ci sono poll attivi ?
561           - verifica che il poll_name del client sia uguale a quello sul server
562           DONE - lock
563           DONE - apro file r+ con fallback in w+
564           DONE - vedo se ha già votato
565           DONE - se si: messaggio di voto già dato
566           se no: accetto il voto e lo segno; messaggio
567           chiudo file
568   */
569
570         $dobreak = FALSE;
571         do {
572             log_wr("INFO:SKIP:argz == poll name: [".$cli_poll_name."] AUTH: ".$user->is_auth());
573             if ( ! $user->is_auth() ) {
574                 // MLANG: <b>Per partecipare al sondaggio devi essere autenticato.</b>
575                 $mesg_to_user = nickserv_msg($dt, $mlang_indwr['pollmust'][$G_lang]);
576                 log_wr("break1");
577                 break;
578             }
579
580             if ($G_with_poll == FALSE && $G_poll_name != FALSE && $G_poll_name != "") {
581                 $mesg_to_user = show_notify($mlang_indwr['pollnone'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 110);
582                 log_wr("break2");
583                 break;
584             }
585
586             if ($cli_choose == "" || !isset($cli_choose)) {
587                 $mesg_to_user = show_notify($mlang_indwr['pollchoo'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 110);
588                 log_wr("break2.5");
589                 break;
590             }
591
592             if (($poll_lock = Poll::lock_data(TRUE)) == FALSE) {
593                 /* MLANG: "<b>E\' occorso un errore durante il salvataggio, riprova o contatta l\'amministratore.</b>" */
594                 $mesg_to_user = nickserv_msg($dt, $mlang_indwr['commerr'][$G_lang]);
595                 log_wr("break3");
596                 break;
597             }
598
599             if (($fp = @fopen(LEGAL_PATH."/".$G_poll_name.".txt", 'r+')) == FALSE)
600                 $fp = @fopen(LEGAL_PATH."/".$G_poll_name.".txt", 'w+');
601
602             if ($fp == FALSE) {
603                 $mesg_to_user = nickserv_msg($dt, $mlang_indwr['commerr'][$G_lang]);
604                 log_wr("break4");
605                 break;
606             }
607
608             log_wr("poll: cp");
609             fseek($fp, 0);
610
611             log_wr("poll: cp2");
612             while (!feof($fp)) {
613                 log_wr("poll: cp3");
614                 $bf = fgets($fp, 4096);
615                 log_wr("poll: cp3.1");
616                 $arli = csplitter($bf, '|');
617                 if (count($arli) == 0)
618                     break;
619                 log_wr("poll: cp3.2");
620                 if (strcasecmp($arli[1], $user->name) == 0) {
621                     $mesg_to_user = show_notify($mlang_indwr['pollagai'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 110);
622                     $dobreak = TRUE;
623                     break;
624                 }
625             }
626             log_wr("poll: cp4");
627
628             if ($dobreak) {
629                 log_wr("break5");
630                 break;
631             }
632
633             /* Unix time | nickname | choose */
634             fwrite($fp, sprintf("%ld|%s|%s\n", $curtime, xcapelt($user->name), xcapelt(urldecode($cli_choose))));
635             fflush($fp);
636             $mesg_to_user =  show_notify($mlang_indwr['pollrec'][$G_lang], 0, $mlang_indwr['btn_close'][$G_lang], 400, 110);
637             $echont = "1";
638             log_wr("poll: cp5");
639         } while (0);
640
641         if ($fp != FALSE)
642             fclose($fp);
643
644         if ($poll_lock != FALSE)
645             Poll::unlock_data($poll_lock);
646
647         if ($mesg_to_user != "") {
648             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
649
650             $user->comm[$user->step % COMM_N] .= $mesg_to_user;
651             $user->step_inc();
652         }
653
654         echo "$echont";
655     }
656
657     /******************
658      *                *
659      *   STAT: room   *
660      *                *
661      ******************/
662     else if ($user->stat == 'room') {
663         $user->laccwr = time();
664
665         if ($argz[0] == 'help') {
666             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
667             $user->comm[$user->step % COMM_N] .=  show_notify(str_replace("\n", " ", $G_room_help[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], 600, 500);
668
669             log_wr($user->comm[$user->step % COMM_N]);
