2010-07-01 19:48:07 -04:00
< ? php
if ( ! function_exists ( 'register_post' )) {
function register_post ( & $a ) {
2011-05-23 23:30:37 -04:00
global $lang ;
2010-07-01 19:48:07 -04:00
$verified = 0 ;
$blocked = 1 ;
2012-03-31 09:15:33 -04:00
$arr = array ( 'post' => $_POST );
call_hooks ( 'register_post' , $arr );
2011-12-20 23:12:29 -05:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
if ( $max_dailes ) {
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
return ;
}
}
2010-07-01 19:48:07 -04:00
switch ( $a -> config [ 'register_policy' ]) {
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
2010-07-29 02:15:10 -04:00
case REGISTER_APPROVE :
2010-07-01 19:48:07 -04:00
$blocked = 1 ;
2010-07-29 02:15:10 -04:00
$verified = 0 ;
2010-07-01 19:48:07 -04:00
break ;
default :
case REGISTER_CLOSED :
if (( ! x ( $_SESSION , 'authenticated' ) && ( ! x ( $_SESSION , 'administrator' )))) {
2010-08-03 22:14:57 -04:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-07-08 21:12:52 -04:00
$blocked = 1 ;
2010-07-01 19:48:07 -04:00
$verified = 0 ;
break ;
}
2011-07-18 00:12:31 -04:00
$using_invites = get_config ( 'system' , 'invitation_only' );
$num_invites = get_config ( 'system' , 'number_invites' );
2010-11-23 23:56:20 -05:00
2011-07-18 00:12:31 -04:00
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2010-12-07 17:11:26 -05:00
$username = (( x ( $_POST , 'username' )) ? notags ( trim ( $_POST [ 'username' ])) : '' );
$nickname = (( x ( $_POST , 'nickname' )) ? notags ( trim ( $_POST [ 'nickname' ])) : '' );
$email = (( x ( $_POST , 'email' )) ? notags ( trim ( $_POST [ 'email' ])) : '' );
$openid_url = (( x ( $_POST , 'openid_url' )) ? notags ( trim ( $_POST [ 'openid_url' ])) : '' );
$photo = (( x ( $_POST , 'photo' )) ? notags ( trim ( $_POST [ 'photo' ])) : '' );
2011-02-21 19:50:06 -05:00
$publish = (( x ( $_POST , 'profile_publish_reg' ) && intval ( $_POST [ 'profile_publish_reg' ])) ? 1 : 0 );
2010-07-01 19:48:07 -04:00
2011-02-21 19:50:06 -05:00
$netpublish = (( strlen ( get_config ( 'system' , 'directory_submit_url' ))) ? $publish : 0 );
2011-01-05 02:18:52 -05:00
$tmp_str = $openid_url ;
2011-07-18 00:12:31 -04:00
if ( $using_invites ) {
if ( ! $invite_id ) {
notice ( t ( 'An invitation is required.' ) . EOL );
return ;
}
$r = q ( " select * from register where `hash` = '%s' limit 1 " , dbesc ( $invite_id ));
if ( ! results ( $r )) {
notice ( t ( 'Invitation could not be verified.' ) . EOL );
return ;
}
}
2010-07-19 22:09:58 -04:00
if (( ! x ( $username )) || ( ! x ( $email )) || ( ! x ( $nickname ))) {
2010-11-17 23:35:50 -05:00
if ( $openid_url ) {
2011-01-05 02:18:52 -05:00
if ( ! validate_url ( $tmp_str )) {
notice ( t ( 'Invalid OpenID url' ) . EOL );
return ;
}
2010-11-17 23:35:50 -05:00
$_SESSION [ 'register' ] = 1 ;
$_SESSION [ 'openid' ] = $openid_url ;
require_once ( 'library/openid.php' );
$openid = new LightOpenID ;
$openid -> identity = $openid_url ;
$openid -> returnUrl = $a -> get_baseurl () . '/openid' ;
$openid -> required = array ( 'namePerson/friendly' , 'contact/email' , 'namePerson' );
2010-11-23 23:56:20 -05:00
$openid -> optional = array ( 'namePerson/first' , 'media/image/aspect11' , 'media/image/default' );
2010-11-17 23:35:50 -05:00
goaway ( $openid -> authUrl ());
