feat: access log config setting and a real get-post-cookie logger

This is a very naive and primitive logger of user requests to the game.
To be used on systems where access to webserver's log data is not
available (especially if the webserver doesn't store POST data as well).

.htaccess

@@ -8,6 +8,11 @@
     Deny from all
 </Files>
 
+<Files "*.log">
+    Order Allow,Deny
+    Deny from all
+</Files>
+
 <Files "installed">
     Order Allow,Deny
     Deny from all

a2b.php

@@ -9,7 +9,10 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
 
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['newdid'])) {

a2b2.php

@@ -10,8 +10,11 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
 
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $amount = $_SESSION['amount'];
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['newdid'])) {

activate.php

@@ -10,7 +10,11 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include('GameEngine/Account.php');
+AccessLogger::logRequest();
+
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html>

ajax.php

@@ -9,6 +9,29 @@
 ##                                                                             ##
 #################################################################################
 
+// even with autoloader created, we can't use it here yet, as it's not been created
+// ... so, let's see where it is and include it
+$autoloader_found = false;
+// go max 5 levels up - we don't have folders that go deeper than that
+for ($i = 0; $i < 5; $i++) {
+    $autoprefix = str_repeat('../', $i);
+    if (file_exists($autoprefix.'autoloader.php')) {
+        $autoloader_found = true;
+        include_once $autoprefix.'autoloader.php';
+        break;
+    }
+}
+
+if (!$autoloader_found) {
+    die('Could not find autoloading class.');
+}
+
+// we need config to determine whether to log access or not
+include_once($autoprefix.'GameEngine/config.php');
+
+use App\Utils\AccessLogger;
+AccessLogger::logRequest();
+
 switch($_GET['f']) {
 	case 'k7':
 	    header('Content-Type: application/json');

allianz.php

@@ -1,8 +1,12 @@
 <?php
 //fix by ronix
+use App\Utils\AccessLogger;
+
 if(isset($_GET['aid']) && !is_numeric($_GET['aid'])) die('Hacking Attemp');
 include ("GameEngine/Village.php");
 include ("GameEngine/Chat.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 $alliance->procAlliance($_GET);
 if(isset($_GET['newdid'])) {

anleitung.php

@@ -9,9 +9,12 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/config.php");
 include("GameEngine/Database.php");
 include("GameEngine/Lang/".LANG.".php");
+AccessLogger::logRequest();
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml">

anmelden.php

@@ -10,12 +10,16 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 if(!file_exists('var/installed') && @opendir('install')) {
     header("Location: install/");
     exit;
 }
 
 include('GameEngine/Account.php');
+AccessLogger::logRequest();
+
 $invited=(isset($_GET['uid'])) ? filter_var($_GET['uid'], FILTER_SANITIZE_NUMBER_INT):$form->getError('invt');
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

banned.php

@@ -9,9 +9,12 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
-$start = $generator->pageLoadTimeStart();
+AccessLogger::logRequest();
 
+$start = $generator->pageLoadTimeStart();
 if($session->access == BANNED){
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

berichte.php

@@ -10,7 +10,11 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 $message->noticeType($_GET);
 $message->procNotice($_POST);

build.php

@@ -10,9 +10,13 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 ob_start();
 include_once("GameEngine/Village.php");
 include_once("GameEngine/Units.php");
+AccessLogger::logRequest();
+
 if(isset($_GET['newdid'])) {
 	$_SESSION['wid'] = $_GET['newdid'];
 	header("Location: ".$_SERVER['PHP_SELF'].(isset($_GET['id'])?'?id='.$_GET['id']:(isset($_GET['gid'])?'?gid='.$_GET['gid']:'')));

celebration.php

@@ -8,7 +8,11 @@
 ##  Copyright:     TravianX (c) 2010-2011. All rights reserved.                ##
 ##                                                                             ##
 #################################################################################
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 if(isset($_GET['newdid'])){
 	$_SESSION['wid'] = $_GET['newdid'];
 	header("Location: ".$_SERVER['PHP_SELF']);

create_account.php

@@ -19,6 +19,7 @@
 
 
 use App\Entity\User;
+use App\Utils\AccessLogger;
 
 global $autoprefix;
 
@@ -34,6 +35,7 @@
 
 include_once ($autoprefix."GameEngine/Session.php");
 include_once ($autoprefix."GameEngine/config.php");
+AccessLogger::logRequest();
 
 
 /**

crop_finder.php

@@ -8,7 +8,10 @@
 | Copyright:     TravianX Project All rights reserved     |
 \*-------------------------------------------------------*/
 
+   use App\Utils\AccessLogger;
+
    include ("GameEngine/Village.php");
+   AccessLogger::logRequest();
 
    if($session->goldclub == 0) {
 	   header("Location: plus.php?id=3");

dorf1.php

@@ -9,7 +9,11 @@
 ##  Copyright:     TravianX (c) 2010-2011. All rights reserved.                ##
 ##                                                                             ##
 #################################################################################
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['ok'])){
 	$database->updateUserField($session->uid,'ok','0','1'); $_SESSION['ok'] = '0';

dorf2.php

@@ -9,7 +9,11 @@
 ##  Copyright:     TravianX (c) 2010-2011. All rights reserved.                ##
 ##                                                                             ##
 #################################################################################
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['newdid'])) {
     $_SESSION['wid'] = $_GET['newdid'];

dorf3.php

@@ -11,7 +11,11 @@
 #################################################################################
 
