2010-07-01 19:48:07 -04:00
< ? php
2018-01-21 11:38:01 -05:00
/**
2018-02-15 15:10:00 -05:00
* @ file mod / register . php
2018-01-21 11:38:01 -05:00
*/
2018-01-24 21:08:45 -05:00
2017-04-30 00:07:00 -04:00
use Friendica\App ;
2018-10-17 15:30:41 -04:00
use Friendica\BaseModule ;
2018-02-14 21:33:55 -05:00
use Friendica\Content\Text\BBCode ;
2018-01-17 13:42:40 -05:00
use Friendica\Core\Addon ;
2017-11-06 21:22:52 -05:00
use Friendica\Core\Config ;
2018-01-21 11:38:01 -05:00
use Friendica\Core\L10n ;
2017-11-06 21:22:52 -05:00
use Friendica\Core\PConfig ;
2017-08-26 02:04:21 -04:00
use Friendica\Core\System ;
2017-11-05 07:15:53 -05:00
use Friendica\Core\Worker ;
2018-07-23 18:44:05 -04:00
use Friendica\Database\DBA ;
2017-12-03 22:29:06 -05:00
use Friendica\Model\User ;
2018-05-19 12:53:54 -04:00
use Friendica\Module\Tos ;
2018-01-26 21:38:34 -05:00
use Friendica\Util\DateTimeFormat ;
2018-10-17 08:19:58 -04:00
use Friendica\Util\Security ;
2017-04-30 00:07:00 -04:00
2017-12-03 22:15:31 -05:00
require_once 'include/enotify.php' ;
2013-01-04 18:47:29 -05:00
2017-12-08 19:24:43 -05:00
function register_post ( App $a )
{
2018-10-17 15:30:41 -04:00
BaseModule :: checkFormSecurityTokenRedirectOnError ( '/register' , 'register' );
2010-07-01 19:48:07 -04:00
$verified = 0 ;
$blocked = 1 ;
2018-01-15 08:05:12 -05:00
$arr = [ 'post' => $_POST ];
2018-01-17 13:42:40 -05:00
Addon :: callHooks ( 'register_post' , $arr );
2011-12-20 23:12:29 -05:00
2017-12-08 19:24:43 -05:00
$max_dailies = intval ( Config :: get ( 'system' , 'max_daily_registrations' ));
if ( $max_dailies ) {
2011-12-20 23:12:29 -05:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
2017-12-08 19:24:43 -05:00
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
2011-12-20 23:12:29 -05:00
return ;
}
}
2018-07-07 17:46:30 -04:00
switch ( Config :: get ( 'config' , 'register_policy' )) {
2017-12-08 19:24:43 -05:00
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
case REGISTER_APPROVE :
$blocked = 1 ;
$verified = 0 ;
break ;
default :
case REGISTER_CLOSED :
2018-07-07 17:46:30 -04:00
if ( empty ( $_SESSION [ 'authenticated' ]) && empty ( $_SESSION [ 'administrator' ])) {
2018-01-21 13:33:59 -05:00
notice ( L10n :: t ( 'Permission denied.' ) . EOL );
2017-12-08 19:24:43 -05:00
return ;
}
$blocked = 1 ;
$verified = 0 ;
break ;
2010-07-01 19:48:07 -04:00
}
2014-09-07 06:29:13 -04:00
2018-02-11 22:10:11 -05:00
$netpublish = ! empty ( $_POST [ 'profile_publish_reg' ]);
2010-07-01 19:48:07 -04:00
2012-06-01 18:42:13 -04:00
$arr = $_POST ;
$arr [ 'blocked' ] = $blocked ;
$arr [ 'verified' ] = $verified ;
2018-01-21 11:38:01 -05:00
$arr [ 'language' ] = L10n :: getBrowserLanguage ();
2012-06-01 18:42:13 -04:00
2017-12-12 20:43:21 -05:00
try {
$result = User :: create ( $arr );
} catch ( Exception $e ) {
notice ( $e -> getMessage ());
2010-07-01 19:48:07 -04:00
return ;
}
2012-05-31 22:06:17 -04:00
$user = $result [ 'user' ];
2014-09-07 06:29:13 -04:00
2018-07-15 15:04:48 -04:00
if ( $netpublish && intval ( Config :: get ( 'config' , 'register_policy' )) !== REGISTER_APPROVE ) {
2017-08-26 03:32:10 -04:00
