Web Based PH Char Mover (Stuck)

Lillu · #1 08-17-2009, 05:22 PM

and yes, last ip would be awesome to have for some other reason too. hard to update the banned ip list from logs..

**trevius** · #2 08-17-2009, 07:38 PM

PEQ used to have their character mover tool available for download somewhere, but I can't seem to find it anymore. That is the one I use as well, and all you do to authenticate is enter the account name and character name you want to move. Basically, account names are private enough that it shouldn't be much of an issue. Plus, it isn't the end of the world if someone moved your character to Nexus, as long as they aren't doing it non-stop just to harass you.

The last_ip field would be awesome to have in the accounts table. I have been wanting to get one added for a long time now. I just haven't had time to really look into it. It would just make getting rid of the bad eggs and tracking people down much easier.

**Shin Noir** · #3 08-18-2009, 06:59 AM

I'll write the code for it and see if the devs want it, since it's essentially done in the VZTZ source.

Seems original maker of "Custom" php all in one tools contacted me, will try to commit my changes and throw this char ph mover tool in.

Char mover isn't really that tough code wise, it's just getting it hackproof and having an authentication method that can be a little tedious due to the PEQ/EQEMU SVN source structure right now. Working on it though. Will likely use the lastlogin_ip field for testing on IP authenticated char_move.

I've been thinking of a "Who's online" tool too. I actually have it partially coded on my source, but my method of counting players online is a bit hackjob. I have a feeling one of the veteran coders can direct me on a better route to get an accurate online count.

If you click my "Claws of Veeshan" picture below, you can see an in game spy tool I have been partially working on. The syncronization needs some work, but it's displaying PvP messages and OOC broadcasts from in game into an AJAX controlled (auto-refreshes) in game spy tool on the website.

**Shin Noir** · #4 08-18-2009, 07:05 AM

The 'password' columns is only used in minilogin based systems (Or maybe if you run your own EQEMULogin? not sure), you could populate a password in there but how do you authenticate who can set a password there? /ponder..

Lillu · #5 08-18-2009, 01:29 PM

couldn't think of a way to populate the pw field automatically. maybe if we could populate it using the LS account names. then we would have the LSusername and Charname combo to authenticate.. like in the peq version of this tool what Trev mentioned. I saw that SH and Peq server uses the same authentication (LS username + charname) too.
but then again, it could be a security hole, since the default templates tool coming with emu uses the pw field to authenticate, and that is often public. I'm afraid I can't provide any good idea..

Trev, any luck finding the source?

**Shin Noir** · #6 08-18-2009, 05:16 PM

Quote:

Originally Posted by trevius

The last_ip field would be awesome to have in the accounts table. I have been wanting to get one added for a long time now. I just haven't had time to really look into it. It would just make getting rid of the bad eggs and tracking people down much easier.

Maybe peek @ http://www.eqemulator.net/forums/showthread.php?t=29269

**cavedude** · #7 08-21-2009, 01:47 PM

Quote:

Originally Posted by trevius

PEQ used to have their character mover tool available for download somewhere, but I can't seem to find it anymore. That is the one I use as well, and all you do to authenticate is enter the account name and character name you want to move. Basically, account names are private enough that it shouldn't be much of an issue. Plus, it isn't the end of the world if someone moved your character to Nexus, as long as they aren't doing it non-stop just to harass you.

The last_ip field would be awesome to have in the accounts table. I have been wanting to get one added for a long time now. I just haven't had time to really look into it. It would just make getting rid of the bad eggs and tracking people down much easier.

It's here: http://www.projecteq.net/phpBB2/viewtopic.php?t=3199

We lost it when we upgraded, so I restripped the file and reposted. Sorry about that!

Lillu · #8 08-21-2009, 01:53 PM

Thank you Sir!

kaos00723 · #9 05-11-2010, 03:43 PM

I'm having trouble getting this to work correctly.

For some reason it works fine for the 1st admin account but will not work using any other accounts or character names.

I know I'm typing the loginserver name and character names correctly but I'm still getting "Character Name Incorrect! Aborting...".