// NOTREACHED
}
2010-08-03 22:14:57 -04:00
notice ( t ( 'Please enter the required information.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2011-02-21 23:19:33 -05:00
if ( ! validate_url ( $tmp_str ))
$openid_url = '' ;
2010-07-01 19:48:07 -04:00
$err = '' ;
2011-06-29 22:26:18 -04:00
// collapse multiple spaces in name
$username = preg_replace ( '/ +/' , ' ' , $username );
2010-08-12 18:44:13 -04:00
2011-05-10 23:10:13 -04:00
if ( mb_strlen ( $username ) > 48 )
2010-11-15 23:10:19 -05:00
$err .= t ( 'Please use a shorter name.' ) . EOL ;
2011-05-10 23:10:13 -04:00
if ( mb_strlen ( $username ) < 3 )
2010-11-15 23:10:19 -05:00
$err .= t ( 'Name too short.' ) . EOL ;
2010-08-12 18:44:13 -04:00
// I don't really like having this rule, but it cuts down
// on the number of auto-registrations by Russian spammers
2010-11-14 03:32:31 -05:00
2010-12-07 17:11:26 -05:00
// Using preg_match was completely unreliable, due to mixed UTF-8 regex support
// $no_utf = get_config('system','no_utf');
// $pat = (($no_utf) ? '/^[a-zA-Z]* [a-zA-Z]*$/' : '/^\p{L}* \p{L}*$/u' );
2010-08-12 18:44:13 -04:00
2010-12-07 17:11:26 -05:00
// So now we are just looking for a space in the full name.
$loose_reg = get_config ( 'system' , 'no_regfullname' );
2011-04-13 19:58:21 -04:00
if ( ! $loose_reg ) {
$username = mb_convert_case ( $username , MB_CASE_TITLE , 'UTF-8' );
if ( ! strpos ( $username , ' ' ))
$err .= t ( " That doesn't appear to be your full \x28 First Last \x29 name. " ) . EOL ;
}
2010-09-23 18:36:21 -04:00
2011-06-29 22:26:18 -04:00
2010-09-23 18:36:21 -04:00
if ( ! allowed_email ( $email ))
2010-11-15 23:10:19 -05:00
$err .= t ( 'Your email domain is not among those allowed on this site.' ) . EOL ;
2010-11-15 23:22:40 -05:00
if (( ! valid_email ( $email )) || ( ! validate_email ( $email )))
2010-11-15 23:10:19 -05:00
$err .= t ( 'Not a valid email address.' ) . EOL ;
2011-01-05 02:18:52 -05:00
// Disallow somebody creating an account using openid that uses the admin email address,
2011-07-07 22:12:35 -04:00
// since openid bypasses email verification. We'll allow it if there is not yet an admin account.
if (( x ( $a -> config , 'admin_email' )) && ( strcasecmp ( $email , $a -> config [ 'admin_email' ]) == 0 ) && strlen ( $openid_url )) {
$r = q ( " SELECT * FROM `user` WHERE `email` = '%s' LIMIT 1 " ,
dbesc ( $email )
);
if ( count ( $r ))
$err .= t ( 'Cannot use that email.' ) . EOL ;
}
2011-01-05 02:18:52 -05:00
2010-11-15 23:10:19 -05:00
$nickname = $_POST [ 'nickname' ] = strtolower ( $nickname );
2010-09-23 18:36:21 -04:00
2010-10-02 20:55:41 -04:00
if ( ! preg_match ( " /^[a-z][a-z0-9 \ - \ _]* $ / " , $nickname ))
2010-11-15 23:10:19 -05:00
$err .= t ( 'Your "nickname" can only contain "a-z", "0-9", "-", and "_", and must also begin with a letter.' ) . EOL ;
2010-07-19 22:09:58 -04:00
$r = q ( " SELECT `uid` FROM `user`
WHERE `nickname` = '%s' LIMIT 1 " ,
dbesc ( $nickname )
);
if ( count ( $r ))
2010-11-15 23:10:19 -05:00
$err .= t ( 'Nickname is already registered. Please choose another.' ) . EOL ;
2010-07-19 22:09:58 -04:00
2012-03-22 04:46:52 -04:00
// Check deleted accounts that had this nickname. Doesn't matter to us,
// but could be a security issue for federated platforms.