$url = System :: baseUrl () . '/profile/' . $user [ 'nickname' ];
2017-11-18 02:59:30 -05:00
Worker :: add ( PRIORITY_LOW , " Directory " , $url );
2011-02-23 17:04:00 -05:00
}
2017-12-08 19:24:43 -05:00
$using_invites = Config :: get ( 'system' , 'invitation_only' );
$num_invites = Config :: get ( 'system' , 'number_invites' );
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2011-02-23 17:04:00 -05:00
2018-07-15 15:04:48 -04:00
if ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_OPEN ) {
2017-12-08 19:24:43 -05:00
if ( $using_invites && $invite_id ) {
2018-07-21 09:10:13 -04:00
q ( " delete * from register where hash = '%s' limit 1 " , DBA :: escape ( $invite_id ));
2017-12-08 19:24:43 -05:00
PConfig :: set ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 00:12:31 -04:00
}
2015-06-30 17:37:31 -04:00
// Only send a password mail when the password wasn't manually provided
2017-12-08 19:24:43 -05:00
if ( ! x ( $_POST , 'password1' ) || ! x ( $_POST , 'confirm' )) {
2017-12-03 22:29:06 -05:00
$res = User :: sendRegisterOpenEmail (
2018-08-10 15:39:43 -04:00
$user [ 'email' ], Config :: get ( 'config' , 'sitename' ), System :: baseUrl (), $user [ 'username' ], $result [ 'password' ], $user );
2017-12-08 19:24:43 -05:00
if ( $res ) {
2018-01-22 09:16:25 -05:00
info ( L10n :: t ( 'Registration successful. Please check your email for further instructions.' ) . EOL );
2017-08-26 03:32:10 -04:00
goaway ( System :: baseUrl ());
2015-06-30 17:37:31 -04:00
} else {
notice (
2018-01-22 09:16:25 -05:00
L10n :: t ( 'Failed to send email message. Here your accout details:<br> login: %s<br> password: %s<br><br>You can change your password after login.' ,
2017-12-08 19:24:43 -05:00
$user [ 'email' ],
$result [ 'password' ])
. EOL
2015-06-30 17:37:31 -04:00
);
}
2015-11-14 02:07:09 -05:00
} else {
2018-01-22 09:16:25 -05:00
info ( L10n :: t ( 'Registration successful.' ) . EOL );
2017-08-26 03:32:10 -04:00
goaway ( System :: baseUrl ());
2010-07-29 02:15:10 -04:00
}
2018-07-15 15:04:48 -04:00
} elseif ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_APPROVE ) {
2018-07-07 17:46:30 -04:00
if ( ! strlen ( Config :: get ( 'config' , 'admin_email' ))) {
2018-01-21 13:33:59 -05:00
notice ( L10n :: t ( 'Your registration can not be processed.' ) . EOL );
2017-08-26 03:32:10 -04:00
goaway ( System :: baseUrl ());
2010-07-29 02:15:10 -04:00
}
$hash = random_string ();
2016-11-19 12:22:49 -05:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language`, `note` ) VALUES ( '%s', '%s', %d, '%s', '%s', '%s' ) " ,
2018-07-21 09:10:13 -04:00
DBA :: escape ( $hash ),
DBA :: escape ( DateTimeFormat :: utcNow ()),
2012-05-31 22:06:17 -04:00
intval ( $user [ 'uid' ]),
2018-07-21 09:10:13 -04:00
DBA :: escape ( $result [ 'password' ]),
DBA :: escape ( Config :: get ( 'system' , 'language' )),
DBA :: escape ( $_POST [ 'permonlybox' ])
2011-05-23 23:30:37 -04:00
);
2014-09-07 07:55:02 -04:00
// invite system
2017-12-08 19:24:43 -05:00
if ( $using_invites && $invite_id ) {
2018-07-21 09:10:13 -04:00
q ( " DELETE * FROM `register` WHERE `hash` = '%s' LIMIT 1 " , DBA :: escape ( $invite_id ));