I don't understand why it works for the admin account and not any others.

Can someone that uses this script please help me out? I'm using the latest PEQ database from the SVN.

Thanks!

Lillu · #10 05-11-2010, 03:47 PM

It's case sensitive.

kaos00723 · #11 05-11-2010, 03:57 PM

Yes, I've tried using case sensitive names and the whole works but it's still a no go.

It only goes to step 3 with the admin account and won't get to step 2 for any other accounts without giving me the error.

Also, although it said successful for the admin account, it didn't move that character from his current zone into the Nexus.

So there's a couple things wrong.

Here's the file I'm using:

Code:

<?php
if (!ISSET($_POST['action'])) {
?>
<table align="center">
<tr>
<td><b><font size="4">Use this tool to move your character to the 

Nexus if you are stuck in-game.</font></b></td>
</tr>
</table>
<FORM ACTION="PEQ-Char-Move.php?action=process" METHOD="post">
<table width='300' cellpadding='0' cellspacing='2' border='0' 

align='center' >
	<tr>
	</tr>
	<tr>
		<td colspan=2>&nbsp </td>
	</tr>
	<tr>
		<td colspan=2><INPUT TYPE="hidden" NAME="s_id" 

value=<?php echo "\"".session_id()."\""; ?>></td>
	</tr>
	<tr>
		<td colspan=2><INPUT TYPE="hidden" NAME="action" 

value="process"></td>
	</tr>
	<tr>
		<td><b><font size="-1">LoginServer Username: 

</font></b></td>
		<td><font color="#000080"><INPUT TYPE="text" 

NAME="lsusername" ></font></td>
	</tr>
	<tr>
		<td><b><font size="-1">Character Name: 

</font></b></td>
		<td><font color="#000080"><INPUT TYPE="text" 

NAME="charname" ></font></td>
	</tr>
	<tr>
		<td colspan=2>&nbsp </td>
	</tr>
	<tr>
		<td colspan='2' align='center'><INPUT TYPE="submit" 

NAME="SUBMIT" VALUE="Next..."></td>
	</tr>
</table>
  </form>
<?php
} else {
   if ($_POST['action'] == 'process') {
        if (session_id() != $_POST['s_id']) {
                echo "Session IDs do not match!  Aborting...";
                echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";
                exit;
        }
	$lsusername = $_POST['lsusername'];
	$charname = $_POST['charname'];
	$zonename = "nexus";

        $mhost = '127.0.0.1';
        $muser = 'myusername';
        $mpass = 'mypassword';
        $mdb = 'peq';

        // Connects to database
    $link = mysql_connect($mhost, $muser, $mpass) or die 

(mysql_error());
    mysql_select_db($mdb, $link) or die (mysql_error());

###Character Query###
    $query =  "SELECT account_id,name FROM character_ WHERE 

name='$charname'";
    $cresult = mysql_query($query);
    if (mysql_num_rows($cresult) != 1) {
             echo "Character Name Incorrect!  Aborting...";
             echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";
     } else {
while ($char = mysql_fetch_array($cresult)) {
        $account_id = $char['account_id'];
        $ccharname = $char['name'];

###LoginServer Query###
    $query2 =  "SELECT id,name FROM account WHERE id='$account_id'";
    $lsresult = mysql_query($query2);
    if (mysql_num_rows($lsresult) != 1) {
             echo "LoginServer Data Incorrect!  Aborting...";
             echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";
     } else {
while ($ls = mysql_fetch_array($lsresult)) {
        $id = $ls['id'];
        $lsname = $ls['name'];

###Zone Query###
    $query3 =  "SELECT * FROM zone WHERE short_name like 

'$zonename'";
    $zresult = mysql_query($query3);
    if (mysql_num_rows($zresult) != 1) {
             echo "Zone Data Incorrect!  Aborting...";
             echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";
     } else {
while ($zid = mysql_fetch_array($zresult)) {
        $short_name = $zid['short_name'];
        $long_name = $zid['long_name'];
        $zoneidnumber = $zid['zoneidnumber'];

    if  ($lsusername != $lsname) {
             echo "Incorrect, this has been logged!  Aborting...";
             echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";




