ich arbeite gerade an einem GM Bereich in meiner Flyff Pserver Homepage und benutze als login vorlage den CS SHOP login von flyffearthquakev4.
nur ich möchte sich GM's und Admin's dort einloggen können ergo von der DB Account_DBF account_tbl_detail m_chloginauthority Z,P,O reinkönnen.
Das ist der originale teil des Logins
<?php
/*****************************************
** Flyff Earthquake v4.0 **
** login.php **
** Created by Treachery. **
*****************************************/
require_once("inc/config.php");
function clean($var)
{
if (is_int($var))
{
$var = $var;
}
else
{
$unpacked = unpack('H*hex',$var);
$hex = '0x'.$unpacked['hex'];
$var = $hex;
}
return $var;
}
session_start();
$mssql_con = mssql_connect($mssql_server, $mssql_username, $mssql_password);
if (!$mssql_con)
die("Cannot connect to MSSQL Server.");
$account=clean(strtolower($_POST['account']));
$passwd=md5($client_salt.$_POST['password']);
$player=clean($_POST['character']);
if (isset($_GET['error']))
$error=error($_GET['error']);
if (isset($_POST['account']))
{
if ($account)
{
$account_query=mssql_query("SELECT * FROM [{$mssql_db['account']}].dbo.[ACCOUNT_TBL] WHERE account = {$account}");
$account_row=mssql_fetch_array($account_query);
if (mssql_num_rows($account_query)) {
if ($account_row['password']==$passwd)
{
$character_query=mssql_query("SELECT * FROM [{$mssql_db['character']}].dbo.[CHARACTER_TBL] WHERE m_szName = {$player} AND isblock != 'D' AND account = {$account}");
$character_row=mssql_fetch_array($character_query) ;
if (mssql_num_rows($character_query))
{
$_SESSION['ifs_account'] = $_POST['account'];
$_SESSION['ifs_player'] = $character_row['m_idPlayer'];
$_SESSION['ifs_sindex'] = $character_row['serverindex'];
$_SESSION['ifs_passwd'] = $passwd;
if ($new_window)
$open=true;
else
header("Location: ".$shopurl);
}
else
$error=error(4);
}
else
$error=error(3);
}
else
$error=error(2);
}
else
$error=error(1);
}
if (isset($_GET['logout']))
{
session_destroy();
header("Location: login.php");
}
function error($id)
{
switch($id)
{
case 1:
$error = "No was account entered.";
break;
case 2:
$error = "Invalid Account";
break;
case 3:
$error = "Invalid Password.";
break;
case 4:
$error = "Character does not exist or does not belong to you.";
break;
}
return $error;
}
?>
/*****************************************
** Flyff Earthquake v4.0 **
** login.php **
** Created by Treachery. **
*****************************************/
require_once("inc/config.php");
function clean($var)
{
if (is_int($var))
{
$var = $var;
}
else
{
$unpacked = unpack('H*hex',$var);
$hex = '0x'.$unpacked['hex'];
$var = $hex;
}
return $var;
}
session_start();
$mssql_con = mssql_connect($mssql_server, $mssql_username, $mssql_password);
if (!$mssql_con)
die("Cannot connect to MSSQL Server.");
$account=clean(strtolower($_POST['account']));
$passwd=md5($client_salt.$_POST['password']);
$player=clean($_POST['character']);
if (isset($_GET['error']))
$error=error($_GET['error']);
if (isset($_POST['account']))
{
if ($account)
{
$account_query=mssql_query("SELECT * FROM [{$mssql_db['account']}].dbo.[ACCOUNT_TBL] WHERE account = {$account}");
$account_row=mssql_fetch_array($account_query);
if (mssql_num_rows($account_query)) {
if ($account_row['password']==$passwd)
{
$character_query=mssql_query("SELECT * FROM [{$mssql_db['character']}].dbo.[CHARACTER_TBL] WHERE m_szName = {$player} AND isblock != 'D' AND account = {$account}");
$character_row=mssql_fetch_array($character_query) ;
if (mssql_num_rows($character_query))
{
$_SESSION['ifs_account'] = $_POST['account'];
$_SESSION['ifs_player'] = $character_row['m_idPlayer'];
$_SESSION['ifs_sindex'] = $character_row['serverindex'];
$_SESSION['ifs_passwd'] = $passwd;
if ($new_window)
$open=true;
else
header("Location: ".$shopurl);
}
else
$error=error(4);
}
else
$error=error(3);
}
else
$error=error(2);
}
else
$error=error(1);
}
if (isset($_GET['logout']))
{
session_destroy();
header("Location: login.php");
}
function error($id)
{
switch($id)
{
case 1:
$error = "No was account entered.";
break;
case 2:
$error = "Invalid Account";
break;
case 3:
$error = "Invalid Password.";
break;
case 4:
$error = "Character does not exist or does not belong to you.";
break;
}
return $error;
}
?>
<?php
/*****************************************
** Flyff Earthquake v4.0 **
** login.php **
** Created by Treachery. **
*****************************************/
require_once("inc/config.php");
function clean($var)
{
if (is_int($var))
{
$var = $var;
}
else
{
$unpacked = unpack('H*hex',$var);
$hex = '0x'.$unpacked['hex'];
$var = $hex;
}
return $var;
}
session_start();