2017-12-08 19:24:43 -05:00
PConfig :: set ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 00:12:31 -04:00
}
2010-07-29 02:15:10 -04:00
2014-09-07 07:55:02 -04:00
// send email to admins
2018-07-21 09:10:13 -04:00
$admin_mail_list = " ' " . implode ( " ',' " , array_map ([ 'Friendica\Database\DBA' , 'escape' ], explode ( " , " , str_replace ( " " , " " , Config :: get ( 'config' , 'admin_email' ))))) . " ' " ;
2014-09-07 08:23:03 -04:00
$adminlist = q ( " SELECT uid, language, email FROM user WHERE email IN (%s) " ,
2014-09-07 07:55:02 -04:00
$admin_mail_list
);
2011-05-23 23:30:37 -04:00
2016-11-18 14:16:22 -05:00
// send notification to admins
2016-09-30 08:57:16 -04:00
foreach ( $adminlist as $admin ) {
2018-01-15 08:05:12 -05:00
notification ([
2017-12-08 19:24:43 -05:00
'type' => NOTIFY_SYSTEM ,
'event' => 'SYSTEM_REGISTER_REQUEST' ,
'source_name' => $user [ 'username' ],
'source_mail' => $user [ 'email' ],
'source_nick' => $user [ 'nickname' ],
'source_link' => System :: baseUrl () . " /admin/users/ " ,
'link' => System :: baseUrl () . " /admin/users/ " ,
'source_photo' => System :: baseUrl () . " /photo/avatar/ " . $user [ 'uid' ] . " .jpg " ,
'to_email' => $admin [ 'email' ],
'uid' => $admin [ 'uid' ],
'language' => $admin [ 'language' ] ? $admin [ 'language' ] : 'en' ,
2016-09-30 08:57:16 -04:00
'show_in_notification_page' => false
2018-01-15 08:05:12 -05:00
]);
2016-09-30 08:57:16 -04:00
}
2016-11-18 14:16:22 -05:00
// send notification to the user, that the registration is pending
2017-12-03 22:29:06 -05:00
User :: sendRegisterPendingEmail (
2018-07-07 17:46:30 -04:00
$user [ 'email' ], Config :: get ( 'config' , 'sitename' ), $user [ 'username' ]);
2016-09-30 08:57:16 -04:00
2018-01-22 09:16:25 -05:00
info ( L10n :: t ( 'Your registration is pending approval by the site owner.' ) . EOL );
2017-08-26 03:32:10 -04:00
goaway ( System :: baseUrl ());
2011-02-23 04:37:15 -05:00
}
2010-07-01 19:48:07 -04:00
return ;
2017-12-08 19:24:43 -05:00
}
2010-07-01 19:48:07 -04:00
2017-12-08 19:24:43 -05:00
function register_content ( App $a )
{
2010-10-17 23:04:17 -04:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
2017-12-08 19:24:43 -05:00
$block = Config :: get ( 'system' , 'block_extended_register' );
2010-10-17 23:04:17 -04:00
2017-12-08 19:24:43 -05:00
if ( local_user () && ( $block )) {
2011-12-09 19:50:13 -05:00
notice ( " Permission denied. " . EOL );
return ;
}
2018-07-15 15:04:48 -04:00
if (( ! local_user ()) && ( intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_CLOSED )) {
2010-07-11 06:35:33 -04:00
notice ( " Permission denied. " . EOL );
return ;
}
2017-12-08 19:24:43 -05:00
$max_dailies = intval ( Config :: get ( 'system' , 'max_daily_registrations' ));
if ( $max_dailies ) {
2011-12-20 23:12:29 -05:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
2017-12-08 19:24:43 -05:00
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
2011-12-20 23:12:29 -05:00
logger ( 'max daily registrations exceeded.' );
2018-01-21 13:33:59 -05:00
notice ( L10n :: t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
2011-12-20 23:12:29 -05:00