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['newdid'])) {
     $_SESSION['wid'] = $_GET['newdid'];

impressum.php

@@ -14,9 +14,12 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/config.php");
 include("GameEngine/Database.php");
 include("GameEngine/Lang/".LANG.".php");
+AccessLogger::logRequest();
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml">

index.php

@@ -1,4 +1,6 @@
 <?php
+use App\Utils\AccessLogger;
+
 #################################################################################
 ##                                                                             ##
 ##              -= YOU MUST NOT REMOVE OR CHANGE THIS NOTICE =-                ##
@@ -44,8 +46,11 @@
 {
     die('Security: Please activate security class!');
 }
-include ("GameEngine/Database.php");
-include ("GameEngine/Lang/".LANG.".php");
+
+include_once "GameEngine/Database.php";
+include_once "GameEngine/Lang/".LANG.".php";
+
+AccessLogger::logRequest();
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml">

install/data/constant_format.tpl

@@ -305,6 +305,10 @@ define("MULTIHUNTER",8);
 define("ADMIN",9);
 define("COOKIE_EXPIRE", 60*60*24*7); 
 define("COOKIE_PATH", "/"); 
+define("LOG_PAGE_ACCESS", false);
+define("PAGE_ACCESS_LOG_DATE", true);
+define("PAGE_ACCESS_LOG_IP", true);
+define("PAGE_ACCESS_LOG_FILENAME", 'access.log'); // filename ONLY, no path!
 
 
 ////////////////////////////////////////////

karte.php

@@ -10,8 +10,12 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 if(isset($_GET['z']) && !is_numeric($_GET['z'])) die('Hacking Attempt');
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 if(isset($_GET['newdid'])) {
 	$_SESSION['wid'] = $_GET['newdid'];

karte2.php

@@ -8,8 +8,12 @@
 ##  Copyright:     TravianX (c) 2010-2011. All rights reserved.                ##
 ##                                                                             ##
 #################################################################################
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
-	$building->procBuild($_GET);
+AccessLogger::logRequest();
+
+$building->procBuild($_GET);
 if($session->plus){
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

login.php

@@ -10,13 +10,16 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 if(!file_exists('var/installed') && @opendir('install')) {
     header("Location: install/");
     exit;
 }
 
-error_reporting(E_ALL);
 include("GameEngine/Account.php");
+AccessLogger::logRequest();
+
 if(isset($_GET['del_cookie'])) {
 	setcookie("COOKUSR","",time()-3600*24,"/");
 	header("Location: login.php");

logout.php

@@ -11,7 +11,11 @@
 #################################################################################
 
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Account.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 ?>
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

massmessage.php

@@ -10,7 +10,11 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include_once("GameEngine/Account.php");
+AccessLogger::logRequest();
+
 $max_per_pass = 1000;
 
 if (mysqli_num_rows(mysqli_query($GLOBALS['link'],"SELECT id FROM ".TB_PREFIX."users WHERE access = 9 AND id = ".(int) $session->uid)) != '1') die("Hacking attemp!");
@@ -189,7 +193,7 @@ function toggleDisplay(e){
 <?php echo MASS_UNITS; ?>
 <a href="javascript:toggleDisplay('message_smilies')"><?php echo MASS_SHOWHIDE; ?></a>
 
-<div id="smilll" id="message_smilies" style="background:none repeat scroll 0 0 #EFEFEF;border:1px solid #71D000;left:20px;margin-top:5px;max-width:660px;padding:5px;position:relative;display: none;">
+<div id="message_smilies" style="background:none repeat scroll 0 0 #EFEFEF;border:1px solid #71D000;left:20px;margin-top:5px;max-width:660px;padding:5px;position:relative;display: none;">
 <?php echo MASS_READ; ?>
 <a href="#" onclick="smilie('*u1*')"><img src="img/x.gif" class="uu1" /></a>
 <a href="#" onclick="smilie('*u2*')"><img src="img/x.gif" class="uu2" /></a>

nachrichten.php

@@ -11,10 +11,14 @@
 #################################################################################
 
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 $message->procMessage($_POST);
-if($_GET['t'] == 1){
+if(isset($_GET['t']) && $_GET['t'] == 1){
 	$automation->isWinner();
 }
 if(isset($_GET['newdid'])) {

packages.php

@@ -9,7 +9,11 @@
 ##                                                                             ##
 #################################################################################
 
+use App\Utils\AccessLogger;
+
 include("GameEngine/Village.php");
+AccessLogger::logRequest();
+
 $start = $generator->pageLoadTimeStart();
 $id = $_GET['id'];
 if($session->access != BANNED){