2010-07-01 19:48:07 -04:00
< ? php
2014-09-07 07:55:02 -04:00
require_once ( 'include/enotify.php' );
2014-01-12 02:40:52 -05:00
require_once ( 'include/bbcode.php' );
2014-09-07 06:29:13 -04:00
require_once ( 'include/user.php' );
2013-01-04 18:47:29 -05:00
2010-07-01 19:48:07 -04:00
if ( ! function_exists ( 'register_post' )) {
function register_post ( & $a ) {
2011-05-23 23:30:37 -04:00
global $lang ;
2010-07-01 19:48:07 -04:00
$verified = 0 ;
$blocked = 1 ;
2012-03-31 09:15:33 -04:00
$arr = array ( 'post' => $_POST );
call_hooks ( 'register_post' , $arr );
2011-12-20 23:12:29 -05:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-21 19:44:15 -04:00
if ( $max_dailies ) {
2011-12-20 23:12:29 -05:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
return ;
}
}
2010-07-01 19:48:07 -04:00
switch ( $a -> config [ 'register_policy' ]) {
2013-12-01 18:11:31 -05:00
2010-07-01 19:48:07 -04:00
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
2010-07-29 02:15:10 -04:00
case REGISTER_APPROVE :
2010-07-01 19:48:07 -04:00
$blocked = 1 ;
2010-07-29 02:15:10 -04:00
$verified = 0 ;
2010-07-01 19:48:07 -04:00
break ;
default :
case REGISTER_CLOSED :
if (( ! x ( $_SESSION , 'authenticated' ) && ( ! x ( $_SESSION , 'administrator' )))) {
2010-08-03 22:14:57 -04:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-01 19:48:07 -04:00
return ;
}
2010-07-08 21:12:52 -04:00
$blocked = 1 ;
2010-07-01 19:48:07 -04:00
$verified = 0 ;
break ;
}
2014-09-07 06:29:13 -04:00
2010-07-01 19:48:07 -04:00
2012-06-01 18:42:13 -04:00
$arr = $_POST ;
$arr [ 'blocked' ] = $blocked ;
$arr [ 'verified' ] = $verified ;
$result = create_user ( $arr );
2011-01-05 02:18:52 -05:00
2012-05-31 22:06:17 -04:00
if ( ! $result [ 'success' ]) {
notice ( $result [ 'message' ]);
2010-07-01 19:48:07 -04:00
return ;
}
2012-05-31 22:06:17 -04:00
$user = $result [ 'user' ];
2014-09-07 06:29:13 -04:00
2011-02-23 17:04:00 -05:00
if ( $netpublish && $a -> config [ 'register_policy' ] != REGISTER_APPROVE ) {
2012-05-31 22:06:17 -04:00
$url = $a -> get_baseurl () . '/profile/' . $user [ 'nickname' ];
2011-02-23 18:16:12 -05:00
proc_run ( 'php' , " include/directory.php " , " $url " );
2011-02-23 17:04:00 -05:00
}
2012-05-31 22:06:17 -04:00
$using_invites = get_config ( 'system' , 'invitation_only' );
$num_invites = get_config ( 'system' , 'number_invites' );
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2011-02-23 17:04:00 -05:00
2011-07-20 02:10:09 -04:00
2010-07-01 19:48:07 -04:00
if ( $a -> config [ 'register_policy' ] == REGISTER_OPEN ) {
2011-07-18 00:12:31 -04:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-05-31 22:06:17 -04:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 00:12:31 -04:00
}
2015-06-30 17:37:31 -04:00
// Only send a password mail when the password wasn't manually provided
if ( ! x ( $_POST , 'password1' ) OR ! x ( $_POST , 'confirm' )) {
$res = send_register_open_eml (
$user [ 'email' ],
$a -> config [ 'sitename' ],
$a -> get_baseurl (),
$user [ 'username' ],
$result [ 'password' ]);
if ( $res ) {
info ( t ( 'Registration successful. Please check your email for further instructions.' ) . EOL ) ;
goaway ( z_root ());
} else {
notice (
sprintf (
t ( 'Failed to send email message. Here your accout details:<br> login: %s<br> password: %s<br><br>You can change your password after login.' ),
$user [ 'email' ],
$result [ 'password' ]
) . EOL
);
}
2015-11-14 02:07:09 -05:00
} else {
info ( t ( 'Registration successful.' ) . EOL ) ;
goaway ( z_root ());
2010-07-29 02:15:10 -04:00
}
2010-07-01 19:48:07 -04:00
}
2010-07-29 02:15:10 -04:00
elseif ( $a -> config [ 'register_policy' ] == REGISTER_APPROVE ) {
if ( ! strlen ( $a -> config [ 'admin_email' ])) {
notice ( t ( 'Your registration can not be processed.' ) . EOL );
2011-08-02 00:02:25 -04:00
goaway ( z_root ());
2010-07-29 02:15:10 -04:00
}
$hash = random_string ();
2011-05-23 23:30:37 -04:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language` ) VALUES ( '%s', '%s', %d, '%s', '%s' ) " ,
2010-07-29 02:15:10 -04:00
dbesc ( $hash ),
