Script47

Thanks for all the feedback Dayo, will look in to it all! :)   I completely understand what your saying, and I just want to say that comment was mostly based toward NationGamer for assuming I just copied and pasted it without looking in to it or actually creating new things. Because it really doesn't take three days to copy & paste something. I was looking in to code properly and not just giving my self (like you said) a false sense of thinking that I know what I'm doing.   Yeah that's where why I started here! :)

  Okay, I can't be bothered starting a fully blown argument, so I'll tell you, Firstly I wrote all the code out on my own. I never copy & paste code. Secondly I didn't change the pictures because I just wanted to make it "different" or so nobody could recognise it, it's because it made more sense that your avoiding skulls not the smilies. Thirdly I made the score system my self as well as the restart game part with a lot of researching on stackoverflow and various other sites. I also looked up each part of the code which I didn't understand a rewrote it where I could. Also I clearly put:   So I thought that would make it clear that It's not going to be all my code, also the changes I am making will make sure it will be different. I only looked through the first tutorial properly the second one I was skim reading so it was basically some of my code the third tutorial I didn't read. To clarify I have never and won't take anybody's work without their permission and thank them where I see fit. If you would take a look at some of my other creations I have thanked everyone who may have helped even if they just added a tiny bit. So please don't go throwing accusations saying I have taken his code, seeing as you read the articles, did the author extensively say that you can't use the code? No he didn't he actually he wrote thing for you to try to improve the game, setting challenges. So by that I'm sure you will be able to guess that he is actually allowing you to use the code, no? I am still fixing the bugs and code AND adding new features so it will be my game. Thanks for pointing some bugs Alain I will start fixing them. Thanks for all the feedback guys! :)

What was your score(s). :)

So I started Javascript and though I might as well dive straight in to the main stuff. So I looked at a tutorial which taught how to make a game. I made this game called Avoid Me (as you may or may not have guessed) in three days, it's no where near perfect so please point of any bugs. I am still adding new features to it and I will keep you updated, tell me what you think of it. Post your high scores so I can add them to the list after I make the high score system! Next on the updates list:   Local & Global high score system Intergrate chat   Avoid Me

I mean, you know how you get htmlspecialchars() strip_tags() in PHP is there things like that in JS?

So is there no way to actually use JS to secure it?

I was thinking this so if you have a JS game, you would always need server side checks right?

I was wondering what are the best method(s) to secure user input using Javascript?

Yeah, It was missing a curly brace one the first piece of code and as you said it wasn't the full code that's probably why you got the error after you added it to all of it.

