2010-07-01 23:48:07 +00:00
< ? php
2013-01-04 23:47:29 +00:00
require_once ( 'include/email.php' );
2010-07-01 23:48:07 +00:00
if ( ! function_exists ( 'register_post' )) {
function register_post ( & $a ) {
2011-05-24 03:30:37 +00:00
global $lang ;
2010-07-01 23:48:07 +00:00
$verified = 0 ;
$blocked = 1 ;
2012-03-31 13:15:33 +00:00
$arr = array ( 'post' => $_POST );
call_hooks ( 'register_post' , $arr );
2011-12-21 04:12:29 +00:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-21 23:44:15 +00:00
if ( $max_dailies ) {
2011-12-21 04:12:29 +00:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
return ;
}
}
2010-07-01 23:48:07 +00:00
switch ( $a -> config [ 'register_policy' ]) {
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
2010-07-29 06:15:10 +00:00
case REGISTER_APPROVE :
2010-07-01 23:48:07 +00:00
$blocked = 1 ;
2010-07-29 06:15:10 +00:00
$verified = 0 ;
2010-07-01 23:48:07 +00:00
break ;
default :
case REGISTER_CLOSED :
if (( ! x ( $_SESSION , 'authenticated' ) && ( ! x ( $_SESSION , 'administrator' )))) {
2010-08-04 02:14:57 +00:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-01 23:48:07 +00:00
return ;
}
2010-07-09 01:12:52 +00:00
$blocked = 1 ;
2010-07-01 23:48:07 +00:00
$verified = 0 ;
break ;
}
2012-10-17 15:13:01 +00:00
2010-07-01 23:48:07 +00:00
2012-06-01 02:06:17 +00:00
require_once ( 'include/user.php' );
2010-08-12 22:44:13 +00:00
2012-06-01 22:42:13 +00:00
$arr = $_POST ;
$arr [ 'blocked' ] = $blocked ;
$arr [ 'verified' ] = $verified ;
$result = create_user ( $arr );
2011-01-05 07:18:52 +00:00
2012-06-01 02:06:17 +00:00
if ( ! $result [ 'success' ]) {
notice ( $result [ 'message' ]);
2010-07-01 23:48:07 +00:00
return ;
}
2012-06-01 02:06:17 +00:00
$user = $result [ 'user' ];
2011-02-23 22:04:00 +00:00
if ( $netpublish && $a -> config [ 'register_policy' ] != REGISTER_APPROVE ) {
2012-06-01 02:06:17 +00:00
$url = $a -> get_baseurl () . '/profile/' . $user [ 'nickname' ];
2011-02-23 23:16:12 +00:00
proc_run ( 'php' , " include/directory.php " , " $url " );
2011-02-23 22:04:00 +00:00
}
2012-06-01 02:06:17 +00:00
$using_invites = get_config ( 'system' , 'invitation_only' );
$num_invites = get_config ( 'system' , 'number_invites' );
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2011-02-23 22:04:00 +00:00
2011-07-20 06:10:09 +00:00
2010-07-01 23:48:07 +00:00
if ( $a -> config [ 'register_policy' ] == REGISTER_OPEN ) {
2011-07-18 04:12:31 +00:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-06-01 02:06:17 +00:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 04:12:31 +00:00
}
2013-01-08 04:14:00 +00:00
$engine = get_app () -> get_template_engine ();
get_app () -> set_template_engine ();
2011-05-11 11:37:13 +00:00
$email_tpl = get_intltext_template ( " register_open_eml.tpl " );
2010-07-01 23:48:07 +00:00
$email_tpl = replace_macros ( $email_tpl , array (
'$sitename' => $a -> config [ 'sitename' ],
'$siteurl' => $a -> get_baseurl (),
2012-06-01 02:06:17 +00:00
'$username' => $user [ 'username' ],
'$email' => $user [ 'email' ],
'$password' => $result [ 'password' ],
'$uid' => $user [ 'uid' ] ));
2010-07-01 23:48:07 +00:00
2013-01-08 04:14:00 +00:00
get_app () -> set_template_engine ( $engine );
2013-01-04 23:47:29 +00:00
$res = mail ( $user [ 'email' ], email_header_encode ( sprintf ( t ( 'Registration details for %s' ), $a -> config [ 'sitename' ]), 'UTF-8' ),
2011-04-15 00:13:13 +00:00
$email_tpl ,
2013-01-04 23:47:29 +00:00
'From: ' . 'Administrator' . '@' . $_SERVER [ 'SERVER_NAME' ] . " \n "
2011-04-15 00:13:13 +00:00
. 'Content-type: text/plain; charset=UTF-8' . " \n "
. 'Content-transfer-encoding: 8bit' );
2010-07-01 23:48:07 +00:00
2010-07-29 06:15:10 +00:00
if ( $res ) {
2011-05-23 09:39:57 +00:00
info ( t ( 'Registration successful. Please check your email for further instructions.' ) . EOL ) ;
2011-08-02 04:02:25 +00:00
goaway ( z_root ());