$r = q ( " SELECT * FROM `userd`
WHERE `username` = '%s' LIMIT 1 " ,
dbesc ( $nickname )
);
if ( count ( $r ))
$err .= t ( 'Nickname was once registered here and may not be re-used. Please choose another.' ) . EOL ;
2010-07-01 19:48:07 -04:00
if ( strlen ( $err )) {
2010-11-15 23:10:19 -05:00
notice ( $err );
2010-07-01 19:48:07 -04:00
return ;
}
$new_password = autoname ( 6 ) . mt_rand ( 100 , 9999 );
$new_password_encoded = hash ( 'whirlpool' , $new_password );
2012-05-20 21:30:02 -04:00
require_once ( 'include/crypto.php' );
2010-07-01 19:48:07 -04:00
2012-05-20 21:30:02 -04:00
$result = new_keypair ( 1024 );
2010-07-01 19:48:07 -04:00
2012-05-20 21:30:02 -04:00
if ( $result === false ) {
2010-11-24 17:49:35 -05:00
notice ( t ( 'SERIOUS ERROR: Generation of security keys failed.' ) . EOL );
return ;
}
2012-05-20 21:30:02 -04:00
$prvkey = $result [ 'prvkey' ];
$pubkey = $result [ 'pubkey' ];
2010-07-01 19:48:07 -04:00
2011-01-02 17:12:22 -05:00
/**
*
* Create another keypair for signing / verifying
* salmon protocol messages . We have to use a slightly
* less robust key because this won ' t be using openssl
* but the phpseclib . Since it is PHP interpreted code
* it is not nearly as efficient , and the larger keys
* will take several minutes each to process .
*
*/
2012-05-20 21:30:02 -04:00
$sres = new_keypair ( 512 );
$sprvkey = $sres [ 'prvkey' ];
$spubkey = $sres [ 'pubkey' ];
2010-10-12 02:22:38 -04:00
2011-07-18 21:13:46 -04:00
$r = q ( " INSERT INTO `user` ( `guid`, `username`, `password`, `email`, `openid`, `nickname`,
2012-03-31 19:08:40 -04:00
`pubkey` , `prvkey` , `spubkey` , `sprvkey` , `register_date` , `verified` , `blocked` , `timezone` )
VALUES ( '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , % d , % d , 'UTC' ) " ,
2011-08-07 19:56:26 -04:00
dbesc ( generate_user_guid ()),
2010-07-01 19:48:07 -04:00
dbesc ( $username ),
dbesc ( $new_password_encoded ),
dbesc ( $email ),
2010-11-17 23:35:50 -05:00
dbesc ( $openid_url ),
2010-07-19 22:09:58 -04:00
dbesc ( $nickname ),
2010-07-01 19:48:07 -04:00
dbesc ( $pubkey ),
dbesc ( $prvkey ),
2010-10-12 02:22:38 -04:00
dbesc ( $spubkey ),
dbesc ( $sprvkey ),
2010-12-16 19:35:45 -05:00
dbesc ( datetime_convert ()),
2010-07-01 19:48:07 -04:00
intval ( $verified ),
intval ( $blocked )
);
if ( $r ) {
$r = q ( " SELECT `uid` FROM `user`
WHERE `username` = '%s' AND `password` = '%s' LIMIT 1 " ,
dbesc ( $username ),
dbesc ( $new_password_encoded )
);
if ( $r !== false && count ( $r ))
$newuid = intval ( $r [ 0 ][ 'uid' ]);
}
else {
2010-08-03 22:14:57 -04:00
notice ( t ( 'An error occurred during registration. Please try again.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2011-03-24 18:45:27 -04:00
/**
* if somebody clicked submit twice very quickly , they could end up with two accounts
* due to race condition . Remove this one .
