View of /branches/opensim_069/webroot/profile.php
Parent Directory
| 
Revision Log
Revision 60 -
(download)
(annotate)
Sun Sep 26 00:49:22 2010 UTC (2 years, 8 months ago) by kcozens
File size: 18906 byte(s)
Sun Sep 26 00:49:22 2010 UTC (2 years, 8 months ago) by kcozens
File size: 18906 byte(s)
Get profileURL from userprofile table and not from opensim table.
<?PHP
include("databaseinfo.php");
//
// Search DB
//
mysql_connect ($DB_HOST, $DB_USER, $DB_PASSWORD);
mysql_select_db ($DB_NAME);
#
# Copyright (c)Melanie Thielker (http://opensimulator.org/)
#
###################### No user serviceable parts below #####################
#
# The XMLRPC server object
#
$xmlrpc_server = xmlrpc_server_create();
#
# Classifieds
#
# Avatar Classifieds Request
xmlrpc_server_register_method($xmlrpc_server, "avatarclassifiedsrequest",
"avatarclassifiedsrequest");
function avatarclassifiedsrequest($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['uuid'];
$result = mysql_query("SELECT * FROM classifieds WHERE ".
"creatoruuid = '". mysql_escape_string($uuid) ."'");
$data = array();
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"classifiedid" => $row["classifieduuid"],
"name" => $row["name"]);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Classifieds Update
xmlrpc_server_register_method($xmlrpc_server, "classified_update",
"classified_update");
function classified_update($method_name, $params, $app_data)
{
$req = $params[0];
$classifieduuid = $req['classifiedUUID'];
$creator = $req['creatorUUID'];
$category = $req['category'];
$name = $req['name'];
$description = $req['description'];
$parceluuid = $req['parcelUUID'];
$parentestate = $req['parentestate'];
$snapshotuuid = $req['snapshotUUID'];
$simname = $req['sim_name'];
$globalpos = $req['globalpos'];
$parcelname = $req['parcelname'];
$classifiedflag = $req['classifiedFlags'];
$priceforlist = $req['classifiedPrice'];
// Check if we already have this one in the database
$check = mysql_query("SELECT COUNT(*) FROM classifieds WHERE ".
"classifieduuid = '". mysql_escape_string($classifieduuid) ."'");
while ($row = mysql_fetch_row($check))
{
$ready = $row[0];
}
if ($ready == 0)
{
// Doing some late checking
// Should be done by the module but let's see what happens when
// I do it here
if($parcelname == "")
{
$parcelname = "Unknown";
}
if($parceluuid == "")
{
$parceluuid = "00000000-0000-0000-0000-0000000000000";
}
if($description == "")
{
$description = "No Description";
}
if($classifiedflag == 2)
{
$creationdate = time();
$expirationdate = time() + (7 * 24 * 60 * 60);
}
else
{
$creationdate = time();
$expirationdate = time() + (365 * 24 * 60 * 60);
}
$insertquery = "INSERT INTO classifieds VALUES ".
"('". mysql_escape_string($classifieduuid) ."',".
"'". mysql_escape_string($creator) ."',".
"". mysql_escape_string($creationdate) .",".
"". mysql_escape_string($expirationdate) .",".
"'". mysql_escape_string($category) ."',".
"'". mysql_escape_string($name) ."',".
"'". mysql_escape_string($description) ."',".
"'". mysql_escape_string($parceluuid) ."',".
"". mysql_escape_string($parentestate) .",".
"'". mysql_escape_string($snapshotuuid) ."',".
"'". mysql_escape_string($simname) ."',".
"'". mysql_escape_string($globalpos) ."',".
"'". mysql_escape_string($parcelname) ."',".
"". mysql_escape_string($classifiedflag) .",".
"". mysql_escape_string($priceforlist) .")";
// Create a new record for this classified
$result = mysql_query($insertquery);
}
else
{
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Classifieds Delete
xmlrpc_server_register_method($xmlrpc_server, "classified_delete",
"classified_delete");
function classified_delete($method_name, $params, $app_data)
{
$req = $params[0];
$classifieduuid = $req['classifiedID'];
$result = mysql_query("DELETE FROM classifieds WHERE ".
"classifieduuid = '".mysql_escape_string($classifieduuid) ."'");
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
#
# Picks
#
# Avatar Picks Request
xmlrpc_server_register_method($xmlrpc_server, "avatarpicksrequest",
"avatarpicksrequest");
function avatarpicksrequest($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['uuid'];
$result = mysql_query("SELECT * FROM userpicks WHERE ".
"creatoruuid = '". mysql_escape_string($uuid) ."'");
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"pickid" => $row["pickuuid"],
"name" => $row["name"]);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Request Picks for User
xmlrpc_server_register_method($xmlrpc_server, "pickinforequest",
"pickinforequest");
function pickinforequest($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$pick = $req['pick_id'];
$result = mysql_query("SELECT * FROM userpicks WHERE ".
