2010-07-02 01:48:07 +02:00
< ? php
2014-09-07 13:55:02 +02:00
require_once ( 'include/enotify.php' );
2014-01-12 08:40:52 +01:00
require_once ( 'include/bbcode.php' );
2014-09-07 12:29:13 +02:00
require_once ( 'include/user.php' );
2013-01-05 00:47:29 +01:00
2010-07-02 01:48:07 +02:00
if ( ! function_exists ( 'register_post' )) {
2016-12-20 10:58:55 +01:00
function register_post ( App & $a ) {
2010-07-02 01:48:07 +02:00
2011-05-24 05:30:37 +02:00
global $lang ;
2010-07-02 01:48:07 +02:00
$verified = 0 ;
$blocked = 1 ;
2012-03-31 15:15:33 +02:00
$arr = array ( 'post' => $_POST );
call_hooks ( 'register_post' , $arr );
2011-12-21 05:12:29 +01:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-22 01:44:15 +02:00
if ( $max_dailies ) {
2011-12-21 05:12:29 +01:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
return ;
}
}
2010-07-02 01:48:07 +02:00
switch ( $a -> config [ 'register_policy' ]) {
2013-12-02 00:11:31 +01:00
2010-07-02 01:48:07 +02:00
case REGISTER_OPEN :
$blocked = 0 ;
$verified = 1 ;
break ;
2010-07-29 08:15:10 +02:00
case REGISTER_APPROVE :
2010-07-02 01:48:07 +02:00
$blocked = 1 ;
2010-07-29 08:15:10 +02:00
$verified = 0 ;
2010-07-02 01:48:07 +02:00
break ;
default :
case REGISTER_CLOSED :
if (( ! x ( $_SESSION , 'authenticated' ) && ( ! x ( $_SESSION , 'administrator' )))) {
2010-08-04 04:14:57 +02:00
notice ( t ( 'Permission denied.' ) . EOL );
2010-07-02 01:48:07 +02:00
return ;
}
2010-07-09 03:12:52 +02:00
$blocked = 1 ;
2010-07-02 01:48:07 +02:00
$verified = 0 ;
break ;
}
2014-09-07 12:29:13 +02:00
2010-07-02 01:48:07 +02:00
2012-06-02 00:42:13 +02:00
$arr = $_POST ;
$arr [ 'blocked' ] = $blocked ;
$arr [ 'verified' ] = $verified ;
2016-10-01 15:55:56 +02:00
$arr [ 'language' ] = get_browser_language ();
2012-06-02 00:42:13 +02:00
$result = create_user ( $arr );
2011-01-05 08:18:52 +01:00
2012-06-01 04:06:17 +02:00
if ( ! $result [ 'success' ]) {
notice ( $result [ 'message' ]);
2010-07-02 01:48:07 +02:00
return ;
}
2012-06-01 04:06:17 +02:00
$user = $result [ 'user' ];
2014-09-07 12:29:13 +02:00
2011-02-23 23:04:00 +01:00
if ( $netpublish && $a -> config [ 'register_policy' ] != REGISTER_APPROVE ) {
2016-12-19 14:26:13 +01:00
$url = App :: get_baseurl () . '/profile/' . $user [ 'nickname' ];
2016-08-01 07:48:43 +02:00
proc_run ( PRIORITY_LOW , " include/directory.php " , $url );
2011-02-23 23:04:00 +01:00
}
2012-06-01 04:06:17 +02:00
$using_invites = get_config ( 'system' , 'invitation_only' );
$num_invites = get_config ( 'system' , 'number_invites' );
$invite_id = (( x ( $_POST , 'invite_id' )) ? notags ( trim ( $_POST [ 'invite_id' ])) : '' );
2011-02-23 23:04:00 +01:00
2011-07-20 08:10:09 +02:00
2010-07-02 01:48:07 +02:00
if ( $a -> config [ 'register_policy' ] == REGISTER_OPEN ) {
2011-07-18 06:12:31 +02:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-06-01 04:06:17 +02:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 06:12:31 +02:00
}
2015-06-30 23:37:31 +02:00
// Only send a password mail when the password wasn't manually provided
if ( ! x ( $_POST , 'password1' ) OR ! x ( $_POST , 'confirm' )) {
$res = send_register_open_eml (
$user [ 'email' ],
$a -> config [ 'sitename' ],
2016-12-19 14:26:13 +01:00
App :: get_baseurl (),
2015-06-30 23:37:31 +02:00
$user [ 'username' ],
$result [ 'password' ]);
if ( $res ) {
info ( t ( 'Registration successful. Please check your email for further instructions.' ) . EOL ) ;