return ;
}
}
2017-12-08 19:24:43 -05:00
if ( x ( $_SESSION , 'theme' )) {
2011-01-07 07:33:34 -05:00
unset ( $_SESSION [ 'theme' ]);
2017-12-08 19:24:43 -05:00
}
if ( x ( $_SESSION , 'mobile-theme' )) {
2012-09-06 19:24:34 -04:00
unset ( $_SESSION [ 'mobile-theme' ]);
2017-12-08 19:24:43 -05:00
}
2011-01-07 07:33:34 -05:00
2017-12-08 19:24:43 -05:00
$username = x ( $_REQUEST , 'username' ) ? $_REQUEST [ 'username' ] : '' ;
$email = x ( $_REQUEST , 'email' ) ? $_REQUEST [ 'email' ] : '' ;
$openid_url = x ( $_REQUEST , 'openid_url' ) ? $_REQUEST [ 'openid_url' ] : '' ;
$nickname = x ( $_REQUEST , 'nickname' ) ? $_REQUEST [ 'nickname' ] : '' ;
$photo = x ( $_REQUEST , 'photo' ) ? $_REQUEST [ 'photo' ] : '' ;
$invite_id = x ( $_REQUEST , 'invite_id' ) ? $_REQUEST [ 'invite_id' ] : '' ;
2010-11-15 23:10:19 -05:00
2017-12-08 19:24:43 -05:00
$noid = Config :: get ( 'system' , 'no_openid' );
2010-11-28 23:58:23 -05:00
2017-12-08 19:24:43 -05:00
if ( $noid ) {
$oidhtml = '' ;
2010-11-28 23:58:23 -05:00
$fillwith = '' ;
2017-12-08 19:24:43 -05:00
$fillext = '' ;
2010-11-28 23:58:23 -05:00
$oidlabel = '' ;
2017-12-08 19:24:43 -05:00
} else {
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
2018-01-22 09:16:25 -05:00
$fillwith = L10n :: t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = L10n :: t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = L10n :: t ( " Your OpenID \x28 optional \x29 : " );
2010-11-28 23:58:23 -05:00
}
2011-03-11 17:48:58 -05:00
// I set this and got even more fake names than before...
2018-01-22 09:16:25 -05:00
$realpeople = '' ; // L10n::t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 07:06:37 -05:00
2017-12-08 19:24:43 -05:00
if ( Config :: get ( 'system' , 'publish_all' )) {
$profile_publish = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
} else {
2011-05-11 07:37:13 -04:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2018-01-15 08:05:12 -05:00
$profile_publish = replace_macros ( $publish_tpl , [
2017-12-08 19:24:43 -05:00
'$instance' => 'reg' ,
2018-01-22 09:16:25 -05:00
'$pubdesc' => L10n :: t ( 'Include your profile in member directory?' ),
2018-05-26 01:09:32 -04:00
'$yes_selected' => '' ,
'$no_selected' => ' checked="checked"' ,
2018-01-22 09:16:25 -05:00
'$str_yes' => L10n :: t ( 'Yes' ),
'$str_no' => L10n :: t ( 'No' ),
2018-01-15 08:05:12 -05:00
]);
2011-02-21 19:50:06 -05:00
}
2017-12-08 19:24:43 -05:00
$r = q ( " SELECT COUNT(*) AS `contacts` FROM `contact` " );
2015-06-30 17:37:31 -04:00
$passwords = ! $r [ 0 ][ " contacts " ];
2011-09-24 08:45:34 -04:00
$license = '' ;
2010-12-24 23:23:49 -05:00
2018-01-07 19:10:09 -05:00
$tpl = get_markup_template ( " register.tpl " );
2012-03-31 09:15:33 -04:00
2018-01-15 08:05:12 -05:00
$arr = [ 'template' => $tpl ];
2012-03-31 09:15:33 -04:00
2018-01-17 13:42:40 -05:00
Addon :: callHooks ( 'register_form' , $arr );
2012-03-31 09:15:33 -04:00
2018-01-07 19:10:09 -05:00
$tpl = $arr [ 'template' ];
2012-09-21 21:04:09 -04:00
2018-05-19 12:53:54 -04:00
$tos = new Tos ();
2018-01-07 19:10:09 -05:00
$o = replace_macros ( $tpl , [
2010-11-28 23:58:23 -05:00
'$oidhtml' => $oidhtml ,