"creatoruuid = '". mysql_escape_string($uuid) ."' AND ".
"pickuuid = '". mysql_escape_string($pick) ."'");
while (($row = mysql_fetch_assoc($result)))
{
if ($row["description"] == "")
{
$row["description"] = "No description given";
}
$data[] = array(
"pickuuid" => $row["pickuuid"],
"creatoruuid" => $row["creatoruuid"],
"toppick" => $row["toppick"],
"parceluuid" => $row["parceluuid"],
"name" => $row["name"],
"description" => $row["description"],
"snapshotuuid" => $row["snapshotuuid"],
"user" => $row["user"],
"originalname" => $row["originalname"],
"simname" => $row["simname"],
"posglobal" => $row["posglobal"],
"sortorder"=> $row["sortorder"],
"enabled" => $row["enabled"]);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Picks Update
xmlrpc_server_register_method($xmlrpc_server, "picks_update",
"picks_update");
function picks_update($method_name, $params, $app_data)
{
$req = $params[0];
$pickuuid = $req['pick_id'];
$creator = $req['creator_id'];
$toppick = $req['top_pick'];
$name = $req['name'];
$description = $req['desc'];
$parceluuid = $req['parcel_uuid'];
$snapshotuuid = $req['snapshot_id'];
$user = $req['user'];
$original = $req['original'];
$simname = $req['sim_name'];
$posglobal = $req['pos_global'];
$sortorder = $req['sort_order'];
$enabled = $req['enabled'];
// Check if we already have this one in the database
$check = mysql_query("SELECT COUNT(*) FROM userpicks WHERE ".
"pickuuid = '". mysql_escape_string($pickuuid) ."'");
while ($row = mysql_fetch_row($check))
{
$ready = $row[0];
}
if ($ready == 0)
{
// Doing some late checking
// Should be done by the module but let's see what happens when
// I do it here
if($parceluuid == "")
{
$parceluuid = "00000000-0000-0000-0000-0000000000000";
}
if($description == "")
{
$description = "No Description";
}
if($user == "")
{
$user = "Unknown";
}
if($original == "")
{
$original = "Unknown";
}
$insertquery = "INSERT INTO userpicks VALUES ".
"('". mysql_escape_string($pickuuid) ."',".
"'". mysql_escape_string($creator) ."',".
"'". mysql_escape_string($toppick) ."',".
"'". mysql_escape_string($parceluuid) ."',".
"'". mysql_escape_string($name) ."',".
"'". mysql_escape_string($description) ."',".
"'". mysql_escape_string($snapshotuuid) ."',".
"'". mysql_escape_string($user) ."',".
"'". mysql_escape_string($original) ."',".
"'". mysql_escape_string($simname) ."',".
"'". mysql_escape_string($posglobal) ."',".
"'". mysql_escape_string($sortorder) ."',".
"'". mysql_escape_string($enabled) ."')";
//print $insertquery;
// Create a new record for this avatar note
$result = mysql_query($insertquery);
}
else
{
// Doing some late checking
// Should be done by the module but let's see what happens when
// I do it here
if($parceluuid == "")
{
$parceluuid = "00000000-0000-0000-0000-00000000000";
}
if($description == "")
{
$description = "Test";
}
if($user == "")
{
$user = "Unknown";
}
if($original == "")
{
$original = "Unknown";
}
$updatequery1 = "UPDATE userpicks SET ".
"parceluuid = '". mysql_escape_string($parceluuid) ."' WHERE ".
"pickuuid = '". mysql_escape_string($pickuuid) ."'";
$updatequery2 = "UPDATE userpicks SET ".
"name = '". mysql_escape_string($name) ."' WHERE ".
"pickuuid = '". mysql_escape_string($pickuuid) ."'";
$updatequery3 = "UPDATE userpicks SET ".
"description = '". mysql_escape_string($description) ."' WHERE ".
"pickuuid = '". mysql_escape_string($pickuuid) ."'";
$updatequery4 = "UPDATE userpicks SET ".
"snapshotuuid = '". mysql_escape_string($snapshotuuid) ."' WHERE ".
"pickuuid = '". mysql_escape_string($pickuuid) ."'";
// Update the existing record
$resultQ1 = mysql_query($updatequery1);
$resultQ2 = mysql_query($updatequery2);
$resultQ3 = mysql_query($updatequery3);
$resultQ4 = mysql_query($updatequery4);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Picks Delete
xmlrpc_server_register_method($xmlrpc_server, "picks_delete",
"picks_delete");
function picks_delete($method_name, $params, $app_data)
{
$req = $params[0];
$pickuuid = $req['pick_id'];
$result = mysql_query("DELETE FROM userpicks WHERE ".