goaway ( z_root ());
} else {
notice (
sprintf (
t ( 'Failed to send email message. Here your accout details:<br> login: %s<br> password: %s<br><br>You can change your password after login.' ),
$user [ 'email' ],
$result [ 'password' ]
) . EOL
);
}
2015-11-14 08:07:09 +01:00
} else {
info ( t ( 'Registration successful.' ) . EOL ) ;
goaway ( z_root ());
2010-07-29 08:15:10 +02:00
}
2010-07-02 01:48:07 +02:00
}
2010-07-29 08:15:10 +02:00
elseif ( $a -> config [ 'register_policy' ] == REGISTER_APPROVE ) {
if ( ! strlen ( $a -> config [ 'admin_email' ])) {
notice ( t ( 'Your registration can not be processed.' ) . EOL );
2011-08-02 06:02:25 +02:00
goaway ( z_root ());
2010-07-29 08:15:10 +02:00
}
$hash = random_string ();
2016-11-19 18:22:49 +01:00
$r = q ( " INSERT INTO `register` ( `hash`, `created`, `uid`, `password`, `language`, `note` ) VALUES ( '%s', '%s', %d, '%s', '%s', '%s' ) " ,
2010-07-29 08:15:10 +02:00
dbesc ( $hash ),
dbesc ( datetime_convert ()),
2012-06-01 04:06:17 +02:00
intval ( $user [ 'uid' ]),
dbesc ( $result [ 'password' ]),
2016-11-19 18:22:49 +01:00
dbesc ( $lang ),
dbesc ( $_POST [ 'permonlybox' ])
2011-05-24 05:30:37 +02:00
);
2014-09-07 13:55:02 +02:00
// invite system
2011-07-18 06:12:31 +02:00
if ( $using_invites && $invite_id ) {
q ( " delete * from register where hash = '%s' limit 1 " , dbesc ( $invite_id ));
2012-06-01 04:06:17 +02:00
set_pconfig ( $user [ 'uid' ], 'system' , 'invites_remaining' , $num_invites );
2011-07-18 06:12:31 +02:00
}
2010-07-29 08:15:10 +02:00
2014-09-07 13:55:02 +02:00
// send email to admins
$admin_mail_list = " ' " . implode ( " ',' " , array_map ( dbesc , explode ( " , " , str_replace ( " " , " " , $a -> config [ 'admin_email' ])))) . " ' " ;
2014-09-07 14:23:03 +02:00
$adminlist = q ( " SELECT uid, language, email FROM user WHERE email IN (%s) " ,
2014-09-07 13:55:02 +02:00
$admin_mail_list
);
2011-05-24 05:30:37 +02:00
2016-11-18 20:16:22 +01:00
// send notification to admins
2016-09-30 14:57:16 +02:00
foreach ( $adminlist as $admin ) {
notification ( array (
'type' => NOTIFY_SYSTEM ,
'event' => 'SYSTEM_REGISTER_REQUEST' ,
'source_name' => $user [ 'username' ],
'source_mail' => $user [ 'email' ],
'source_nick' => $user [ 'nickname' ],
2016-12-19 14:26:13 +01:00
'source_link' => App :: get_baseurl () . " /admin/users/ " ,
'link' => App :: get_baseurl () . " /admin/users/ " ,
'source_photo' => App :: get_baseurl () . " /photo/avatar/ " . $user [ 'uid' ] . " .jpg " ,
2016-09-30 14:57:16 +02:00
'to_email' => $admin [ 'email' ],
'uid' => $admin [ 'uid' ],
'language' => ( $admin [ 'language' ] ? $admin [ 'language' ] : 'en' ),
'show_in_notification_page' => false
));
}
2016-11-18 20:16:22 +01:00
// send notification to the user, that the registration is pending
send_register_pending_eml (
$user [ 'email' ],
$a -> config [ 'sitename' ],
$user [ 'username' ]);
2016-09-30 14:57:16 +02:00
2014-09-07 13:55:02 +02:00
info ( t ( 'Your registration is pending approval by the site owner.' ) . EOL ) ;
goaway ( z_root ());
2011-02-23 10:37:15 +01:00
}
2010-07-02 01:48:07 +02:00
return ;
}}
if ( ! function_exists ( 'register_content' )) {
2016-12-20 10:58:55 +01:00
function register_content ( App & $a ) {
2010-07-02 01:48:07 +02:00
2010-10-18 05:04:17 +02:00
// logged in users can register others (people/pages/groups)
// even with closed registrations, unless specifically prohibited by site policy.