670             $user->step_inc();
671
672         }
673         else if ($argz[0] == 'passwdhowto') {
674             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
675             $user->comm[$user->step % COMM_N] .=  show_notify(str_replace("\n", " ", $G_room_passwdhowto[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], 600, 500);
676
677             log_wr($user->comm[$user->step % COMM_N]);
678             $user->step_inc();
679
680         }
681         else if ($argz[0] == 'splash') {
682             GLOBAL $G_with_splash, $G_splash_content, $G_splash_interval, $G_splash_idx;
683             GLOBAL $G_splash_w, $G_splash_h, $G_splash_timeout;
684             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
685
686             $user->comm[$user->step % COMM_N] .=  show_notify_ex(str_replace("\n", " ", $G_splash_content[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], $G_splash_w, $G_splash_h, true, 0);
687
688             log_wr($user->comm[$user->step % COMM_N]);
689             $user->step_inc();
690         }
691         else if ($argz[0] == 'about') {
692             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
693             $user->comm[$user->step % COMM_N] .=  show_notify(str_replace("\n", " ", $G_room_about[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], 400, 200);
694
695             log_wr($user->comm[$user->step % COMM_N]);
696             $user->step_inc();
697
698         }
699         else if ($argz[0] == 'placing') {
700             require_once("briskin5/Obj/briskin5.phh");
701             require_once("briskin5/Obj/placing.phh");
702
703             $user->comm[$user->step % COMM_N] =  "gst.st = ".($user->step+1)."; ";
704             $user->comm[$user->step % COMM_N] .= show_notify_ex(str_replace("\n", " ", placings_show($user)), 0, $mlang_indwr['btn_backtotab'][$G_lang], 800, 600, TRUE, 0);
705
706             log_wr($user->comm[$user->step % COMM_N]);
707             $user->step_inc();
708         }
709         else if ($argz[0] == 'roadmap') {
710             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
711             $user->comm[$user->step % COMM_N] .=  show_notify(str_replace("\n", " ", $G_room_roadmap[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], 400, 200);
712
713             log_wr($user->comm[$user->step % COMM_N]);
714             $user->step_inc();
715
716         }
717         else if ($argz[0] == 'whysupport') {
718             $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
719             $user->comm[$user->step % COMM_N] .=  show_notify(str_replace("\n", " ", $G_room_whysupport[$G_lang]), 0, $mlang_indwr['btn_backtotab'][$G_lang], 400, 200);
720
721             log_wr($user->comm[$user->step % COMM_N]);
722             $user->step_inc();
723
724         }
725         else if ($argz[0] == 'chatt') {
726             $brisk->chatt_send(&$user, xcapemesg($mesg));
727         }
728         else if ($argz[0] == 'tosmgr') {
729             // check IF is authnticated user, both terms of service versions matches
730             if ($user->is_auth() && count($argz) == 5) {
731                 $f_type = $argz[1];      $f_code = $argz[2];
732                 $f_tos_curr = $argz[3]; $f_tos_vers = $argz[4];
733
734                 if ("$f_tos_curr" == $user->rec->tos_vers_get()  &&
735                     "$f_tos_vers" == "$G_tos_vers") {
736                     if ("$f_type" == "soft" || "$f_type" == "hard") {
737                         $res = 100;
738                         switch ($f_code) {
739                         case LICMGR_CHO_ACCEPT:
740                             $user->rec->tos_vers_set($G_tos_vers);
741                             $res = $user->tos_store();
742                             break;
743                         case LICMGR_CHO_REFUSE:
744                             $user->flags_set(USER_FLAG_TY_DISABLE, USER_FLAG_TY_ALL);
745                             $user->rec->disa_reas_set(USER_DIS_REA_LICENCE);
746                             $res = $user->state_store();
747
748                             $user->comm[$user->step % COMM_N] = $user->blocking_error(TRUE);
749                             $user->the_end = TRUE;
750                             $user->step_inc();
751                             break;
752                         }
753                     }
754                 }
755             }
756         }
757         /**********************
758          *                    *
759          *   SUBST: standup   *