dbesc ( datetime_convert ()),
2012-05-31 22:06:17 -04:00
intval ( $user [ 'uid' ]),
dbesc ( $result [ 'password' ]),
2011-05-23 23:30:37 -04:00
dbesc ( $lang )
);
2014-09-07 07:55:02 -04:00
// invite system
2011-07-18 00:12:31 -04:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-05-31 22:06:17 -04:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 00:12:31 -04:00
}
2010-07-29 02:15:10 -04:00
2014-09-07 07:55:02 -04:00
// send email to admins
$admin_mail_list = " ' " . implode ( " ',' " , array_map ( dbesc , explode ( " , " , str_replace ( " " , " " , $a -> config [ 'admin_email' ])))) . " ' " ;
2014-09-07 08:23:03 -04:00
$adminlist = q ( " SELECT uid, language, email FROM user WHERE email IN (%s) " ,
2014-09-07 07:55:02 -04:00
$admin_mail_list
);
2011-05-23 23:30:37 -04:00
2014-09-07 07:55:02 -04:00
foreach ( $adminlist as $admin ) {
notification ( array (
'type' => NOTIFY_SYSTEM ,
'event' => 'SYSTEM_REGISTER_REQUEST' ,
'source_name' => $user [ 'username' ],
'source_mail' => $user [ 'email' ],
'source_nick' => $user [ 'nickname' ],
'source_link' => $a -> get_baseurl () . " /admin/users/ " ,
'link' => $a -> get_baseurl () . " /admin/users/ " ,
'source_photo' => $a -> get_baseurl () . " /photo/avatar/ " . $user [ 'uid' ] . " .jpg " ,
2014-09-09 16:07:47 -04:00
'to_email' => $admin [ 'email' ],
2014-09-07 07:55:02 -04:00
'uid' => $admin [ 'uid' ],
'language' => ( $admin [ 'language' ] ? $admin [ 'language' ] : 'en' ))
);
2010-07-29 02:15:10 -04:00
}
2014-09-07 07:55:02 -04:00
info ( t ( 'Your registration is pending approval by the site owner.' ) . EOL ) ;
goaway ( z_root ());
2011-02-23 04:37:15 -05:00
}
2010-07-01 19:48:07 -04:00
return ;
}}
if ( ! function_exists ( 'register_content' )) {
function register_content ( & $a ) {
2010-10-17 23:04:17 -04:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
$block = get_config ( 'system' , 'block_extended_register' );
2011-12-09 19:50:13 -05:00
if ( local_user () && ( $block )) {
notice ( " Permission denied. " . EOL );
return ;
}
if (( ! local_user ()) && ( $a -> config [ 'register_policy' ] == REGISTER_CLOSED )) {
2010-07-11 06:35:33 -04:00
notice ( " Permission denied. " . EOL );
return ;
}
2011-12-20 23:12:29 -05:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-21 19:44:15 -04:00
if ( $max_dailies ) {
2011-12-20 23:12:29 -05:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
logger ( 'max daily registrations exceeded.' );
notice ( t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
return ;
}
}
2011-01-07 07:33:34 -05:00
if ( x ( $_SESSION , 'theme' ))
unset ( $_SESSION [ 'theme' ]);
2012-09-06 19:24:34 -04:00
if ( x ( $_SESSION , 'mobile-theme' ))
unset ( $_SESSION [ 'mobile-theme' ]);
2011-01-07 07:33:34 -05:00
2010-11-23 23:56:20 -05:00
$username = (( x ( $_POST , 'username' )) ? $_POST [ 'username' ] : (( x ( $_GET , 'username' )) ? $_GET [ 'username' ] : '' ));
$email = (( x ( $_POST , 'email' )) ? $_POST [ 'email' ] : (( x ( $_GET , 'email' )) ? $_GET [ 'email' ] : '' ));
$openid_url = (( x ( $_POST , 'openid_url' )) ? $_POST [ 'openid_url' ] : (( x ( $_GET , 'openid_url' )) ? $_GET [ 'openid_url' ] : '' ));
$nickname = (( x ( $_POST , 'nickname' )) ? $_POST [ 'nickname' ] : (( x ( $_GET , 'nickname' )) ? $_GET [ 'nickname' ] : '' ));
$photo = (( x ( $_POST , 'photo' )) ? $_POST [ 'photo' ] : (( x ( $_GET , 'photo' )) ? hex2bin ( $_GET [ 'photo' ]) : '' ));
2011-07-18 00:12:31 -04:00
$invite_id = (( x ( $_POST , 'invite_id' )) ? $_POST [ 'invite_id' ] : (( x ( $_GET , 'invite_id' )) ? $_GET [ 'invite_id' ] : '' ));
2010-11-15 23:10:19 -05:00
2010-11-28 23:58:23 -05:00
$noid = get_config ( 'system' , 'no_openid' );
if ( $noid ) {
$oidhtml = '' ;
$fillwith = '' ;
$fillext = '' ;
$oidlabel = '' ;
}
else {
2013-01-01 17:47:56 -05:00
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
2010-11-28 23:58:23 -05:00
$fillwith = t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = t ( " Your OpenID \x28 optional \x29 : " );
}
2011-03-11 17:48:58 -05:00
// I set this and got even more fake names than before...