*/
$r = q ( " SELECT `uid` FROM `user`
WHERE `nickname` = '%s' " ,
dbesc ( $nickname )
);
if (( count ( $r ) > 1 ) && $newuid ) {
$err .= t ( 'Nickname is already registered. Please choose another.' ) . EOL ;
q ( " DELETE FROM `user` WHERE `uid` = %d LIMIT 1 " ,
intval ( $newuid )
);
notice ( $err );
return ;
}
2010-07-19 22:09:58 -04:00
if ( x ( $newuid ) !== false ) {
2011-02-21 19:50:06 -05:00
$r = q ( " INSERT INTO `profile` ( `uid`, `profile-name`, `is-default`, `name`, `photo`, `thumb`, `publish`, `net-publish` )
VALUES ( % d , '%s' , % d , '%s' , '%s' , '%s' , % d , % d ) " ,
2010-07-01 19:48:07 -04:00
intval ( $newuid ),
'default' ,
1 ,
dbesc ( $username ),
2010-07-19 22:09:58 -04:00
dbesc ( $a -> get_baseurl () . " /photo/profile/ { $newuid } .jpg " ),
2011-02-21 19:50:06 -05:00
dbesc ( $a -> get_baseurl () . " /photo/avatar/ { $newuid } .jpg " ),
intval ( $publish ),
intval ( $netpublish )
2010-07-06 00:39:55 -04:00
);
2010-07-01 19:48:07 -04:00
if ( $r === false ) {
2010-08-03 22:14:57 -04:00
notice ( t ( 'An error occurred creating your default profile. Please try again.' ) . EOL );
2010-07-01 19:48:07 -04:00
// Start fresh next time.
$r = q ( " DELETE FROM `user` WHERE `uid` = %d " ,
intval ( $newuid ));
return ;
}
2011-11-01 19:08:07 -04:00
$r = q ( " INSERT INTO `contact` ( `uid`, `created`, `self`, `name`, `nick`, `photo`, `thumb`, `micro`, `blocked`, `pending`, `url`, `nurl`,
2012-02-01 02:54:53 -05:00
`request` , `notify` , `poll` , `confirm` , `poco` , `name-date` , `uri-date` , `avatar-date` , `closeness` )
VALUES ( % d , '%s' , 1 , '%s' , '%s' , '%s' , '%s' , '%s' , 0 , 0 , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , '%s' , 0 ) " ,
2010-07-01 19:48:07 -04:00
intval ( $newuid ),
datetime_convert (),
dbesc ( $username ),
2010-10-23 04:20:26 -04:00
dbesc ( $nickname ),
2010-07-19 22:09:58 -04:00
dbesc ( $a -> get_baseurl () . " /photo/profile/ { $newuid } .jpg " ),
dbesc ( $a -> get_baseurl () . " /photo/avatar/ { $newuid } .jpg " ),
2010-11-05 02:50:32 -04:00
dbesc ( $a -> get_baseurl () . " /photo/micro/ { $newuid } .jpg " ),
2010-07-19 22:09:58 -04:00
dbesc ( $a -> get_baseurl () . " /profile/ $nickname " ),
2011-11-01 19:08:07 -04:00
dbesc ( normalise_link ( $a -> get_baseurl () . " /profile/ $nickname " )),
2010-07-19 22:09:58 -04:00
dbesc ( $a -> get_baseurl () . " /dfrn_request/ $nickname " ),
dbesc ( $a -> get_baseurl () . " /dfrn_notify/ $nickname " ),
dbesc ( $a -> get_baseurl () . " /dfrn_poll/ $nickname " ),
2010-08-09 00:03:08 -04:00
dbesc ( $a -> get_baseurl () . " /dfrn_confirm/ $nickname " ),
2011-11-01 19:08:07 -04:00
dbesc ( $a -> get_baseurl () . " /poco/ $nickname " ),
2010-08-09 00:03:08 -04:00
dbesc ( datetime_convert ()),
dbesc ( datetime_convert ()),
dbesc ( datetime_convert ())
2010-07-01 19:48:07 -04:00
);
2012-05-30 07:20:01 -04:00
// Create a group with no members. This allows somebody to use it
// right away as a default group for new contacts.
