was isch schon gemacht habe ist
PHP Code:
if (!isset($_SESSION["user"]) && !(isset($_GET["sas"]) && isset($_GET["pid"]) && isset($_GET["sid"]))) exit;
if (!isset($_SESSION["user"]) && (!is_numeric($_GET["pid"]) || !is_numeric($_GET["sid"]))) exit;
include("lang.inc.php");
include($config["path"]["includes"]."common.inc.php");
$db = new database;
if (!isset($_SESSION["user"])){
$id = mysql_fetch_object(mysql_query('SELECT account_id FROM '.$db->gamedb["player"].'.player WHERE id="'.(int)$_GET["pid"].'"',$db->game));
if (!$id) exit;
$id = $id->account_id;
if ($_GET["sas"] = md5($_GET["pid"].$id."GF9001")){
$res = mysql_fetch_object(mysql_query('SELECT login,'.$config["settings"]["coin"].' as coin FROM '.$db->gamedb["account"].'.account WHERE id="'.$id.'"',$db->game));
$_SESSION["user"] = $res->login;
$_SESSION["coins"] = $res->coin;
$_SESSION["id"] = $id;
}else exit;
}
jetzt ist die Frage kann mir da jemand Bischen Helfen das ich eine Saubere Session bekomme ?
/push