$realpeople = '' ; // t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 07:06:37 -05:00
2011-02-21 19:50:06 -05:00
if ( get_config ( 'system' , 'publish_all' )) {
$profile_publish_reg = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
}
else {
2011-05-11 07:37:13 -04:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2011-02-21 19:50:06 -05:00
$profile_publish = replace_macros ( $publish_tpl , array (
'$instance' => 'reg' ,
'$pubdesc' => t ( 'Include your profile in member directory?' ),
'$yes_selected' => ' checked="checked" ' ,
'$no_selected' => '' ,
'$str_yes' => t ( 'Yes' ),
2012-10-17 11:13:01 -04:00
'$str_no' => t ( 'No' ),
2011-02-21 19:50:06 -05:00
));
}
2015-06-30 17:37:31 -04:00
$r = q ( " SELECT count(*) AS `contacts` FROM `contact` " );
$passwords = ! $r [ 0 ][ " contacts " ];
2011-09-24 08:45:34 -04:00
$license = '' ;
2010-12-24 23:23:49 -05:00
2011-05-11 07:37:13 -04:00
$o = get_markup_template ( " register.tpl " );
2012-03-31 09:15:33 -04:00
$arr = array ( 'template' => $o );
call_hooks ( 'register_form' , $arr );
2012-09-21 21:04:09 -04:00
$o = $arr [ 'template' ];
2010-07-19 22:09:58 -04:00
$o = replace_macros ( $o , array (
2010-11-28 23:58:23 -05:00
'$oidhtml' => $oidhtml ,
2011-07-18 00:12:31 -04:00
'$invitations' => get_config ( 'system' , 'invitation_only' ),
'$invite_desc' => t ( 'Membership on this site is by invitation only.' ),
'$invite_label' => t ( 'Your invitation ID: ' ),
'$invite_id' => $invite_id ,
2011-03-08 07:06:37 -05:00
'$realpeople' => $realpeople ,
2010-11-15 23:10:19 -05:00
'$regtitle' => t ( 'Registration' ),
2010-08-03 22:05:07 -04:00
'$registertext' => (( x ( $a -> config , 'register_text' ))
2014-01-13 08:40:26 -05:00
? bbcode ( $a -> config [ 'register_text' ])
2010-08-03 22:05:07 -04:00
: " " ),
2010-11-28 23:58:23 -05:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-17 23:35:50 -05:00
'$openid' => $openid_url ,
2015-11-07 07:19:55 -05:00
'$namelabel' => t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith, real or real-looking' . " \x29 " . ': ' ),
2010-11-15 23:10:19 -05:00
'$addrlabel' => t ( 'Your Email Address: ' ),
2015-06-30 17:37:31 -04:00
'$passwords' => $passwords ,
2015-06-30 18:41:04 -04:00
'$password1' => array ( 'password1' , t ( 'New Password:' ), '' , t ( 'Leave empty for an auto generated password.' )),
2015-06-30 17:37:31 -04:00
'$password2' => array ( 'confirm' , t ( 'Confirm:' ), '' , '' ),
2013-01-01 16:40:05 -05:00
'$nickdesc' => str_replace ( '$sitename' , $a -> get_hostname (), t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@$sitename</strong>\'.' )),
2010-11-15 23:10:19 -05:00
'$nicklabel' => t ( 'Choose a nickname: ' ),
2010-11-23 23:56:20 -05:00
'$photo' => $photo ,
2011-02-21 19:50:06 -05:00
'$publish' => $profile_publish ,
2010-11-15 23:10:19 -05:00
'$regbutt' => t ( 'Register' ),
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-24 23:23:49 -05:00
'$license' => $license ,
2012-10-17 11:13:01 -04:00
'$sitename' => $a -> get_hostname (),
2013-09-04 14:51:04 -04:00
'$importh' => t ( 'Import' ),
'$importt' => t ( 'Import your profile to this friendica instance' ),
2010-07-19 22:09:58 -04:00
));
2010-07-01 19:48:07 -04:00
return $o ;
}}