/** * Create a new user * * @param string $name 用户名 * @param string $pass 密码 * @param string $email * @param string $info 个人说明 * @param integer $gender [optional] 性别 可为空 * * @return bool */ public static function newuser($name, $pass, $email, $gender, $info = "", $avatar = "") { global $db; //typecheck here //safe check here if (strlen($pass) < 6) { self::$error = "illegal password"; return false; } $name = $db->escape_string($name); $pass = $db->escape_string(sha1($pass)); $email = $db->escape_string($email); $info = $db->escape_string($info); $gender = $db->escape_string($gender); $avatar = $db->escape_string($avatar); if ($name == "") { self::$error = "illegal username"; return false; } if ($email == "") { self::$error = "illegal email"; return false; } if ($gender == "") { self::$error = "illegal gender"; return false; } $sql = "SELECT `uid` FROM `users` WHERE `name`='{$name}'"; $result = $db->query($sql); if ($result->num_rows > 0) { self::$error = "username have existed"; return false; } $result->free(); $sql = "INSERT INTO `users`(`name`, `pass`, `email`, `gender`, `info`,`avatar`) " . "VALUES ('{$name}', '{$pass}', '{$email}', '{$gender}', '{$info}', '{$avatar}')"; $result = $db->query($sql); if (!$result) { self::$errno = $db->errno; self::$error = $db->error; return false; } return true; }