/**
* Creates a new user
*/
public function createNewUser($username, $password, $email = "", $internalRegistration = false)
{
Tools::logm('Trying to create a new user...');
if (!empty($username) && !empty($password)) {
$newUsername = filter_var($username, FILTER_SANITIZE_STRING);
$email = filter_var($email, FILTER_SANITIZE_STRING);
if (!$this->store->userExists($newUsername)) {
if ($this->store->install($newUsername, Tools::encodeString($password . $newUsername), $email)) {
if ($email != "") {
// if email is filled
if (SEND_CONFIRMATION_EMAIL && function_exists('mail')) {
// if internal registration from config screen
$body_internal = _('Hi,') . "\r\n\r\n" . sprintf(_('Someone just created a wallabag account for you on %1$s.'), Tools::getPocheUrl()) . "\r\n\r\n" . sprintf(_('Your login is %1$s.'), $newUsername) . "\r\n\r\n" . _('Note : The password has been chosen by the person who created your account. Get in touch with that person to know your password and change it as soon as possible') . "\r\n\r\n" . _('Have fun with it !') . "\r\n\r\n" . _('This is an automatically generated message, no one will answer if you respond to it.');
// if external (public) registration
$body = sprintf(_('Hi, %1$s'), $newUsername) . "\r\n\r\n" . sprintf(_('You\'ve just created a wallabag account on %1$s.'), Tools::getPocheUrl()) . "\r\n\r\n" . _("Have fun with it !");
$body = $internalRegistration ? $body_internal : $body;
$body = wordwrap($body, 70, "\r\n");
// cut lines with more than 70 caracters (MIME standard)
if (mail($email, sprintf(_('Your new wallabag account on %1$s'), Tools::getPocheUrl()), $body, 'X-Mailer: PHP/' . phpversion() . "\r\n" . 'Content-type: text/plain; charset=UTF-8' . "\r\n" . "From: " . $newUsername . "@" . gethostname() . "\r\n")) {
Tools::logm('The user ' . $newUsername . ' has been emailed');
$this->messages->add('i', sprintf(_('The new user %1$s has been sent an email at %2$s. You may have to check spam folder.'), $newUsername, $email));
Tools::redirect('?');
} else {
Tools::logm('A problem has been encountered while sending an email');
$this->messages->add('e', _('A problem has been encountered while sending an email'));
}
} else {
Tools::logm('The user has been created, but the server did not authorize sending emails');
$this->messages->add('i', _('The server did not authorize sending a confirmation email, but the user was created.'));
}
} else {
Tools::logm('The user has been created, but no email was saved, so no confimation email was sent');
$this->messages->add('i', _('The user was created, but no email was sent because email was not filled in'));
}
Tools::logm('The new user ' . $newUsername . ' has been installed');
if (\Session::isLogged()) {
$this->messages->add('s', sprintf(_('The new user %s has been installed. Do you want to <a href="?logout">logout ?</a>'), $newUsername));
}
Tools::redirect();
} else {
Tools::logm('error during adding new user');
Tools::redirect();
}
} else {
$this->messages->add('e', sprintf(_('Error : An user with the name %s already exists !'), $newUsername));
Tools::logm('An user with the name ' . $newUsername . ' already exists !');
Tools::redirect();
}
} else {
Tools::logm('Password or username were empty');
}
}
<?php
require_once 'database.inc.php';
require_once "mysql_connect_data.inc.php";
$db = new Database($host, $userName, $password, $database);
$db->openConnection();
if (!$db->isConnected()) {
header("Location: cannotConnect.html");
exit;
}
$userId = $_REQUEST['userId'];
if (!$db->userExists($userId)) {
$db->closeConnection();
header("Location: noSuchUser.html");
exit;
}
$db->closeConnection();
session_start();
$_SESSION['db'] = $db;
$_SESSION['userId'] = $userId;
header("Location: booking1.php");
$db = new Database($host, $userName, $password, $database);
$user = str_replace(' ', '_', sanitize($_POST['tfb_name']));
$userPassword = sanitize($_POST['tfb_password']);
if (empty($user) || empty($userPassword)) {
$error = true;
header("Location: ../index.php?login_error=empty");
} else {
if (!validateText($user, 2, 20)) {
$error = true;
header("Location: ../index.php?login_error=user");
} else {
if (!validateText($userPassword, 10, 50)) {
$error = true;
header("Location: ../index.php?login_error=pw");
} else {
if (!$db->userExists($user)) {
$error = true;
header("Location: ../index.php?login_error=nonexistent");
} else {
if (!$db->checkPassword($user, $userPassword)) {
$error = true;
header("Location: ../index.php?login_error=wrongpw");
}
}
}
}
}
if (!$error) {
$_SESSION['username'] = $user;
$_SESSION['db'] = $db;
$_SESSION['user'] = new User($user);
if ($validator->validateName($_POST['email']) == false) {
echo 'Please enter email';
}
if ($validator->validatePassword($_POST['password']) == false) {
echo 'Please enter password';
}
if ($validator->validateName($_POST['name']) && $validator->validateName($_POST['email']) && $validator->validatePassword($_POST['password'])) {
$user1 = new User();
$user1->setName($_POST['name']);
$user1->setEmail($_POST['email']);
$user1->setPassword($_POST['password']);
$user1->setMessage($_POST['message']);
$database = new Database();
if ($database->Connect($servername, $dbname, $username, $password)) {
$database->setTable('users');
if (!$database->userExists($_POST['name'])) {
$database->AddData($user1->getName(), $user1->getEmail(), $user1->getPassword(), $user1->getMessage());
session_start();
$_SESSION['username'] = $_POST['name'];
header("Location: admin.php");
} else {
echo "User exists";
}
$database->Close();
}
}
}
/* sql to create table
$sql = "CREATE TABLE Users(id INT(6) UNSIGNED AUTO_INCREMENT PRIMARY KEY, name VARCHAR(30) NOT NULL, email VARCHAR(50), password VARCHAR(255), message VARCHAR(255))";
$conn->exec($sql);*/
/*