2010-07-29 06:15:10 +00:00
}
else {
2010-08-04 02:14:57 +00:00
notice ( t ( 'Failed to send email message. Here is the message that failed.' ) . $email_tpl . EOL );
2010-07-29 06:15:10 +00:00
}
2010-07-01 23:48:07 +00:00
}
2010-07-29 06:15:10 +00:00
elseif ( $a -> config [ 'register_policy' ] == REGISTER_APPROVE ) {
if ( ! strlen ( $a -> config [ 'admin_email' ])) {
notice ( t ( 'Your registration can not be processed.' ) . EOL );
2011-08-02 04:02:25 +00:00
goaway ( z_root ());
2010-07-29 06:15:10 +00:00
}
$hash = random_string ();
2011-05-24 03:30:37 +00:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language` ) VALUES ( '%s', '%s', %d, '%s', '%s' ) " ,
2010-07-29 06:15:10 +00:00
dbesc ( $hash ),
dbesc ( datetime_convert ()),
2012-06-01 02:06:17 +00:00
intval ( $user [ 'uid' ]),
dbesc ( $result [ 'password' ]),
2011-05-24 03:30:37 +00:00
dbesc ( $lang )
);
$r = q ( " SELECT `language` FROM `user` WHERE `email` = '%s' LIMIT 1 " ,
dbesc ( $a -> config [ 'admin_email' ])
2010-07-29 06:15:10 +00:00
);
2011-05-24 03:30:37 +00:00
if ( count ( $r ))
push_lang ( $r [ 0 ][ 'language' ]);
else
push_lang ( 'en' );
2011-07-18 04:12:31 +00:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-06-01 02:06:17 +00:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 04:12:31 +00:00
}
2010-07-29 06:15:10 +00:00
2013-01-08 04:14:00 +00:00
$engine = get_app () -> get_template_engine ();
get_app () -> set_template_engine ();
2011-05-11 11:37:13 +00:00
$email_tpl = get_intltext_template ( " register_verify_eml.tpl " );
2010-07-29 06:15:10 +00:00
$email_tpl = replace_macros ( $email_tpl , array (
'$sitename' => $a -> config [ 'sitename' ],
'$siteurl' => $a -> get_baseurl (),
2012-06-01 02:06:17 +00:00
'$username' => $user [ 'username' ],
'$email' => $user [ 'email' ],
'$password' => $result [ 'password' ],
'$uid' => $user [ 'uid' ],
2010-07-29 06:15:10 +00:00
'$hash' => $hash
));
2013-01-08 04:14:00 +00:00
get_app () -> set_template_engine ( $engine );
2013-01-04 23:47:29 +00:00
$res = mail ( $a -> config [ 'admin_email' ], email_header_encode ( sprintf ( t ( 'Registration request at %s' ), $a -> config [ 'sitename' ]), 'UTF-8' ),
2011-04-15 00:13:13 +00:00
$email_tpl ,
2013-01-04 23:47:29 +00:00
'From: ' . 'Administrator' . '@' . $_SERVER [ 'SERVER_NAME' ] . " \n "
2011-04-15 00:13:13 +00:00
. 'Content-type: text/plain; charset=UTF-8' . " \n "
. 'Content-transfer-encoding: 8bit' );
2011-05-24 03:30:37 +00:00
pop_lang ();
2010-07-29 06:15:10 +00:00
if ( $res ) {
2011-05-23 09:39:57 +00:00
info ( t ( 'Your registration is pending approval by the site owner.' ) . EOL ) ;
2011-08-02 04:02:25 +00:00
goaway ( z_root ());
2010-07-29 06:15:10 +00:00
}
2011-02-23 09:37:15 +00:00
}
2010-07-01 23:48:07 +00:00
return ;
}}
if ( ! function_exists ( 'register_content' )) {
function register_content ( & $a ) {
2010-10-18 03:04:17 +00:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
$block = get_config ( 'system' , 'block_extended_register' );
2011-12-10 00:50:13 +00:00
if ( local_user () && ( $block )) {
notice ( " Permission denied. " . EOL );
return ;
}
if (( ! local_user ()) && ( $a -> config [ 'register_policy' ] == REGISTER_CLOSED )) {
2010-07-11 10:35:33 +00:00
notice ( " Permission denied. " . EOL );
return ;
}
2011-12-21 04:12:29 +00:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-21 23:44:15 +00:00
if ( $max_dailies ) {
2011-12-21 04:12:29 +00:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
logger ( 'max daily registrations exceeded.' );
notice ( t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
return ;
}
}
2011-01-07 12:33:34 +00:00
if ( x ( $_SESSION , 'theme' ))
unset ( $_SESSION [ 'theme' ]);
2012-09-06 23:24:34 +00:00
if ( x ( $_SESSION , 'mobile-theme' ))
unset ( $_SESSION [ 'mobile-theme' ]);
2011-01-07 12:33:34 +00:00
2010-11-24 04:56:20 +00:00
