function funct_GenerateNewID() { global $DB_LINK; //Allows Function to Access variable defined in constants.php ( database link ) //generate unique value DB mysql method $query = "SELECT UUID() AS ordercode "; //unique ID $rs = mysqli_query($DB_LINK, $query) or die(mysqli_error()); $row = mysqli_fetch_array($rs); $strOrderCode = $row["ordercode"]; $strOrderCoder = and_char($length); $strOrderCode = rand_sha1($length); $strOrderCode = rand_md5($length); return $strOrderCode; }
$verify = str_replace(" ", "%20", 'http://cyberbyte.org.uk/hooks/cyberworks/getid.php?url=' . $settings['url'] . '&name=' . $_POST['community_name'] . '&pid=' . $_POST['user_pid']); } else { $verify = str_replace(" ", "%20", 'http://cyberbyte.org.uk/hooks/cyberworks/getid.php?url=' . $settings['url'] . '&name=' . $_POST['community_name']); } $verify = json_decode(file_get_contents($verify)); if (isset($verify->id)) { $settings['id'] = $verify->id; $settings['community'] = $_POST['community_name']; $user_name = $_POST['user_name']; $user_email = $_POST['user_email']; $user_password = $_POST['user_password']; $user_pic = $_POST['user_pic']; $server_name = $_POST['server_name']; $server_type = $_POST['server_type']; $sql_type = $_POST['SQL_type']; $settings['key'] = rand_sha1(16); $server_use_SQ = $_POST['server_use_SQ']; if ($server_use_SQ == '1') { $server_IP = encrypt($_POST['server_IP'], $settings['key']); $server_PORT = encrypt($_POST['server_port'], $settings['key']); $server_RCON = encrypt($_POST['server_RCON_pass'], $settings['key']); } $server_SQL_host = $_POST['server_SQL_host']; if (strpos($server_SQL_host, ":")) { $SQL_ip = explode(":", $server_SQL_host); $settings['db']['host'] = encrypt($SQL_ip['0'], $settings['key']); $settings['db']['port'] = encrypt($SQL_ip['1'], $settings['key']); } else { $settings['db']['host'] = encrypt($server_SQL_host, $settings['key']); } $server_SQL_user = $_POST['server_SQL_user'];
} $stmt->close(); //Close statement } else { echo "Prepare failed: (" . $DB_MYSQLI->errno . ") " . $DB_MYSQLI->error; } //check members table for email duplicates. //$query="SELECT * FROM ".TBL_USERS." WHERE email= '".$FormRegEmail."' " ; //echo "SQL STMNT = " . $query . "<br>"; //$rs = mysqli_query($DB_LINK, $query) or die(mysqli_error()); //if(mysqli_num_rows($rs)>0){ $strError = "This email is already in use. Please use a different email. " ;} } //if($FormRegpassword=="") { $strError = $strError. "No password given! " ;} //password routine if (!$FormRegpassword) { $FormRegpassword = rand_sha1(5); $strTemptxt = "temporary"; } //Temporary random password creation here $PasswordToEmail = $FormRegpassword; //Store the temp password in another variable if (PASSWORD_ENCRYPT) { $FormRegpassword = password_hash($FormRegpassword, PASSWORD_DEFAULT); } //encrypt password //####################################################### //echo "userE= $strUserError passE=$strPassError emailE= $strEmailError " ; if (!$strError) { //####################################################### #CREATE NEW USER $strDateTime = date("Y-m-d H:i:s");
function functLoginUser($intUserID, $strRememberFlag, $strPasswordHash) { /* Make connection to database */ global $DB_LINK; //Allows Function to Access variable defined in constants.php ( database link ) $query = "SELECT * FROM " . TBL_USERS . " WHERE id=" . $intUserID; //echo "SQL STMNT = " . $query . "<br>"; $rs = mysqli_query($DB_LINK, $query) or die(mysqli_error()); $row = mysqli_fetch_array($rs); $intUserID = $row["id"]; $strUserIDcode = $row["id_code"]; $strPassword = $row["password"]; $strEmail = $row["email"]; $intLastLogin = $row["lastactivity"]; if (!$strUserIDcodeDB) { $strUserIDcode = rand_sha1(48); $query = "UPDATE " . TBL_USERS . " SET id_code='{$strUserIDcode}' WHERE id = {$intUserID} "; //echo "SQL STMNT = " . $query . "<br>"; $rs = mysqli_query($DB_LINK, $query); //Write Session & cookies //$_SESSION[SESSION_USERIDCODE] = $strUserIDcode; setcookie(SESSION_USERIDCODE, $strUserIDcode, COOKIE_EXPIRE, COOKIE_PATH, COOKIE_DOMAIN); } //if no password passed then get it from the db if (!$strPasswordHash) { $strPasswordHash = $strPassword; } //echo "writing sessions and cookies.... <br><br>" ; setcookie('SESSION_EMAIL', "", $intCookiePast, COOKIE_PATH, COOKIE_DOMAIN); //delete cookie..legacy wipe setcookie(SESSION_USERIDCODE, $strUserIDcode, COOKIE_EXPIRE, COOKIE_PATH, COOKIE_DOMAIN); setcookie(SESSION_EMAIL, $strEmail, COOKIE_EXPIRE, COOKIE_PATH, COOKIE_DOMAIN); //setcookie(SESSION_PASSWORD , $strPasswordHash , COOKIE_EXPIRE,COOKIE_PATH,COOKIE_DOMAIN); //functUpdateUserActivityDate($intUserID) ;//Update User table with new Login Date $query = "UPDATE " . TBL_USERS . " SET lastlogin= NOW() WHERE id=" . $intUserID . " "; //echo "SQL STMNT = " . $query . "<br>"; mysqli_query($DB_LINK, $query) or die(mysqli_error()); return $intLastLogin; }