require_once ( 'include/group.php' );
group_add ( $newuid , t ( 'Friends' ));
2010-07-01 19:48:07 -04:00
}
2012-04-08 17:20:31 -04:00
// if we have no OpenID photo try to look up an avatar
if ( ! strlen ( $photo ))
$photo = avatar_img ( $email );
2010-11-18 05:59:59 -05:00
2012-04-08 17:20:31 -04:00
// unless there is no avatar-plugin loaded
if ( strlen ( $photo )) {
2010-11-18 05:59:59 -05:00
require_once ( 'include/Photo.php' );
2010-11-18 02:24:43 -05:00
$photo_failure = false ;
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$filename = basename ( $photo );
$img_str = fetch_url ( $photo , true );
$img = new Photo ( $img_str );
if ( $img -> is_valid ()) {
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$img -> scaleImageSquare ( 175 );
2012-02-20 18:54:34 -05:00
2010-11-18 02:24:43 -05:00
$hash = photo_new_resource ();
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$r = $img -> store ( $newuid , 0 , $hash , $filename , t ( 'Profile Photos' ), 4 );
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
if ( $r === false )
$photo_failure = true ;
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$img -> scaleImage ( 80 );
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$r = $img -> store ( $newuid , 0 , $hash , $filename , t ( 'Profile Photos' ), 5 );
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
if ( $r === false )
$photo_failure = true ;
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$img -> scaleImage ( 48 );
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
$r = $img -> store ( $newuid , 0 , $hash , $filename , t ( 'Profile Photos' ), 6 );
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
if ( $r === false )
$photo_failure = true ;
2010-11-15 19:49:27 -05:00
2010-11-18 02:24:43 -05:00
if ( ! $photo_failure ) {
q ( " UPDATE `photo` SET `profile` = 1 WHERE `resource-id` = '%s' " ,
dbesc ( $hash )
);
}
2010-11-15 19:49:27 -05:00
}
}
2010-11-18 05:59:59 -05:00
2011-02-23 17:04:00 -05:00
if ( $netpublish && $a -> config [ 'register_policy' ] != REGISTER_APPROVE ) {
$url = $a -> get_baseurl () . " /profile/ $nickname " ;
2011-02-23 18:16:12 -05:00
proc_run ( 'php' , " include/directory.php " , " $url " );
2011-02-23 17:04:00 -05:00
}
2011-07-20 02:10:09 -04:00
call_hooks ( 'register_account' , $newuid );
2010-07-01 19:48:07 -04:00
if ( $a -> config [ 'register_policy' ] == REGISTER_OPEN ) {
2011-07-18 00:12:31 -04:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
set_pconfig ( $newuid , 'system' , 'invites_remaining' , $num_invites );
}
2011-05-11 07:37:13 -04:00
$email_tpl = get_intltext_template ( " register_open_eml.tpl " );
2010-07-01 19:48:07 -04:00
$email_tpl = replace_macros ( $email_tpl , array (
'$sitename' => $a -> config [ 'sitename' ],
'$siteurl' => $a -> get_baseurl (),
'$username' => $username ,
'$email' => $email ,
'$password' => $new_password ,
'$uid' => $newuid ));
2011-03-10 18:22:21 -05:00
$res = mail ( $email , sprintf ( t ( 'Registration details for %s' ), $a -> config [ 'sitename' ]),
2011-04-14 20:13:13 -04:00
$email_tpl ,
'From: ' . t ( 'Administrator' ) . '@' . $_SERVER [ 'SERVER_NAME' ] . " \n "
. 'Content-type: text/plain; charset=UTF-8' . " \n "
. 'Content-transfer-encoding: 8bit' );
2010-07-01 19:48:07 -04:00
2010-07-29 02:15:10 -04:00
if ( $res ) {
2011-05-23 05:39:57 -04:00
info ( t ( 'Registration successful. Please check your email for further instructions.' ) . EOL ) ;
2011-08-02 00:02:25 -04:00
goaway ( z_root ());
2010-07-29 02:15:10 -04:00
}
else {
2010-08-03 22:14:57 -04:00
notice ( t ( 'Failed to send email message. Here is the message that failed.' ) . $email_tpl . EOL );
2010-07-29 02:15:10 -04:00
}
2010-07-01 19:48:07 -04:00
}
2010-07-29 02:15:10 -04:00
elseif ( $a -> config [ 'register_policy' ] == REGISTER_APPROVE ) {
if ( ! strlen ( $a -> config [ 'admin_email' ])) {
notice ( t ( 'Your registration can not be processed.' ) . EOL );
2011-08-02 00:02:25 -04:00
goaway ( z_root ());
2010-07-29 02:15:10 -04:00