     } else {
?>
<FORM ACTION="?action=postdata" METHOD="post">
<table width='300' cellpadding='0' cellspacing='2' border='0' 

align='center'>
<tr bgcolor="#006600">
	<td colspan=2 align="center">
		<font size="+2" color='#ffffff'><b>STEP 2 OF 

3</B></font>
	</td>
</tr>
<tr>
	<td colspan=2><INPUT TYPE="hidden" NAME="s_id" value=<?php 

echo "\"".session_id()."\""; ?>></td>
</tr>
<tr>
	<td colspan=2><INPUT TYPE="hidden" NAME="action" 

value="postdata"></td>
</tr>
<tr>
	<td colspan=2>&nbsp </td>
</tr>
<tr>
	<td colspan=2>
		<INPUT TYPE="hidden" NAME="lsusername" value=<?php 

echo "\"".$lsusername."\""; ?>>
		<INPUT TYPE="hidden" NAME="charname" value=<?php echo 

"\"".$charname."\""; ?>>
		<INPUT TYPE="hidden" NAME="zoneid" value=<?php echo 

"\"".$zoneidnumber."\""; ?>>
	</td>
</tr>
<tr>
	<td><b>LoginServer Name: </b></td>
	<td>Confirmed: <? echo $lsname; ?></td>
</tr>
<tr>
	<td><b>Character Name: </b></td>
	<td>Confirmed: <? echo $ccharname; ?></td>
</tr>
<tr>
	<td><b>Zone Name: </b></td>
	<td>Confirmed Zone: <? echo $zonename; ?>, <? echo 

$long_name; ?></td>
</tr>
<tr>
	<td colspan=2><input type=submit value="DO IT!"></td>
</tr>
</table>
</form>
</center>
<?php
}}}
}
}
}
} // end step 2
   } else {
        if (session_id() != $_POST['s_id']) {
                echo "Session IDs do not match!  Aborting...";
                echo "<a href=\"upload.php\">Go back</a>";
                exit;
        }
        $lsusername = $_POST['lsusername'];
        $charname = $_POST['charname'];
        $zoneid = 152;
	$zone = "nexus";

        $mhost = '127.0.0.1';
		$muser = 'myusername';
		$mpass = 'mypassword';
        $mdb = 'peq';


        // Connects to database
    $link = mysql_connect($mhost, $muser, $mpass) or die 

(mysql_error());
    mysql_select_db($mdb, $link) or die (mysql_error());
  $query = "UPDATE character_ SET zonename='$zone',zoneid=$zoneid,x=

-1,y=-1,z=-1 WHERE name='$charname'";
    $result = mysql_query($query);
    if (!$result) {
            echo "Update  Error";
             echo "<a href=\"PEQ-Char-Move.php\">Go back</a>";
             exit;
     }


?>
<table width='300' cellpadding='0' cellspacing='2' border='0' 

align='center'>
<tr>
	<td colspan=2 bgcolor='#006600' align="center">
		<font size="+2" color='ffffff'><b>    STEP 3 OF 

3</B></font>
	</td>
</tr>
<tr>
	<td> <?echo $charname; ?> has been moved to <? echo $zone; ?

></td>
</tr>
</table>
<a href="http://www.projecteq.net">Back</a> to Projecteq.net
<?php
}
}
?>

Does anything look wrong in there?

Thanks for the help!

Longdarkhair · #12 10-31-2010, 12:08 AM

Quote:

Originally Posted by cavedude

It's here: http://www.projecteq.net/phpBB2/viewtopic.php?t=3199

We lost it when we upgraded, so I restripped the file and reposted. Sorry about that!

Is that board private? Can't access this link =/

**bad_captain** · #13 10-31-2010, 12:19 AM

it is now

http://www.peqtgc.com/phpBB2/viewtopic.php?t=3199

Longdarkhair · #14 10-31-2010, 12:51 AM

Thanks a ton!=)