"pickuuid = '".mysql_escape_string($pickuuid) ."'");
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
#
# Notes
#
# Avatar Notes Request
xmlrpc_server_register_method($xmlrpc_server, "avatarnotesrequest",
"avatarnotesrequest");
function avatarnotesrequest($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['uuid'];
$targetuuid = $req['avatar_id'];
$result = mysql_query("SELECT * FROM usernotes WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."' AND ".
"targetuuid = '". mysql_escape_string($targetuuid) ."'");
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"targetid" => $row["targetuuid"],
"notes" => $row["notes"]);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Avatar Notes Update
xmlrpc_server_register_method($xmlrpc_server, "avatar_notes_update",
"avatar_notes_update");
function avatar_notes_update($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$targetuuid = $req['target_id'];
$notes = $req['notes'];
// Check if we already have this one in the database
$check = mysql_query("SELECT COUNT(*) FROM usernotes WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."' AND ".
"targetuuid = '". mysql_escape_string($targetuuid) ."'");
while ($row = mysql_fetch_row($check))
{
$ready = $row[0];
}
if ($ready == 0)
{
// Create a new record for this avatar note
$result = mysql_query("INSERT INTO usernotes VALUES ".
"('". mysql_escape_string($uuid) ."',".
"'". mysql_escape_string($targetuuid) ."',".
"'". mysql_escape_string($notes) ."')");
}
else if ($notes == "")
{
// Delete the record for this avatar note
$result = mysql_query("DELETE FROM usernotes WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."' AND ".
"targetuuid = '". mysql_escape_string($targetuuid) ."'");
}
else
{
// Update the existing record
$result = mysql_query("UPDATE usernotes SET ".
"notes = '". mysql_escape_string($notes) ."' WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."' AND ".
"targetuuid = '". mysql_escape_string($targetuuid) ."'");
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
# Profile bits
xmlrpc_server_register_method($xmlrpc_server, "avatar_properties_request",
"avatar_properties_request");
function avatar_properties_request($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$result = mysql_query("SELECT profileURL FROM userprofile WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."'");
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"ProfileUrl" => $row["profileURL"]);
}
$response_xml = xmlrpc_encode(array(
'data' => $data
));
print $response_xml;
}
// Profile Interests
xmlrpc_server_register_method($xmlrpc_server, "avatar_interests_request",
"avatar_interests_request");
function avatar_interests_request($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"ProfileUrl" => $row["profileURL"]);
}
$response_xml = xmlrpc_encode(array(
'data' => $data
));
print $response_xml;
}
xmlrpc_server_register_method($xmlrpc_server, "avatar_interests_update",
"avatar_interests_update");
function avatar_interests_update($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$skillstext = $req['skillstext'];
$skillsmask = $req['skillsmask'];
$languages = $req['languages'];
$wanttext = $req['wanttext'];
$wantmask = $req['wantmask'];
$result = mysql_query("UPDATE userprofile SET ".
"profileCanDoMask = ". mysql_escape_string($skillsmask) .",".
"profileCanDoText = '". mysql_escape_string($skillstext) ."',".
"profileWantDoMask = ". mysql_escape_string($wantmask) .",".
"profileWantDoText = '". mysql_escape_string($wanttext) ."',".
"profileLanguagesText = '". mysql_escape_string($languages) ."' ".
"where useruuid = '". mysql_escape_string($uuid) ."'"
);
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
// User Preferences
xmlrpc_server_register_method($xmlrpc_server, "user_preferences_request",
"user_preferences_request");
function user_preferences_request($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$result = mysql_query("SELECT imviaemail,visible,email FROM usersettings WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."'");
while (($row = mysql_fetch_assoc($result)))
{
$data[] = array(
"imviaemail" => $row["imviaemail"],
"visible" => $row["visible"],
"email" => $row["email"]);
}
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
xmlrpc_server_register_method($xmlrpc_server, "user_preferences_update",
"user_preferences_update");
function user_preferences_update($method_name, $params, $app_data)
{
$req = $params[0];
$uuid = $req['avatar_id'];
$wantim = $req['imViaEmail'];
$directory = $req['visible'];
$result = mysql_query("UPDATE usersettings SET ".
"imviaemail = '".mysql_escape_string($wantim) ."', ".
"visible = '".mysql_escape_string($directory) ."' WHERE ".
"useruuid = '". mysql_escape_string($uuid) ."'");
$response_xml = xmlrpc_encode(array(
'success' => True,
'errorMessage' => "",
'data' => $data
));
print $response_xml;
}
#
# Process the request
#
$request_xml = $HTTP_RAW_POST_DATA;
xmlrpc_server_call_method($xmlrpc_server, $request_xml, '');
xmlrpc_server_destroy($xmlrpc_server);
?>
| ViewVC Help | |
| Powered by ViewVC 1.0.0 |