760          *                    *
761          **********************/
762         else if ($user->subst == 'standup') {
763             if ($argz[0] == 'sitdown') {
764                 log_wr("SITDOWN command");
765
766                 if ($user->the_end == TRUE) {
767                     log_wr("INFO:SKIP:argz == sitdown && ->the_end == TRUE => ignore request.");
768                     return FALSE;
769                 }
770
771                 // Take parameters
772                 $table_idx = (int)$argz[1];
773                 $table = &$brisk->table[$table_idx];
774
775                 $not_allowed_msg = "";
776                 if ($G_shutdown) {
777                         $not_allowed_msg = nickserv_msg($dt, $mlang_indwr['shutmsg'][$G_lang]);
778                 }
779                 else if ($table->wakeup_time > $curtime) {
780                     $not_allowed_msg = nickserv_msg($dt, sprintf($mlang_indwr['tabwait'][$G_lang],
781                                                                  $table->wakeup_time - $curtime));
782                 }
783                 else if ($table->auth_type == TABLE_AUTH_TY_CERT && ( ! $user->is_cert() ) ) {
784                     $not_allowed_msg = nickserv_msg($dt, $mlang_indwr['mustcert'][$G_lang]);
785                 }
786                 else if ($table->auth_type == TABLE_AUTH_TY_AUTH && ( ! $user->is_auth() ) ) {
787                     $not_allowed_msg = nickserv_msg($dt, $mlang_indwr['mustauth'][$G_lang]);
788                 }
789                 else if ($user->flags & USER_FLAG_TY_FIRONLY && $table->player_n > 0) {
790                     $not_allowed_msg = nickserv_msg($dt, $mlang_indwr['mustfirst'][$G_lang]);
791                 }
792                 if ($not_allowed_msg != "") {
793                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ".$not_allowed_msg;
794                     $user->step_inc();
795                     return TRUE;
796                 }
797
798                 /* TODO: refact to a function */
799                 // if ($user->bantime > $user->laccwr) {
800                 require_once("Obj/hardban.phh");
801
802                 if (($bantime = Hardbans::check(($user->is_auth() ? $user->name : FALSE),
803                                                 $user->ip, $user->sess)) != -1) {
804                     $user->comm[$user->step % COMM_N] = "gst.st = ".($user->step+1)."; ";
805                     /* MLANG: "<br>Ti sei alzato da un tavolo senza il consenso degli altri giocatori. <br><br>Dovrai aspettare ancora ".secstoword($user->bantime - $user->laccwr)." prima di poterti sedere nuovamente.", "resta in piedi.", "<br>Tu o qualcuno col tuo stesso indirizzo IP si è alzato da un tavolo senza il consenso degli altri giocatori.<br><br>Dovrai aspettare ancora ".secstoword($bantime - $user->laccwr)." prima di poterti sedere nuovamente.<br><br>Se non sei stato tu ad alzarti e possiedi un login con password, autenticandoti con quello, potrai accedere." */
806                     if ($user->is_auth()) {
807                         $user->comm[$user->step % COMM_N] .= show_notify($mlang_indwr['badwake_a'][$G_lang].secstoword($bantime - $user->laccwr).$mlang_indwr['badwake_b'][$G_lang], 2000, $mlang_indwr['btn_stays'][$G_lang], 400, 140);
808                     }
809                     else {
810                         $user->comm[$user->step % COMM_N] .= show_notify($mlang_indwr['badsit_a'][$G_lang].secstoword($bantime - $user->laccwr).$mlang_indwr['badsit_a'][$G_lang], 2000, $mlang_indwr['btn_stays'][$G_lang], 400, 180);
811                     }
812                     $user->step_inc();
813                     return TRUE;
814                 }
815
816                 if ($table->player_n == PLAYERS_N) {
817                     log_wr("WARN:FSM: Sitdown unreachable, table full.");
818                     return FALSE;
819                 }
820
821                 // set new status
822                 $user->subst = "sitdown";
823                 $user->table = $table_idx;
824                 $user->table_pos = $table->user_add($idx);
825
826                 log_wr("MOP before");
827
828                 if ($table->player_n == PLAYERS_N) {
829                     require_once("briskin5/Obj/briskin5.phh");
830                     log_wr("MOP inall");
831
832                     // Start game for this table.
833                     log_wr("Start game!");
834         
835                     //
836                     //  START THE SPAWN HERE!!!!