}
$hash = random_string ();
2011-05-23 23:30:37 -04:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language` ) VALUES ( '%s', '%s', %d, '%s', '%s' ) " ,
2010-07-29 02:15:10 -04:00
dbesc ( $hash ),
dbesc ( datetime_convert ()),
intval ( $newuid ),
2011-05-23 23:30:37 -04:00
dbesc ( $new_password ),
dbesc ( $lang )
);
$r = q ( " SELECT `language` FROM `user` WHERE `email` = '%s' LIMIT 1 " ,
dbesc ( $a -> config [ 'admin_email' ])
2010-07-29 02:15:10 -04:00
);
2011-05-23 23:30:37 -04:00
if ( count ( $r ))
push_lang ( $r [ 0 ][ 'language' ]);
else
push_lang ( 'en' );
2011-07-18 00:12:31 -04:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
set_pconfig ( $newuid , 'system' , 'invites_remaining' , $num_invites );
}
2010-07-29 02:15:10 -04:00
2011-05-11 07:37:13 -04:00
$email_tpl = get_intltext_template ( " register_verify_eml.tpl " );
2010-07-29 02:15:10 -04:00
$email_tpl = replace_macros ( $email_tpl , array (
'$sitename' => $a -> config [ 'sitename' ],
'$siteurl' => $a -> get_baseurl (),
'$username' => $username ,
'$email' => $email ,
'$password' => $new_password ,
'$uid' => $newuid ,
'$hash' => $hash
));
2011-03-10 18:22:21 -05:00
$res = mail ( $a -> config [ 'admin_email' ], sprintf ( t ( 'Registration request at %s' ), $a -> config [ 'sitename' ]),
2011-04-14 20:13:13 -04:00
$email_tpl ,
'From: ' . t ( 'Administrator' ) . '@' . $_SERVER [ 'SERVER_NAME' ] . " \n "
. 'Content-type: text/plain; charset=UTF-8' . " \n "
. 'Content-transfer-encoding: 8bit' );
2011-05-23 23:30:37 -04:00
pop_lang ();
2010-07-29 02:15:10 -04:00
if ( $res ) {
2011-05-23 05:39:57 -04:00
info ( t ( 'Your registration is pending approval by the site owner.' ) . EOL ) ;
2011-08-02 00:02:25 -04:00
goaway ( z_root ());
2010-07-29 02:15:10 -04:00
}
2011-02-23 04:37:15 -05:00
}
2010-07-01 19:48:07 -04:00
return ;
}}
if ( ! function_exists ( 'register_content' )) {
function register_content ( & $a ) {
2010-10-17 23:04:17 -04:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
$block = get_config ( 'system' , 'block_extended_register' );
2011-12-09 19:50:13 -05:00
if ( local_user () && ( $block )) {
notice ( " Permission denied. " . EOL );
return ;
}
if (( ! local_user ()) && ( $a -> config [ 'register_policy' ] == REGISTER_CLOSED )) {
2010-07-11 06:35:33 -04:00
notice ( " Permission denied. " . EOL );
return ;
}
2011-12-20 23:12:29 -05:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
if ( $max_dailes ) {
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
logger ( 'max daily registrations exceeded.' );
notice ( t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
return ;
}
}
2011-01-07 07:33:34 -05:00
if ( x ( $_SESSION , 'theme' ))
unset ( $_SESSION [ 'theme' ]);
2010-11-23 23:56:20 -05:00
$username = (( x ( $_POST , 'username' )) ? $_POST [ 'username' ] : (( x ( $_GET , 'username' )) ? $_GET [ 'username' ] : '' ));
$email = (( x ( $_POST , 'email' )) ? $_POST [ 'email' ] : (( x ( $_GET , 'email' )) ? $_GET [ 'email' ] : '' ));
$openid_url = (( x ( $_POST , 'openid_url' )) ? $_POST [ 'openid_url' ] : (( x ( $_GET , 'openid_url' )) ? $_GET [ 'openid_url' ] : '' ));
$nickname = (( x ( $_POST , 'nickname' )) ? $_POST [ 'nickname' ] : (( x ( $_GET , 'nickname' )) ? $_GET [ 'nickname' ] : '' ));
$photo = (( x ( $_POST , 'photo' )) ? $_POST [ 'photo' ] : (( x ( $_GET , 'photo' )) ? hex2bin ( $_GET [ 'photo' ]) : '' ));
2011-07-18 00:12:31 -04:00
$invite_id = (( x ( $_POST , 'invite_id' )) ? $_POST [ 'invite_id' ] : (( x ( $_GET , 'invite_id' )) ? $_GET [ 'invite_id' ] : '' ));
2010-11-15 23:10:19 -05:00
2010-11-28 23:58:23 -05:00
$noid = get_config ( 'system' , 'no_openid' );
if ( $noid ) {
$oidhtml = '' ;
$fillwith = '' ;
$fillext = '' ;
$oidlabel = '' ;
}
else {
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
$fillwith = t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = t ( " Your OpenID \x28 optional \x29 : " );
}
2011-03-11 17:48:58 -05:00
// I set this and got even more fake names than before...
