## Get a database connection
$db = new DB_SourceBiz();
// Check if there was a submission
while (is_array($HTTP_POST_VARS) && (list($key, $val) = each($HTTP_POST_VARS))) {
switch ($key) {
case "create":
// Create a new user
if (empty($username) || empty($password) || empty($email_usr)) {
// Do we have all necessary data?
$be->box_full($t->translate("Error"), $t->translate("Please enter") . " <B>" . $t->translate("Username") . "</B>, <B>" . $t->translate("Password") . "</B> " . $t->translate("and") . " <B>" . $t->translate("E-Mail") . "</B>!");
break;
}
/* Does the user already exist?
NOTE: This should be a transaction, but it isn't... */
$db->query("select * from auth_user where username='******'");
if ($db->nf() > 0) {
$be->box_full($t->translate("Error"), $t->translate("User") . " <B>{$username}</B> " . $t->translate("already exists") . ".");
break;
}
// Create a uid and insert the user...
$u_id = md5(uniqid($hash_secret));
$permlist = addslashes(implode($perms, ","));
$modification_usr = "******";
$creation_usr = "******";
$query = "insert into auth_user values('{$u_id}','{$username}','{$password}','{$realname}','{$email_usr}',{$modification_usr},{$creation_usr},'{$permlist}')";
$db->query($query);
if ($db->affected_rows() == 0) {
$be->box_full($t->translate("Error"), "<b>" . $t->translate("Database Access failed") . ":</b> {$query}");
break;
}
$bx->box_full($t->translate("User Creation"), $t->translate("User") . " \"{$username}\" " . $t->translate("created") . ".<BR>");
