Someone

I am gonna sleep on this one before answering. Could be quite a task for you to implement.

Aha, glad I asked then :) Should be available for all now. Its named Yt Embed on the marketplace   (I am not gonna ask why, to early in the morning config.xml <module name="Embed Youtube Videos")

Experimented with http://www.phpfreechat.net once was good back then, should be better now. In fact I think Ill add this to my list of modules I want to make. Integration of phpfreechat.net into NWE. Though php is not optimal for chats I think. Never liked IRC oh well Edit: I think that might be the wrong chat, the parrot looked so familiar

btw what is State: On Edit in the nw-engine.com module panel?

Thanks, up early I see :)

$mtid = mysql_query("SELECT topicid FROM game_topic WHERE date2='$clock2'"); Prob wont help but worth a try. I think you need to look at the database connection. As I dont think a connection has been made, nor a database selected. Changing this will lead to a chain reaction, and when that is done. mysql_query is decapitated in PHP 5.5.0 Purhasp someone who is working with this engine will be able to help

Ooops did not read that fully. You digging up 1996 or something.   $mtid = mysql_query("SELECT topicid FROM game_topic WHERE date2=\"$clock2\""); // possibley not needed ine 45 $mtid = mysql_result($maxtopic_id,"mtid");   If that fails, post me the database connection details, usually in a file named something like db.php or config.php

Thanks, made the changes and sent update to marketplace. Middle of the night in Switzerland, so new version might not be approved for a while.

Do as it says :)   $maxtopic_id = mysql_query($db_name, "SELECT topicid FROM game_topic WHERE date2=\"$clock2\"");   I _think_ the other error will sort it self. In general, when getting such error, just Google the first part of the error (IE: Deprecated: mysql() [function.mysql]: This function is deprecated; use mysql_query() instead in), without the custom to you data. Millions have prob had the issue before you did.

Exactly, like a car alarm. It does not stop people from stealing your car. But the average car thief will rather steal the one parked around the corner without one.

You faithfully pop up whenever there is security talk I see. So I should not spend any time, checking of the version of tinyMCE that comes with NWE is secure, because it will be faster to restore a backup. I see it as I am having a responsibility of the data entrusted me by my sites users. And I secure my server as good as I can to my knowledge.   Point them out, and I will fill them on _my_version of the engine, and share the updates with others in this community. So much text, and yet you offer no advice.

I get why you did it, and yes, if/when it gets popular, they will rip apart the engine to find flaws. Hopefully there none there, but well, pentagon get hacked from to time. But when you redirect, you tell anyone scanning your site, hey there is something in this folder, apply more scanning for files here Speaking of security, in my server logs on one of my sites, something that is popular to scan for is tinyMCE (3rd party scripts for improved text areas), apparentyl some versions of tinyMCE has security risks (I have not reason to think this applies to the version that comes with NWE, I have not checked it out yet, just something to be aware of)

Do not have the . in the brackets. And when using php you can use [.php] instead of [.code], again no dots. If you use the go advanced button,you can mark text, and get the BB code added around it

haha, there is another option   //Shuts php up error_reporting(0); //or, this will still give you errors, but not warnings error_reporting(E_ERROR);   If that is in a file, it will not provide error reporting. Say if its in a file like db.php or functions.php Also, perhaps consider to use a more up-to date engine. Just read this thread http://makewebgames.io/showthread.php/41888-Grpg-Worth-working-on

A form of .htaccess failsafe. It would tell potential hackers that there is something in that folder though. Perhaps the header should give 404 instead, just as it would if there was nothing there.

Think we need to add the /i to those lines that throw a fit then, an example //$text = eregi_replace("\\[size([^\\[]*)\\]([^\\[]*)\\[/size\\]","<font size=\"\\1px\">\\2</font>",$text) $text = preg_match("\\[size([^\\[]*)\\]([^\\[]*)\\[/size\\]/i","<font size=\"\\1px\">\\2</font>",$text) I am no expert on expressions, in fact I find them very confusing and coming straight from hell, but there seems to be a lot of slashes in there, but if it works it works.