// 'block_extended_register' blocks all registrations, period.
$block = get_config ( 'system' , 'block_extended_register' );
2011-12-10 01:50:13 +01:00
if ( local_user () && ( $block )) {
notice ( " Permission denied. " . EOL );
return ;
}
if (( ! local_user ()) && ( $a -> config [ 'register_policy' ] == REGISTER_CLOSED )) {
2010-07-11 12:35:33 +02:00
notice ( " Permission denied. " . EOL );
return ;
}
2011-12-21 05:12:29 +01:00
$max_dailies = intval ( get_config ( 'system' , 'max_daily_registrations' ));
2012-07-22 01:44:15 +02:00
if ( $max_dailies ) {
2011-12-21 05:12:29 +01:00
$r = q ( " select count(*) as total from user where register_date > UTC_TIMESTAMP - INTERVAL 1 day " );
if ( $r && $r [ 0 ][ 'total' ] >= $max_dailies ) {
logger ( 'max daily registrations exceeded.' );
notice ( t ( 'This site has exceeded the number of allowed daily account registrations. Please try again tomorrow.' ) . EOL );
return ;
}
}
2011-01-07 13:33:34 +01:00
if ( x ( $_SESSION , 'theme' ))
unset ( $_SESSION [ 'theme' ]);
2012-09-07 01:24:34 +02:00
if ( x ( $_SESSION , 'mobile-theme' ))
unset ( $_SESSION [ 'mobile-theme' ]);
2011-01-07 13:33:34 +01:00
2010-11-24 05:56:20 +01:00
$username = (( x ( $_POST , 'username' )) ? $_POST [ 'username' ] : (( x ( $_GET , 'username' )) ? $_GET [ 'username' ] : '' ));
$email = (( x ( $_POST , 'email' )) ? $_POST [ 'email' ] : (( x ( $_GET , 'email' )) ? $_GET [ 'email' ] : '' ));
$openid_url = (( x ( $_POST , 'openid_url' )) ? $_POST [ 'openid_url' ] : (( x ( $_GET , 'openid_url' )) ? $_GET [ 'openid_url' ] : '' ));
$nickname = (( x ( $_POST , 'nickname' )) ? $_POST [ 'nickname' ] : (( x ( $_GET , 'nickname' )) ? $_GET [ 'nickname' ] : '' ));
$photo = (( x ( $_POST , 'photo' )) ? $_POST [ 'photo' ] : (( x ( $_GET , 'photo' )) ? hex2bin ( $_GET [ 'photo' ]) : '' ));
2011-07-18 06:12:31 +02:00
$invite_id = (( x ( $_POST , 'invite_id' )) ? $_POST [ 'invite_id' ] : (( x ( $_GET , 'invite_id' )) ? $_GET [ 'invite_id' ] : '' ));
2010-11-16 05:10:19 +01:00
2010-11-29 05:58:23 +01:00
$noid = get_config ( 'system' , 'no_openid' );
if ( $noid ) {
$oidhtml = '' ;
$fillwith = '' ;
$fillext = '' ;
$oidlabel = '' ;
}
else {
2013-01-01 23:47:56 +01:00
$oidhtml = '<label for="register-openid" id="label-register-openid" >$oidlabel</label><input type="text" maxlength="60" size="32" name="openid_url" class="openid" id="register-openid" value="$openid" >' ;
2010-11-29 05:58:23 +01:00
$fillwith = t ( " You may \x28 optionally \x29 fill in this form via OpenID by supplying your OpenID and clicking 'Register'. " );
$fillext = t ( 'If you are not familiar with OpenID, please leave that field blank and fill in the rest of the items.' );
$oidlabel = t ( " Your OpenID \x28 optional \x29 : " );
}
2011-03-11 23:48:58 +01:00
// I set this and got even more fake names than before...
