<?php defined('SYSPATH') OR die('No Direct Script Access');
Class Controller_Functions extends Controller_Template
{
public function action_submit()
{
if (isset($_GET['name']))
{
if (!is_numeric($_GET['manliness']))
{
$error = 'Value of manliness not a number.';
}
else if (!is_numeric($_GET['richliness_reward']))
{
$error = 'Richliness reward not a number.';
}
else if (!is_numeric($_GET['manliness_reward']))
{
$error = 'Manliness reward not a number.';
}
else
{
list($insert_id, $num_rows) = DB::query(Database::INSERT,
'INSERT INTO hardcore_enemies (
name, manliness, richliness_reward, manliness_reward, richliness_penalty, manliness_penalty, author)
VALUES (
:name, :manliness, :richliness_reward, :manliness_reward, :richliness_penalty, :manliness_penalty, :author)')
->parameters(array(
':name' => $_GET['name'],
':manliness' => $_GET['manliness'],
':richliness_reward' => $_GET['richliness_reward'],
':manliness_reward' => $_GET['manliness_reward'],
':richliness_penalty' => $_GET['richliness_penalty'],
':manliness_penalty' => $_GET['manliness_penalty'],
':author' => $_GET['author'],
))
->execute();
$return = array(
"success" => true,
"name" => mysql_real_escape_string($_GET['name'])
);
}
}
$return = array(
"success" => false,
"err" => $error
);
echo json_encode($return);
}
}
?>