$username = (( x ( $_POST , 'username' )) ? $_POST [ 'username' ] : (( x ( $_GET , 'username' )) ? $_GET [ 'username' ] : '' ));
$email = (( x ( $_POST , 'email' )) ? $_POST [ 'email' ] : (( x ( $_GET , 'email' )) ? $_GET [ 'email' ] : '' ));
$openid_url = (( x ( $_POST , 'openid_url' )) ? $_POST [ 'openid_url' ] : (( x ( $_GET , 'openid_url' )) ? $_GET [ 'openid_url' ] : '' ));
$nickname = (( x ( $_POST , 'nickname' )) ? $_POST [ 'nickname' ] : (( x ( $_GET , 'nickname' )) ? $_GET [ 'nickname' ] : '' ));
$photo = (( x ( $_POST , 'photo' )) ? $_POST [ 'photo' ] : (( x ( $_GET , 'photo' )) ? hex2bin ( $_GET [ 'photo' ]) : '' ));
2011-07-18 04:12:31 +00:00
$invite_id = (( x ( $_POST , 'invite_id' )) ? $_POST [ 'invite_id' ] : (( x ( $_GET , 'invite_id' )) ? $_GET [ 'invite_id' ] : '' ));
2010-11-16 04:10:19 +00:00
2010-11-29 04:58:23 +00:00
$noid = get_config ( 'system' , 'no_openid' );
if ( $noid ) {
$oidhtml = '' ;
$fillwith = '' ;
$fillext = '' ;
$oidlabel = '' ;
}
else {
2013-01-01 22:47:56 +00:00
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
2010-11-29 04:58:23 +00:00
$fillwith = t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = t ( " Your OpenID \x28 optional \x29 : " );
}
2011-03-11 22:48:58 +00:00
// I set this and got even more fake names than before...
$realpeople = '' ; // t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 12:06:37 +00:00
2011-02-22 00:50:06 +00:00
if ( get_config ( 'system' , 'publish_all' )) {
$profile_publish_reg = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
}
else {
2011-05-11 11:37:13 +00:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2011-02-22 00:50:06 +00:00
$profile_publish = replace_macros ( $publish_tpl , array (
'$instance' => 'reg' ,
'$pubdesc' => t ( 'Include your profile in member directory?' ),
'$yes_selected' => ' checked="checked" ' ,
'$no_selected' => '' ,
'$str_yes' => t ( 'Yes' ),
2012-10-17 15:13:01 +00:00
'$str_no' => t ( 'No' ),
2011-02-22 00:50:06 +00:00
));
}
2011-09-24 12:45:34 +00:00
$license = '' ;
2010-12-25 04:23:49 +00:00
2011-05-11 11:37:13 +00:00
$o = get_markup_template ( " register.tpl " );
2012-03-31 13:15:33 +00:00
$arr = array ( 'template' => $o );
call_hooks ( 'register_form' , $arr );
2012-09-22 01:04:09 +00:00
$o = $arr [ 'template' ];
2010-07-20 02:09:58 +00:00
$o = replace_macros ( $o , array (
2010-11-29 04:58:23 +00:00
'$oidhtml' => $oidhtml ,
2011-07-18 04:12:31 +00:00
'$invitations' => get_config ( 'system' , 'invitation_only' ),
'$invite_desc' => t ( 'Membership on this site is by invitation only.' ),
'$invite_label' => t ( 'Your invitation ID: ' ),
'$invite_id' => $invite_id ,
2011-03-08 12:06:37 +00:00
'$realpeople' => $realpeople ,
2010-11-16 04:10:19 +00:00
'$regtitle' => t ( 'Registration' ),
2010-08-04 02:05:07 +00:00
'$registertext' => (( x ( $a -> config , 'register_text' ))
? '<div class="error-message">' . $a -> config [ 'register_text' ] . '</div>'
: " " ),
2010-11-29 04:58:23 +00:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-18 04:35:50 +00:00
'$openid' => $openid_url ,
2010-11-16 04:33:01 +00:00
'$namelabel' => t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith' . " \x29 " . ': ' ),
2010-11-16 04:10:19 +00:00
'$addrlabel' => t ( 'Your Email Address: ' ),
2013-01-01 21:40:05 +00:00
'$nickdesc' => str_replace ( '$sitename' , $a -> get_hostname (), t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@$sitename</strong>\'.' )),
2010-11-16 04:10:19 +00:00
'$nicklabel' => t ( 'Choose a nickname: ' ),
2010-11-24 04:56:20 +00:00
'$photo' => $photo ,
2011-02-22 00:50:06 +00:00
'$publish' => $profile_publish ,
2010-11-16 04:10:19 +00:00
'$regbutt' => t ( 'Register' ),
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-25 04:23:49 +00:00
'$license' => $license ,
2012-10-17 15:13:01 +00:00
'$sitename' => $a -> get_hostname (),
2010-07-20 02:09:58 +00:00
));
2010-07-01 23:48:07 +00:00
return $o ;
}}