$realpeople = '' ; // t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 07:06:37 -05:00
2011-02-21 19:50:06 -05:00
if ( get_config ( 'system' , 'publish_all' )) {
$profile_publish_reg = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
}
else {
2011-05-11 07:37:13 -04:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2011-02-21 19:50:06 -05:00
$profile_publish = replace_macros ( $publish_tpl , array (
'$instance' => 'reg' ,
'$pubdesc' => t ( 'Include your profile in member directory?' ),
'$yes_selected' => ' checked="checked" ' ,
'$no_selected' => '' ,
'$str_yes' => t ( 'Yes' ),
'$str_no' => t ( 'No' )
));
}
2011-09-24 08:45:34 -04:00
$license = '' ;
2010-12-24 23:23:49 -05:00
2011-05-11 07:37:13 -04:00
$o = get_markup_template ( " register.tpl " );
2012-03-31 09:15:33 -04:00
$arr = array ( 'template' => $o );
call_hooks ( 'register_form' , $arr );
2010-07-19 22:09:58 -04:00
$o = replace_macros ( $o , array (
2010-11-28 23:58:23 -05:00
'$oidhtml' => $oidhtml ,
2011-07-18 00:12:31 -04:00
'$invitations' => get_config ( 'system' , 'invitation_only' ),
'$invite_desc' => t ( 'Membership on this site is by invitation only.' ),
'$invite_label' => t ( 'Your invitation ID: ' ),
'$invite_id' => $invite_id ,
2011-03-08 07:06:37 -05:00
'$realpeople' => $realpeople ,
2010-11-15 23:10:19 -05:00
'$regtitle' => t ( 'Registration' ),
2010-08-03 22:05:07 -04:00
'$registertext' => (( x ( $a -> config , 'register_text' ))
? '<div class="error-message">' . $a -> config [ 'register_text' ] . '</div>'
: " " ),
2010-11-28 23:58:23 -05:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-17 23:35:50 -05:00
'$openid' => $openid_url ,
2010-11-15 23:33:01 -05:00
'$namelabel' => t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith' . " \x29 " . ': ' ),
2010-11-15 23:10:19 -05:00
'$addrlabel' => t ( 'Your Email Address: ' ),
2011-03-08 07:06:37 -05:00
'$nickdesc' => t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@$sitename</strong>\'.' ),
2010-11-15 23:10:19 -05:00
'$nicklabel' => t ( 'Choose a nickname: ' ),
2010-11-23 23:56:20 -05:00
'$photo' => $photo ,
2011-02-21 19:50:06 -05:00
'$publish' => $profile_publish ,
2010-11-15 23:10:19 -05:00
'$regbutt' => t ( 'Register' ),
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-24 23:23:49 -05:00
'$license' => $license ,
2010-11-15 23:10:19 -05:00
'$sitename' => $a -> get_hostname ()
2010-07-19 22:09:58 -04:00
));
2010-07-01 19:48:07 -04:00
return $o ;
}}