set session, and redirect to extrasticks.php?sess=xxx, so that back button will work // (2) extrasticks.php?login=&username=xxx&password=wrong (user clicked login button) // -> redirect to extrasticks.php?login=failed, to display the error message // (3) extrasticks.php?login=failed (for redirection after failed login) $login_failed=false; if (isset($REQ["login"])) { if ($REQ["login"]=="failed") $login_failed=true; else { $username = $REQ["username"]; $password = $REQ["password"]; $r = load_array("users/{$username}.txt"); // nb. testing username might seem redundant, but it's not, because it also tests for succesfull loading of r $viewkey=""; $viewval=""; if (isset($REQ["cat"])) {$viewkey="cat"; $viewval=$REQ["cat"];} if (isset($REQ["author"])) {$viewkey="author"; $viewval=$REQ["author"];} if (isset($r["username"]) && $r["username"]==$username && isset($r["password"]) && $r["password"]==crypt($password,"stk")) { $_SESSION["ssuser"]=$username; $urlarg = http_build_query4(array($viewkey=>$viewval, $ssname=>$ssid)); header("Location: http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF'])."/extrasticks.php?{$urlarg}"); exit; } else { $urlarg = http_build_query4(array($viewkey=>$viewval, "login"=>"failed", "username"=>$username)); header("Location: http://".$_SERVER['HTTP_HOST'].dirname($_SERVER['PHP_SELF'])."/extrasticks.php?{$urlarg}#login"); exit; } } } ?> Extra Stick Figures

Extra Stick Figures

"Abstract", [1]=>"Abstract/Amp", ...) // $sticks = array( [0]=>array(["fn"]=>"Hello (lu)", ["stickname"]=>"Hello", ["author"]=>"lu", ["cat"]=>cat, ["time"]=>timestamp) ... ) $categories = array(); // $viewby="new"; if (isset($REQ["cat"])) {$viewby="cat"; $viewcat=$REQ["cat"]; if ($viewcat=="") $viewby="new";} if (isset($REQ["author"])) {$viewby="author"; $viewauthor=$REQ["author"]; if ($viewauthor=="") $viewby="new";} $viewkey=$viewby; $viewval=""; if ($viewby=="cat") $viewval=$viewcat; if ($viewby=="author") $viewval=$viewauthor; $filterauthor_s = ""; function filterauthor($stick) {global $filterauthor_s; return ($filterauthor_s==$stick["author"]);} // $buildok=true; if (!file_exists("sticks/categories.txt")) $buildok=$buildok && build_cache($username); $buf = file_get_string("sticks/categories.txt"); $categories=array(); if ($buf!="") $categories=unserialize($buf); // print the categories echo "

\n"; echo "Home"; $prefix="_"; foreach($categories as $catstruct) { if ($catstruct["isempty"]) continue; if ($catstruct["silent"]) continue; $cat = $catstruct["fn"]; $i=strpos($cat,"/"); $path=($i==0)?$cat:substr($cat,0,$i); $name=($i==0)?$cat:substr($cat,$i+1); $samecat = ($prefix==$path); $rcat = $cat; if ($samecat) $rcat=$name; if ($samecat) echo ", "; else echo " -- "; $urlarg = http_build_query4(array("cat"=>$cat, $ssname=>$ssid)); echo "\n".str_replace(" "," ",$rcat).""; $prefix=$path; } if (!$buildok) echo "

[The stick database is momentarily undergoing maintenance. If things look odd, please refresh.]