$mssql_con = mssql_connect($mssql_server, $mssql_username, $mssql_password);
if (!$mssql_con)
die("Cannot connect to MSSQL Server.");
$account=clean(strtolower($_POST['account']));
$passwd=md5($client_salt.$_POST['password']);
$player=clean($_POST['character']);
if (isset($_GET['error']))
$error=error($_GET['error']);
if (isset($_POST['account']))
{
if ($account)
{
$account_query=mssql_query("SELECT * FROM [{$mssql_db['account']}].dbo.[ACCOUNT_TBL] WHERE account = {$account} AND [{$mssql_db['account']}].dbo.[ACCOUNT_TBL_DETAIL] WHERE m_chLoginAuthority = 'Z'");
$account_row=mssql_fetch_array($account_query);
if (mssql_num_rows($account_query)) {
if ($account_row['password']==$passwd)
{
$character_query=mssql_query("SELECT * FROM [{$mssql_db['character']}].dbo.[CHARACTER_TBL] WHERE m_szName = {$player} AND isblock != 'D' AND account = {$account}");
$character_row=mssql_fetch_array($character_query) ;
if (mssql_num_rows($character_query))
{
$_SESSION['ifs_account'] = $_POST['account'];
$_SESSION['ifs_player'] = $character_row['m_idPlayer'];
$_SESSION['ifs_sindex'] = $character_row['serverindex'];
$_SESSION['ifs_passwd'] = $passwd;
if ($new_window)
$open=true;
else
header("Location: ".$shopurl);
}
else
$error=error(4);
}
else
$error=error(3);
}
else
$error=error(2);
}
else
$error=error(1);
}
if (isset($_GET['logout']))
{
session_destroy();
header("Location: login.php");
}
function error($id)
{
switch($id)
{
case 1:
$error = "No was account entered.";
break;
case 2:
$error = "Invalid Account";
break;
case 3:
$error = "Invalid Password.";
break;
case 4:
$error = "Character does not exist or does not belong to you.";
break;
}
return $error;
}
?>
/*****************************************
** Flyff Earthquake v4.0 **
** login.php **
** Created by Treachery. **
*****************************************/
require_once("inc/config.php");
function clean($var)
{
if (is_int($var))
{
$var = $var;
}
else
{
$unpacked = unpack('H*hex',$var);
$hex = '0x'.$unpacked['hex'];
$var = $hex;
}
return $var;
}
session_start();
$mssql_con = mssql_connect($mssql_server, $mssql_username, $mssql_password);
if (!$mssql_con)
die("Cannot connect to MSSQL Server.");
$account=clean(strtolower($_POST['account']));
$passwd=md5($client_salt.$_POST['password']);
$player=clean($_POST['character']);
if (isset($_GET['error']))
$error=error($_GET['error']);
if (isset($_POST['account']))
{
if ($account)
{
$account_query=mssql_query("SELECT * FROM [{$mssql_db['account']}].dbo.[ACCOUNT_TBL] WHERE account = {$account} AND [{$mssql_db['account']}].dbo.[ACCOUNT_TBL_DETAIL] WHERE m_chLoginAuthority = 'Z'");
$account_row=mssql_fetch_array($account_query);
if (mssql_num_rows($account_query)) {
if ($account_row['password']==$passwd)
{
$character_query=mssql_query("SELECT * FROM [{$mssql_db['character']}].dbo.[CHARACTER_TBL] WHERE m_szName = {$player} AND isblock != 'D' AND account = {$account}");
$character_row=mssql_fetch_array($character_query) ;
if (mssql_num_rows($character_query))
{
$_SESSION['ifs_account'] = $_POST['account'];
$_SESSION['ifs_player'] = $character_row['m_idPlayer'];
$_SESSION['ifs_sindex'] = $character_row['serverindex'];
$_SESSION['ifs_passwd'] = $passwd;
if ($new_window)
$open=true;
else
header("Location: ".$shopurl);
}
else
$error=error(4);
}
else
$error=error(3);
}
else
$error=error(2);
}
else
$error=error(1);
}
if (isset($_GET['logout']))
{
session_destroy();
header("Location: login.php");
}
function error($id)
{
switch($id)
{
case 1:
$error = "No was account entered.";
break;
case 2:
$error = "Invalid Account";
break;
case 3:
$error = "Invalid Password.";
break;
case 4:
$error = "Character does not exist or does not belong to you.";
break;
}
return $error;
}
?>
aber ich bekomme immer diese Fehlermeldung:
Warning: mssql_query() [function.mssql-query]: message: In der Nähe von 'WHERE' wurde ein nicht boolescher Ausdruck in einem Kontext angegeben, in dem eine Bedingung erwartet wird. (severity 15) in C:\xampp\htdocs\gm\login.php on line 42
Warning: mssql_query() [function.mssql-query]: Query failed in C:\xampp\htdocs\gm\login.php on line 42
Warning: mssql_fetch_array() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\gm\login.php on line 43
Warning: mssql_num_rows() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\gm\login.php on line 44
Warning: mssql_query() [function.mssql-query]: Query failed in C:\xampp\htdocs\gm\login.php on line 42
Warning: mssql_fetch_array() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\gm\login.php on line 43
Warning: mssql_num_rows() expects parameter 1 to be resource, boolean given in C:\xampp\htdocs\gm\login.php on line 44
Was muss ich dagegen tun?