$realpeople = '' ; // t('Members of this network prefer to communicate with real people who use their real names.');
2011-03-08 13:06:37 +01:00
2011-02-22 01:50:06 +01:00
if ( get_config ( 'system' , 'publish_all' )) {
$profile_publish_reg = '<input type="hidden" name="profile_publish_reg" value="1" />' ;
}
else {
2011-05-11 13:37:13 +02:00
$publish_tpl = get_markup_template ( " profile_publish.tpl " );
2011-02-22 01:50:06 +01:00
$profile_publish = replace_macros ( $publish_tpl , array (
'$instance' => 'reg' ,
'$pubdesc' => t ( 'Include your profile in member directory?' ),
'$yes_selected' => ' checked="checked" ' ,
'$no_selected' => '' ,
'$str_yes' => t ( 'Yes' ),
2012-10-17 17:13:01 +02:00
'$str_no' => t ( 'No' ),
2011-02-22 01:50:06 +01:00
));
}
2015-06-30 23:37:31 +02:00
$r = q ( " SELECT count(*) AS `contacts` FROM `contact` " );
$passwords = ! $r [ 0 ][ " contacts " ];
2011-09-24 14:45:34 +02:00
$license = '' ;
2010-12-25 05:23:49 +01:00
2011-05-11 13:37:13 +02:00
$o = get_markup_template ( " register.tpl " );
2012-03-31 15:15:33 +02:00
$arr = array ( 'template' => $o );
call_hooks ( 'register_form' , $arr );
2012-09-22 03:04:09 +02:00
$o = $arr [ 'template' ];
2010-07-20 04:09:58 +02:00
$o = replace_macros ( $o , array (
2010-11-29 05:58:23 +01:00
'$oidhtml' => $oidhtml ,
2011-07-18 06:12:31 +02:00
'$invitations' => get_config ( 'system' , 'invitation_only' ),
2016-11-19 18:22:49 +01:00
'$permonly' => $a -> config [ 'register_policy' ] == REGISTER_APPROVE ,
'$permonlybox' => array ( 'permonlybox' , t ( 'Note for the admin' ), '' , t ( 'Leave a message for the admin, why you want to join this node' )),
2011-07-18 06:12:31 +02:00
'$invite_desc' => t ( 'Membership on this site is by invitation only.' ),
'$invite_label' => t ( 'Your invitation ID: ' ),
'$invite_id' => $invite_id ,
2011-03-08 13:06:37 +01:00
'$realpeople' => $realpeople ,
2010-11-16 05:10:19 +01:00
'$regtitle' => t ( 'Registration' ),
2010-08-04 04:05:07 +02:00
'$registertext' => (( x ( $a -> config , 'register_text' ))
2014-01-13 14:40:26 +01:00
? bbcode ( $a -> config [ 'register_text' ])
2010-08-04 04:05:07 +02:00
: " " ),
2010-11-29 05:58:23 +01:00
'$fillwith' => $fillwith ,
'$fillext' => $fillext ,
'$oidlabel' => $oidlabel ,
2010-11-18 05:35:50 +01:00
'$openid' => $openid_url ,
2015-11-07 13:19:55 +01:00
'$namelabel' => t ( 'Your Full Name ' . " \x28 " . 'e.g. Joe Smith, real or real-looking' . " \x29 " . ': ' ),
2010-11-16 05:10:19 +01:00
'$addrlabel' => t ( 'Your Email Address: ' ),
2015-06-30 23:37:31 +02:00
'$passwords' => $passwords ,
2015-07-01 00:41:04 +02:00
'$password1' => array ( 'password1' , t ( 'New Password:' ), '' , t ( 'Leave empty for an auto generated password.' )),
2015-06-30 23:37:31 +02:00
'$password2' => array ( 'confirm' , t ( 'Confirm:' ), '' , '' ),
2013-01-01 22:40:05 +01:00
'$nickdesc' => str_replace ( '$sitename' , $a -> get_hostname (), t ( 'Choose a profile nickname. This must begin with a text character. Your profile address on this site will then be \'<strong>nickname@$sitename</strong>\'.' )),
2010-11-16 05:10:19 +01:00
'$nicklabel' => t ( 'Choose a nickname: ' ),
2010-11-24 05:56:20 +01:00
'$photo' => $photo ,
2011-02-22 01:50:06 +01:00
'$publish' => $profile_publish ,
2010-11-16 05:10:19 +01:00
'$regbutt' => t ( 'Register' ),
'$username' => $username ,
'$email' => $email ,
'$nickname' => $nickname ,
2010-12-25 05:23:49 +01:00
'$license' => $license ,
2012-10-17 17:13:01 +02:00
'$sitename' => $a -> get_hostname (),
2013-09-04 20:51:04 +02:00
'$importh' => t ( 'Import' ),
'$importt' => t ( 'Import your profile to this friendica instance' ),
2010-07-20 04:09:58 +02:00
));
2010-07-02 01:48:07 +02:00
return $o ;
}}