\n"; // Now the tables of sticks, and the login box below. // Hopefully we can connect to the database to print votes $db=@mysql_connect($sql["server"],$sql["username"],$sql["password"]); if ($db) mysql_select_db("wischik_sticky"); // A "cat" page shows just one table of sticks -- for the category // The "new" page shows an optional "new" table of sticks, then the editor's picks, then an optional "top-vote" table. // The "author" page shows just one table, of sticks by that author $tables = array(); if ($viewby=="new") { $sticks=array(); $fn="sticks/new.txt"; if (!file_exists($fn)) $buildok=$buildok && build_cache($username); $buf=file_get_string($fn); if ($buf!="") $sticks=unserialize($buf); if (count($sticks)>0) $tables["Recent sticks"]=$sticks; // $sticks=array(); $fn="sticks/picks.txt"; if (!file_exists($fn)) $buildok=$buildok && build_cache($username); $buf=file_get_string($fn); if ($buf!="") $sticks=unserialize($buf); if (count($sticks)>0) $tables["Editor's picks"]=$sticks; // $sticks=array(); $allsticks=array(); $fn="sticks/all.txt"; if (!file_exists($fn)) $buildok=$buildok && build_cache($username); $buf=file_get_string($fn); if ($buf!="") $allsticks=unserialize($buf); if (count($sticks)>0) $tables["Editor's picks"]=$sticks; if ($db) { $q=mysql_query("SELECT * FROM sticks ORDER BY vote DESC LIMIT 8"); $numtops=mysql_num_rows($q); for ($i=0; $i<$numtops; $i++) { $r=mysql_fetch_assoc($q); if (!isset($r["vote"]) || $r["vote"]==0) continue; $fn = $r["fn"]; if (isset($allsticks[$fn])) {$stick=$allsticks[$fn]; $sticks[]=$stick;} } } if (count($sticks)>0) $tables["Top votes"]=$sticks; } else if ($viewby=="cat") { $fn="sticks/{$viewcat}/index.txt"; if (!file_exists($fn)) $buildok=$buildok && build_cache($username); $buf=file_get_string($fn); if ($buf!="") $sticks=unserialize($buf); if (count($sticks)>0) $tables[$viewcat]=$sticks; } else if ($viewby=="author") { $fn="sticks/all.txt"; if (!file_exists($fn)) $buildok=$buildok && build_cache($username); $buf=file_get_string($fn); if ($buf!="") $sticks=unserialize($buf); global $filterauthor_s; $filterauthor_s=$viewauthor; $sticks=array_filter($sticks,"filterauthor"); if (count($sticks)>0) $tables["Sticks by {$viewauthor}"]=$sticks; } // The topmost table might display the "[admin] [logout] [submit]" panel; other tables won't. $panel=""; if ($username!="" && is_admin($username)) $panel .="$ssid))."\">[@]   "; $panel .="$viewval, "recent"=>"recent", $ssname=>$ssid))."\">[forum]   "; if ($username!="") $panel .="$viewval))."\">[logout]   "; $urlarg=""; if ($viewby=="cat") $urlarg=http_build_query4(array("cat"=>$viewcat, "new"=>"new", $ssname=>$ssid)); else $urlarg=http_build_query4(array("new"=>"new", $ssname=>$ssid)); if ($username!="") $panel .="[submit] "; foreach($tables as $tname=>$sticks) { echo "\n"; echo "\n"; echo "\n"; if ($panel!="") echo "\n"; echo "\n"; $panel=""; // the first few icons are for sub-categories. $rowcount = 0; if ($viewby=="cat") { foreach($categories as $catstruct) { if (!$catstruct["silent"]) continue; $cat = $catstruct["fn"]; $parent = ExtractFilePath($cat); if ($parent!=$viewcat) continue; if ($rowcount==4) {echo "\n\n\n\n"; $rowcount=0;} echo "\n\n"; $rowcount = $rowcount+1; } } foreach($sticks as $stick) { if ($rowcount==4) {echo "\n\n\n\n"; $rowcount=0;} $cat = $stick["cat"]; $fn = $stick["fn"]; $stickname = $stick["stickname"]; $author = $stick["author"]; $edit = ($author!=$username && !is_admin($username)) ? "" : "$cat, "edit"=>$fn, $ssname=>$ssid))."\">*"; // $vote=""; $stkid=""; if (isset($stick["stkid"])) { $stkid = $stick["stkid"]; if ($db && isset($stkid) && $stkid!=-1 && $stkid!="") { $q = mysql_query("SELECT * FROM sticks WHERE stkid={$stkid}"); $r = mysql_fetch_array($q, MYSQL_ASSOC); if (isset($r["vote"])) $vote=(int)($r["vote"]+0.5); mysql_free_result($q); } } if ($username!="" && $stkid!="" && $vote=="") $vote="[vote]"; if ($vote!="" && $vote!="[vote]") $vote=$vote."/5"; if ($stkid!="") $vote="$stkid, $viewkey=>$viewval, $ssname=>$ssid))."\">".$vote.""; if (!$db) $vote=""; // $urlarg = http_build_query4(array("author"=>$author, $ssname=>$ssid)); $attrib = ($author=="") ? "" : "by {$author}.{$edit}
{$vote}"; echo "\n\n"; $rowcount = $rowcount+1; } echo ""; // that ends this table } // ends the "foreach table" // but if no tables were displayed, we still need the panel... if ($panel!="") { echo "\n"; echo "\n"; echo "\n"; echo "
 
".htmlspecialchars($tname)."\n{$panel}\n
$cat, $ssname=>$ssid))."\">"; echo "
"; echo ExtractFileName($cat)."
"; echo "
"; echo "{$stickname}
"; echo "{$attrib}
 
\n{$panel}\n
\n"; $panel=""; } if ($db) mysql_close($db); if ($username=="") { $urlarg=http_build_query4(array($viewkey=>$viewval, $ssname=>$ssid)); echo "\n". "\n". "\n". "\n
 
\n" . "
\n"; echo "

Instructions: click on a stick, and choose \"Open\". Or save it to your computer and then double-click.
\n". "If you don't know what these things are, go to the main page: Dancing Stick Figures.

\n". "

Security note: these sticks are guaranteed safe to download.
\n". "Upon submission, each stick is broken down by the website into its\n". "constituent text and images, checked for anomalies, then zipped up\n". "by the website and renamed from .zip to .stk. It's technically\n". "impossible for any of these sticks to contain malicious content.

\n". "
 
\n"; $us=""; if (isset($REQ["username"])) $us=$REQ["username"]; $pa=""; if (isset($REQ["password"])) $pa=$REQ["password"]; if ($login_failed) echo "

Login failed.

\n"; echo "Username: \n" . "Password: \n" . "\n". "

Registered users can upload their own sticks, and vote and post comments. Register.

\n". "
\n\n"; } ?>