clean post vars

.gitignore

@@ -1 +1,2 @@
 src/config.php
+src/countBattles.txt

src/arenas/Battleship/act.php

@@ -1,6 +1,67 @@
 <?php
+$bots=get_Bots_Array('Battleship');
+
 switch ($_POST['act']){
     case "initGame":
+      //verifier parametres POST       
+	$postParamsWanted=array(
+	      // key,min,max
+	  array('bot1',1,999),
+	  array('bot2',1,999),
+	  array('gridWidth',1,100),
+	  array('gridHeight',1,100),
+	  array('ship1',1,10),
+	  array('ship2',1,10),
+	  array('ship3',1,10),
+	  array('ship4',1,10),
+	  array('ship5',1,10),
+	  array('ship6',1,10)
+	);
+  
+      foreach($postParamsWanted as $p){
+	if(!isset($_POST[$p[0]])){
+	  error (500,'missing parameter');
+	  die;
+	}else{
+	  $value=$_POST[$p[0]];
+	}
+	if (
+		  (!is_numeric($value))
+	      OR  ($value < $p[1])
+	      OR  ($value > $p[2])
+	    )
+	{
+	      error(500,'wrong parameters');
+	      die;
+	}
+	$postValues[$p[0]]=$value;
+		
+      }
+      //check if bots exists
+      $bot1Exists = false;
+      $bot2Exists = false;
+      foreach($bots as $bot){
+	if($bot['id'] == $_POST['bot1']){
+	  $bot1 = $bot;
+	  $bot1Exists =true;
+	}
+	if($bot['id'] == $_POST['bot2']){
+	  $bot2 = $bot;
+	  $bot2Exists =true;
+	}
+	if ($bot1Exists && $bot2Exists){
+	  break;
+	} 
+      }
+      if ((!$bot1Exists) OR (!$bot2Exists)){
+	error (500,"missing parameter";
+      }
+      
+      //vars checked, lets init the initGame 
+	
+	$_SESSION['matchId']=get_unique_id();
+    
+    
         break;
     default:
         break;

src/functions.php

@@ -213,3 +213,16 @@ function save_battle($game,$bot1,$bot2,$resultat){
         '1')
         ON DUPLICATE KEY UPDATE ".$field." = ".$field." + 1;");
 }
+function get_unique_id(){
+  $fp = fopen(__DIR__'countBattles.txt', 'c+');
+  flock($fp, LOCK_EX);
+
+  $count = (int)fread($fp, filesize('count.txt'));
+  ftruncate($fp, 0);
+  fseek($fp, 0);
+  fwrite($fp, $count + 1);
+
+  flock($fp, LOCK_UN);
+  fclose($fp);
+  return $count;
+}