Was missing a curly brace, try this:   <?php include_once(DIRNAME(__FILE__) . '/globals.php'); if (!isset($_GET['action'])){ print "<h3>Honor Awards</h3> <h2><a href='HonorExchange.php'> <font color = blue>Exchange Your awards here!</a> </h3> <font color = tan>Level Awards. ** <a href='h2.php?action=level5'>Level 5 Honor Award</a> ** <a href='h2.php?action=level10'>Level 10 Honor Award</a> ** <a href='h2.php?action=level15'>Level 15 Honor Award</a> ** <a href='h2.php?action=level20'>Level 20 Honor Award</a> ** <a href='h2.php?action=level25'>Level 25 Honor Award</a> ** <a href='h2.php?action=level30'>Level 30 Honor Award</a> ** ** ** Money Awards. ** <a href='h2.php?action=1mill'>1 million cash</a> ** <a href='h2.php?action=5mill'>5 million cash</a> ** <a href='h2.php?action=10mill'>10 million cash</a> ** <a href='h2.php?action=20mill'>20 million cash</a> ** <a href='h2.php?action=50mill'>50 million cash</a> ** <a href='h2.php?action=100mill'>100 million cash</a> ** ** ** Gang Awards. ** <a href='h2.php?action=g100'>100 Days in Gang</a> ** <a href='h2.php?action=g200'>200 Days in Gang</a> ** <a href='h2.php?action=g300'>300 Days in Gang</a> ** <a href='h2.php?action=g400'>400 Days in Gang</a> ** <a href='h2.php?action=g500'>500 Days in Gang</a> ** ** ** Donator Awards. ** <a href='h2.php?action=d150'>150 Donator Days</a> ** <a href='h2.php?action=d200'>200 Donator Days</a> ** <a href='h2.php?action=d300'>300 Donator Days</a> ** <a href='h2.php?action=d400'>400 Donator Days</a> ** <a href='h2.php?action=d500'>500 Donator Days</a> ** </a>"; } if($_GET['action']=='level5') { if ($ir['level'] <5) { echo "You need to be level 5 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level5'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award one time! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level5')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations or reaching level 5. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='level10') { if ($ir['level'] <10) { echo "You need to be level 10 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level10'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award one time! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level10')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations or reaching level 10. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='level15'){ if ($ir['level'] <15) { echo "You need to be level 15 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level15'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level15')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations or reaching level 15. You have been credited with one honor award."; print "<a href='h2.php;>Back to Honor Awards</a> "; } } if($_GET['action']=='level20'){ if ($ir['level'] <20) { echo "You need to be level 20 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level20'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level20')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations or reaching level 20. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='level25'){ if ($ir['level'] <25) { echo "You need to be level 25 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level25'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level25')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations or reaching level 25. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='level30'){ if ($ir['level'] <30) { echo "You need to be level 30 to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='level30'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'level30')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations on reaching level 30. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='5mill'){ if (($ir['money']+$ir['bankmoney']) <5000000) { echo "You need to have 5 million in your bank and/or onhand to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='5mill'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'5mill')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations on having collected 5 million. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='10mill'){ if (($ir['money']+$ir['bankmoney']) <10000000) { echo "You need to have 10 million in your bank and/or onhand to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='10mill'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'10mill')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations on having collected 10 million. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='20mill'){ if (($ir['money']+$ir['bankmoney']) <20000000) { echo "You need to have 20 million in your bank and/or onhand to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='20mill'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'20mill')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations on having collected 20 million. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='50mill'){ if (($ir['money']+$ir['bankmoney']) <50000000) { echo "You need to have 50 million in your bank and/or onhand to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } $gh=mysql_query("SELECT * FROM honorawards WHERE userid=$userid AND list='50mill'",$c); if(mysql_num_rows($gh)) { print "You have already recieved that award you can only recieve each award once! "; print "<a href='h2.php'>Back to Honor Awards</a> "; $h->endpage(); } else { mysql_query("INSERT INTO honorawards values ($userid,'50mill')",$c); mysql_query("UPDATE users SET honor=honor+1 WHERE userid=$userid",$c); print "Congratulations on having collected 50 million. You have been credited with one honor award."; print "<a href='h2.php'>Back to Honor Awards</a> "; } } if($_GET['action']=='100mill'){ if (($ir['money']+$ir['bankmoney']) <100000000) { echo "You need to have 100 million in your bank and/or onhand to access here..."; echo " <a href='h2.php'>Go Back to Honor Awards</a> "; $h->endpage(); } }

Very nice man, good job! :)

Ah that is quite cool, and simple, nice!

Thanks Dave & Dayo, will look in to it, is it popular?

Well I've been told to, but I didn't end up doing so, should I?

Don't know if anyone is still interested but I have updated this again, so please check it out. Mainly some bug fixes and made it a bit more secure.

Yes please! I would really appreciate it man. :)

Pfft, "Ain't much of a designer myself". That looks awesome man! :D How long did it take you? Oh and updated that error, thanks for the bug report.

Nice, Kyle, good to see you going back to coding modules man! :)

So I thought I would make a To-Do List application which people can download and install to local/online servers and can keep track of all the projects/tasks they are currently doing. Very easy installation and secure code. Feel free to be as critical providing you are constructive. :p The design may look "80's" or older lol but I'm working on it still hopefully this will only be a temporary look. Also I have been told design looks odd in different browsers for some reason which I don't currently know.   Edit/Notice Being new to CSS I never knew I had to make sure the site would work on the resolution which the users is using so currently that's the issue. So if the site seems broken that's the reason. Sorry in advance!   Chrome: Fine I.E: Fine Firefox: Uncomfirmed   What languages did I use?   HTML PHP PDO CSS   Spotted any bugs? Post here and I will fix! Thanks in advance for any reports. :) Demo: To-Do List (Note you may be given a stupid warning about phishing scam or something It's not true and I have reported incorrect warning to google now waiting for them to sort it out.)

I uploaded a few too, all for free.

Looks neat! :)

I thought of something like this and started coding it, then stopped. If you like I could help/show you that code if I can dig it out? (If I had a copy on my USB I will check)

That's what they all say... :p Anyway it's looks really good man, good job!

My mistake, I thought he meant something else. What does he mean?

I started using it, I converted a project to it, and will hopefully write any new projects in PDO. If you need any help do ask! :) PDO Tutorial