## Get a database connection $db = new DB_SourceBiz(); // Check if there was a submission while (is_array($HTTP_POST_VARS) && (list($key, $val) = each($HTTP_POST_VARS))) { switch ($key) { case "create": // Create a new user if (empty($username) || empty($password) || empty($email_usr)) { // Do we have all necessary data? $be->box_full($t->translate("Error"), $t->translate("Please enter") . " <B>" . $t->translate("Username") . "</B>, <B>" . $t->translate("Password") . "</B> " . $t->translate("and") . " <B>" . $t->translate("E-Mail") . "</B>!"); break; } /* Does the user already exist? NOTE: This should be a transaction, but it isn't... */ $db->query("select * from auth_user where username='******'"); if ($db->nf() > 0) { $be->box_full($t->translate("Error"), $t->translate("User") . " <B>{$username}</B> " . $t->translate("already exists") . "."); break; } // Create a uid and insert the user... $u_id = md5(uniqid($hash_secret)); $permlist = addslashes(implode($perms, ",")); $modification_usr = "******"; $creation_usr = "******"; $query = "insert into auth_user values('{$u_id}','{$username}','{$password}','{$realname}','{$email_usr}',{$modification_usr},{$creation_usr},'{$permlist}')"; $db->query($query); if ($db->affected_rows() == 0) { $be->box_full($t->translate("Error"), "<b>" . $t->translate("Database Access failed") . ":</b> {$query}"); break; } $bx->box_full($t->translate("User Creation"), $t->translate("User") . " \"{$username}\" " . $t->translate("created") . ".<BR>");