837                     //
838
839                     // Create new spawned table
840                     // $bin5_sem = Bin5::lock_data(TRUE, $table_idx);
841                     $table_token = uniqid("");
842                     $brisk->table[$table_idx]->table_token = $table_token;
843                     $brisk->table[$table_idx]->table_start = $curtime;
844
845                     $plist = "$table_token|$user->table|$table->player_n";
846                     for ($i = 0 ; $i < $table->player_n ; $i++) {
847                         $plist .= '|'.$brisk->user[$table->player[$i]]->sess;
848                     }
849                     log_legal($curtime, $user->ip, $user, "STAT:CREATE_GAME", $plist);
850
851                     log_wr("pre new Bin5");
852                     if (($bin5 = new Bin5($brisk, $table_idx, $table_token, $get, $post, $cookie)) == FALSE)
853                         log_wr("bri create: FALSE");
854                     else
855                         log_wr("bri create: ".serialize($bin5));
856
857                     log_wr("pre init table");
858                     // init table
859                     $bin5_table = $bin5->table[0];
860                     $bin5_table->init($bin5->user);
861                     $bin5_table->game_init($bin5->user);
862                     //
863                     // Init spawned users.
864                     //
865                     //  MULTIGAME: here init of selected game instead of hardcabled briskin5 init (look subst status)
866                     //
867                     log_wr("game_init after");
868                     for ($i = 0 ; $i < $table->player_n ; $i++) {
869                         $bin5_user_cur = $bin5->user[$i];
870                         $user_cur = $brisk->user[$table->player[$i]];
871
872                         $bin5_user_cur->laccwr = $curtime;
873                         $bin5_user_cur->trans_step = $user_cur->step + 1;
874                         $bin5_user_cur->comm[$bin5_user_cur->step % COMM_N] = "";
875                         $bin5_user_cur->step_inc();
876                         $bin5_user_cur->comm[$bin5_user_cur->step % COMM_N] = show_table(&$bin5,&$bin5_user_cur,$bin5_user_cur->step+1,TRUE,FALSE);
877                         $bin5_user_cur->step_inc();
878
879                         log_wr("TRY PRESAVE: ".$bin5_user_cur->step." TRANS STEP: ".$bin5_user_cur->trans_step);
880
881                         log_wr("Pre if!");
882
883                         //          ARRAY_POP DISABLED
884                         //          // CHECK
885                         while (array_pop($user_cur->comm) != NULL);
886
887                         $user_cur->trans_step = $user_cur->step + 1;
888                         $user_cur->comm[$user_cur->step % COMM_N] = sprintf('gst.st_loc++; gst.st=%d; createCookie("table_idx", %d, 24*365, cookiepath); createCookie("table_token", "%s", 24*365, cookiepath); createCookie("lang", "%s", 24*365, cookiepath); xstm.stop(); window.onunload = null ; window.onbeforeunload = null ; document.location.assign("briskin5/index.php");|', $user_cur->step+1, $table_idx, $table_token, $G_lang);
889                         log_wr("TRANS ATTIVATO");
890
891                         $user_cur->stat_set('table');
892                         $user_cur->subst = 'asta';
893                         $user_cur->laccwr = $curtime;
894                         $user_cur->step_inc();
895                     }
896                     log_wr("presave bri");
897                     $brisk->match_add($table_idx, $bin5);
898                     log_wr("postsave bri");
899                 }
900                 // change room
901                 $brisk->room_sitdown($user, $table_idx);
902
903                 log_wr("MOP finish");
904             }
905             else if ($argz[0] == 'logout') {
906                 $brisk->ghost_sess->push($curtime, $user->sess, GHOST_SESS_REAS_LOUT);
907                 $user->the_end = TRUE;
908
909                 if ($user->subst == 'sitdown') {
910                     log_load("ROOM WAKEUP");
911                     $brisk->room_wakeup($user);
912                 }
913                 else if ($user->subst == 'standup')
914                     $brisk->room_outstandup($user);
915                 else
916                     log_rd2("LOGOUT FROM WHAT ???");
917             }
918         }
919         /**********************
920          *                    *
921          *   SUBST: sitdown   *
922          *                    *
923          **********************/
924         else if ($user->subst == 'sitdown') {
925             if ($user->the_end == TRUE) {
926                 log_wr("INFO:SKIP:argz == sitdown && ->the_end == TRUE => ignore request.");
927                 return FALSE;
928             }
929
930             if ($argz[0] == 'wakeup') {
931                 $brisk->room_wakeup($user);
932             }
933             else if ($argz[0] == 'logout') {
934                 $brisk->ghost_sess->push($curtime, $user->sess, GHOST_SESS_REAS_LOUT);
935                 $user->the_end = TRUE;
936
937                 $brisk->room_wakeup($user);
938             }
939         }
940     }
941
942     return (FALSE);
943 }
944 ?>