All ereg_replace( can be replaced by preg_match( All eregi_replace( <-- note the i can also be replced by preg_match( but, you should add /i to the first argument, if its suppose to be case insensitive. Think you can ignore that here, and just replace all eregi_replace( with preg_match(

Think I found it, change the file theme/information_bar.php line 18 to: if(empty($gang)){ echo $lang_no_gang; }else{ echo "<a href=\"page.php?page=view_gang&name=". $gang ."\" onFocus=\"if(this.blur)this.blur()\" >".$gang."</a>"; }?>

On what page are you clicking the link that leads to the 404 error?

Try this $ids_checkpost=urldecode($_SERVER['QUERY_STRING']); if(preg_match("[\'|'/'\''<'>'*'~'`']",$ids_checkpost) || strstr($ids_checkpost,'union') || strstr($ids_checkpost,'java') || strstr($ids_checkpost,'script') || strstr($ids_checkpost,'substring(') || strstr($ids_checkpost,'ord()')){ Send_Event(1, "".$user_class->formattedname." <b> Tried to use [".$_SERVER['SCRIPT_NAME']."{$ids_checkpost}] ");

Djkanna explained it very well. And yes, as for just displaying the avatar I would not use the hook. Its the only module that comes with NWE that uses the hook, so changed the sample file to make it faster for Alain to look into. When speaking of avatars, perhaps there should be away to get the avatar url only, without the image HTML tag. Added to modules/avatar/lib.php function GetAvatarUrl ($user) { global $baseDir; $uid = FindUser($user); if ($uid == null) return; if (file_exists("$baseDir/modules/avatar/images/$user.png")){ return "index.php?p=avatar&display=$uid"; } else { return null; } }   Why? What if you want a class/id added to the avatar image Or want width/height in the attributes. I know that I am not dependent on having this in that file, I can add it myself through another module lib or a number of other ways. But I see a potential where several module makers have their own version of that function included for that purpose.

As it is now, if you are to use the hook, you are limited to having a table with 2 columns to display the data. This way you can choose how to present the data however you like. Be it a 4 column table or no table at all. Its up to each game owner how to present the data in their player profile page. EDIT: My point is, I dont think anyone , ever, will use the hook player_stats as it is now in a game. ANd if it is to be changed, its best to have it done before modules rely on the format of the hook. Does this look good? [ATTACH=CONFIG]843[/ATTACH]

I can appreciate the simplicity, but here is a suggestion for increased usability. modules/view_player/content.php (around line 62) global $profileStats; $profileStats = array(); RunHook("player_info.php", 'profileStats'); foreach($profileStats as $k => $v){ echo '<tr><td><b>'.$profileStats[$k]['statName']."</b></td><td>".$profileStats[$k]['statValue'].'</td></tr>'; } echo "</table>";   modules/avatar/player_info.php Its the only module using the player_info hook, so no worries about compatibility. This requires the change to DisplayAvatar mentioned above.   <?php if (file_exists("$baseDir/modules/avatar/images/" . ($_GET["id"] + 0) . ".png")) { $profileStats[] = array( 'statName' => str_replace(" ", " ", Translate("Avatar")), 'statValue' => DisplayAvatar($_GET["id"], true) ); }   The array $profileStats will look like: Array ( [0] => Array ( [statName] => Avatar [statValue] => <img src='index.php?p=avatar&display=2&token=194bc652595a0ffc3435092589eb5d65'> ) [1] => Array ( [statName] => Test Stat Name [statValue] => Test Stat Value ) )

I have been editing modules/forum/content.php for 3 hours now, still the makewebgames.io forums dont change. What am I doing wrong?

I had actually not read the license agreement before now :o Generous of you to not limit to 1 domain/ip + off-line(non public) development and testing versions. What could happen is that anyone brought in to help on a game, could take the key, and use on their own site. Anyone doing such a thing would prob not have a "verify it" link on their site anyways. Perhaps we should see in our nw-engine account, where the license have been used. I know piracy cant be stopped, but at least they wont be running a valid license.