2017-12-08 19:24:43 -05:00
'$invitations' => Config :: get ( 'system' , 'invitation_only' ),
2018-07-15 15:04:48 -04:00
'$permonly' => intval ( Config :: get ( 'config' , 'register_policy' )) === REGISTER_APPROVE ,
2018-01-22 09:16:25 -05:00
'$permonlybox' => [ 'permonlybox' , L10n :: t ( 'Note for the admin' ), '' , L10n :: t ( 'Leave a message for the admin, why you want to join this node' )],
'$invite_desc' => L10n :: t ( 'Membership on this site is by invitation only.' ),
2018-03-01 14:29:01 -05:00
'$invite_label' => L10n :: t ( 'Your invitation code: ' ),
2017-12-08 19:24:43 -05:00
'$invite_id' => $invite_id ,
2011-03-08 07:06:37 -05:00
'$realpeople' => $realpeople ,
2018-01-22 09:16:25 -05:00
'$regtitle' => L10n :: t ( 'Registration' ),
2018-04-02 02:42:11 -04:00
'$registertext' => BBCode :: convert ( Config :: get ( 'config' , 'register_text' , '' )),
2010-11-28 23:58:23 -05:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-17 23:35:50 -05:00
'$openid' => $openid_url ,
2018-01-22 09:16:25 -05:00
'$namelabel' => L10n :: t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith, real or real-looking' . " \x29 " . ': ' ),
2018-01-24 16:51:32 -05:00
'$addrlabel' => L10n :: t ( " Your Email Address: \x28 Initial information will be send there, so this has to be an existing address. \x29 " ),
2015-06-30 17:37:31 -04:00
'$passwords' => $passwords ,
2018-01-22 09:16:25 -05:00
'$password1' => [ 'password1' , L10n :: t ( 'New Password:' ), '' , L10n :: t ( 'Leave empty for an auto generated password.' )],
'$password2' => [ 'confirm' , L10n :: t ( 'Confirm:' ), '' , '' ],
2018-10-09 13:58:58 -04:00
'$nickdesc' => L10n :: t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@%s</strong>\'.' , $a -> getHostName ()),
2018-01-22 09:16:25 -05:00
'$nicklabel' => L10n :: t ( 'Choose a nickname: ' ),
2010-11-23 23:56:20 -05:00
'$photo' => $photo ,
2011-02-21 19:50:06 -05:00
'$publish' => $profile_publish ,
2018-01-22 09:16:25 -05:00
'$regbutt' => L10n :: t ( 'Register' ),
2010-11-15 23:10:19 -05:00
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-24 23:23:49 -05:00
'$license' => $license ,
2018-10-09 13:58:58 -04:00
'$sitename' => $a -> getHostName (),
2018-01-22 09:16:25 -05:00
'$importh' => L10n :: t ( 'Import' ),
'$importt' => L10n :: t ( 'Import your profile to this friendica instance' ),
2018-04-02 12:40:30 -04:00
'$showtoslink' => Config :: get ( 'system' , 'tosdisplay' ),
'$tostext' => L10n :: t ( 'Terms of Service' ),
2018-05-19 12:53:54 -04:00
'$showprivstatement' => Config :: get ( 'system' , 'tosprivstatement' ),
2018-05-20 02:43:43 -04:00
'$privstatement' => $tos -> privacy_complete ,
2018-04-02 12:40:30 -04:00
'$baseurl' => System :: baseurl (),
2018-10-17 15:30:41 -04:00
'$form_security_token' => BaseModule :: getFormSecurityToken ( " register " ),
2018-07-14 12:08:06 -04:00
'$explicit_content' => Config :: get ( 'system' , 'explicit_content' , false ),
'$explicit_content_note' => L10n :: t ( 'Note: This node explicitly contains adult content' )
2017-12-08 19:24:43 -05:00
]);
2010-07-01 19:48:07 -04:00
return $o ;
2017-12-08 19:24:43 -05:00
}