| blob | 80dadab05867f31d2457c62abd9604459339d609 |
1 /*
2 * Copyright (C) 2005,2006 MaNGOS <http://www.mangosproject.org/>
3 *
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 2 of the License, or
7 * (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, write to the Free Software
16 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
17 */
19 /// \addtogroup mangosd
20 /// @{
21 /// \file
34 #ifdef ENABLE_CLI
40 /// Storage structure for commands
42 {
44 pCliFunc Func;
48 //func prototypes must be defined
70 /// Table of known commands
72 {
89 {"idleshutdown", & CliIdleShutdown,"Shutdown server with some delay when not active connections at server"},
92 };
93 /// \todo Need some pragma pack? Else explain why in a comment.
94 #define CliTotalCmds sizeof(Commands)/sizeof(CliCommand)
96 /// Reload the scripts and notify the players
98 {
106 }
108 /// Delete a user account and all associated characters in this realm
109 /// \todo This function has to be enhanced to respect the login/realm split (delete char, delete account chars in realm, delete account chars in realm then delete account
111 {
112 ///- Get the account name from the command line
115 {
116 // \r\n is used because this function can also be called from RA
119 }
121 ///- Escape account name to allow quotes in names
125 ///- Get the account ID from the database
127 // No SQL injection (account_name escaped)
128 QueryResult *result = loginDatabase.PQuery("SELECT `id` FROM `account` WHERE `username` = '%s'",safe_account_name.c_str());
131 {
134 }
140 ///- Circle through characters belonging to this account ID and remove all characters related data (items, quests, ...) from the database
141 // No SQL injection (account_id is db internal)
145 {
146 do
147 {
152 // kick if player currently
168 }
170 ///- Remove characters and account from the databases
174 loginDatabase.PExecute("DELETE FROM `account` WHERE `username` = '%s'",safe_account_name.c_str()) &&
181 }
183 /// Broadcast a message to the World
185 {
190 }
192 /// Print the list of commands and associated description
194 {
197 }
199 /// Exit the realm
201 {
204 }
206 /// Shutdown the server (with some delay) as soon as no active connections remain on the server
208 {
212 {
215 }
218 {
220 }
221 else
222 {
226 ///- Prevent interpret wrong arg value as 0 secs shutdown time
228 {
231 }
234 }
235 }
237 /// Shutdown the server with some delay
239 {
243 {
246 }
249 {
251 }
252 else
253 {
256 ///- Prevent interpret wrong arg value as 0 secs shutdown time
258 {
261 }
264 }
265 }
267 /// Display info on users currently in the realm
269 {
270 ///- Get the list of accounts ID logged to the realm
271 // No SQL injection. RealmID is uint32
272 QueryResult *resultDB = sDatabase.Query("SELECT `name`,`account` FROM `character` WHERE `online` > 0");
275 {
278 }
284 ///- Circle through accounts
285 do
286 {
291 ///- Get the username, last IP and GM level of each account
292 // No SQL injection. account is uint32.
297 {
303 }
304 else
311 ///- Display the list of account/characters online
321 }
323 /// Display a list of banned accounts and ip addresses
325 {
326 ///- Get the list of banned accounts and display them
328 QueryResult *result2 = loginDatabase.Query( "SELECT `username` FROM `account` WHERE `banned` > 0" );
330 {
332 do
333 {
338 }
340 ///- Get the list of banned IP addresses and display them
343 {
345 do
346 {
351 }
354 }
356 /// Ban an IP address or a user account
358 {
359 ///- Get the command parameter
362 {
365 }
367 // Is this IP address or account name?
371 {
374 else
376 }
377 else
378 {
380 }
381 }
383 /// Display %MaNGOS version
385 {
386 //<--maybe better append to info cmd
388 }
390 /// Unban an IP adress or a user account
392 {
393 ///- Get the command parameter
400 ///- If this is an IP address
403 else
405 }
407 /// Display the list of GMs
409 {
411 ///- Get the accounts with GM Level >0
414 QueryResult *result = loginDatabase.Query( "SELECT `username`,`gmlevel` FROM `account` WHERE `gmlevel` > 0" );
416 {
423 ///- Circle through them. Display username and GM level
424 do
425 {
433 }
434 else
435 {
437 }
438 }
440 /// Set the GM level of an account
442 {
443 ///- Get the command line arguments
447 {
450 }
455 {
458 }
460 //wow it's ok,let's hope it was integer given
463 ///- Escape the account name to allow quotes in names
467 ///- Try to find the account, then update the GM level
468 // No SQL injection (account name is escaped)
469 QueryResult *result = loginDatabase.PQuery("SELECT 1 FROM `account` WHERE `username` = '%s'",safe_account_name.c_str());
472 {
473 // No SQL injection (account name is escaped)
474 loginDatabase.PExecute("UPDATE `account` SET `gmlevel` = '%d' WHERE `username` = '%s'",lev,safe_account_name.c_str());
478 }
479 else
480 {
482 }
483 }
485 /// Create an account
487 {
488 //I see no need in this function (why would an admin personally create accounts
489 //instead of using account registration page or accessing db directly?)
490 //but still let it be
492 ///- %Parse the command line arguments
495 {
498 }
501 {
504 }
509 {
512 }
514 ///- Escape the account name to allow quotes in names
518 ///- Check that the account does not exist yet
519 QueryResult *result1 = loginDatabase.PQuery("SELECT 1 FROM `account` WHERE `username` = '%s'",safe_account_name.c_str());
522 {
526 }
528 ///- Also escape the password
532 ///- Insert the account in the database (account table)
533 // No SQL injection (escaped account name and password)
535 if(loginDatabase.PExecute("INSERT INTO `account` (`username`,`password`,`gmlevel`,`sessionkey`,`email`,`joindate`,`banned`,`last_ip`,`failed_logins`,`locked`) VALUES ('%s','%s','0','','',NOW(),'0','0','0','0')",safe_account_name.c_str(),safe_password.c_str()))
536 {
537 ///- Make sure that the realmcharacters table is up-to-date
538 loginDatabase.Execute("INSERT INTO `realmcharacters` (`realmid`, `acctid`, `numchars`) SELECT `realmlist`.`id`, `account`.`id`, 0 FROM `account`, `realmlist` WHERE `account`.`id` NOT IN (SELECT `acctid` FROM `realmcharacters`)");
540 }
541 else
542 zprintf("User %s with password %s NOT created (probably sql file format was updated)\r\n",szAcc,szPassword);
544 }
546 /// Command parser and dispatcher
548 {
558 ///- Get the command and the arguments
563 ///- Circle through the command table and invoke the appropriate handler
566 {
569 }
571 ///- Display an error message if the command is unknown
574 }
576 /// Kick a character out of the realm
578 {
582 {
585 }
591 }
593 /// Display/Define the 'Message of the day' for the realm
595 {
598 {
601 }
602 else
603 {
606 }
607 }
609 /// Comment me
610 /// \todo What is CorpsesErase for?
612 {
614 }
616 /// Set the level of logging
618 {
621 {
624 }
626 }
628 /// %Thread start
630 {
631 ///- Init new SQL thread for the world database (one connection call enough)
636 ///- Display the list of available CLI functions then beep
638 /// \todo Shoudn't we use here also the sLog singleton?
642 {
644 }
646 ///- As long as the World is running (no World::m_stopEvent), get the command line and handle it
648 {
653 {
656 {
659 }
660 //// \todo Shoudn't we use here also the sLog singleton?
662 }
664 {
666 }
667 }
669 ///- End the database thread
671 }
672 #endif
673 /// @}