function shortenLink() { $arraySize = 69; $short = ""; $dbc = new dbc(); $res = $dbc->query("SELECT url FROM Links WHERE (SELECT MAX(IDlink) FROM Links) = IDlink"); if ($res != 0) { //var_dump($dbc->getResult()); $res = decodeLink($dbc->getResult()); //exit; $latestURL = explode(",", $res); if ($latestURL[2] == 68) { $latestURL[2] = "0"; if ($latestURL[1] == 68) { $latestURL[1] = "0"; if ($latestURL[0] == 68) { echo "S**t på URL:er!!!"; exit; } else { $latestURL[0]++; } } else { $latestURL[1]++; } } else { $latestURL[2]++; } $short = $latestURL[0] . "," . $latestURL[1] . "," . $latestURL[2]; } else { $short = "0,0,0"; } return encodeLink($short); }
$signUp = $res["signUp"]; //$IDuser = $res["IDuser"]; $eMail = $res["eMail"]; $bio = utf8_encode($res["bio"]); $permissions = $res["permissions"]; //$nrLinks = $res["nrLinks"]; //Gravatar $default = "http://www.arbr.se/img/default.jpg"; $size = 170; $gravatar = "http://www.gravatar.com/avatar/" . md5(strtolower(trim($eMail))) . "?d=" . urlencode($default) . "&s=" . $size; $createdLinks; $dump; $res; $dbc = new dbc(); $dbcData = array('IDuser' => $IDuser); $res = $dbc->query("SELECT * FROM Links WHERE IDuser = :IDuser", $dbcData); $dump = $dbc->getAllResult(); function printUserInfo() { global $fName, $IDuser, $uName, $signUp, $eMail, $bio, $res; //if($res > 0) { $temp = explode(" ", $signUp); echo "<h2>" . $fName . "</h2>"; //echo $IDuser . "<br/>"; echo "<span class='profile_headers'>Username: </span>" . $uName . "<br/>"; echo "<span class='profile_headers'>Email: </span>" . $eMail . "<br/>"; //echo "<span class='profile_headers'>Member since: </span>" . $temp[0] . "<br/>"; //echo "<span class='profile_headers'>Number of links: </span>" . $res . "<br>"; if ($bio != null) { echo "<div class='bio'>" . $bio . "</div><br/>"; }
<?php $uName = $_GET["q"]; require_once '../dbc_class.php'; $dbc = new dbc(); $dbcData = array('uName' => $uName); $res = $dbc->query("SELECT * FROM Users WHERE uName = :uName", $dbcData); if ($res != 0) { echo "0"; } else { echo "1"; }
$success++; //echo $pass . "<br/>"; } else { $errorString .= "<li>- The entred password has the wrong format</li>"; } if ($success == 2) { $dbc = new dbc(); $dbcData = array('uName' => $uName, 'pass' => sha1($pass . UNIQE_SALT)); $res = $dbc->query("SELECT * FROM Users WHERE uName = :uName AND pass = :pass", $dbcData); if ($res == 1) { $success++; userSignIn($uName); } $dbc = new dbc(); $dbcData = array('uName' => $uName, 'pass' => sha1($pass . UNIQE_SALT)); $res = $dbc->query("SELECT uName FROM Users WHERE eMail = :uName AND pass = :pass", $dbcData); if ($res == 1) { $success++; $uName = $dbc->getResult(); userSignIn($uName["uName"]); } $errorString .= "<li>- Wrong password OR the account does not exsist</li>"; } if ($errorString != "") { somethingWrong(); } /*if($res == 1){ header("Location: index.php") } */ function somethingWrong()
<?php //echo "hej"; //REQUIRE FILES require_once '../dbc_class.php'; $eMail = $_POST['eMail']; $errorString; if (!isset($eMail)) { $eMail = $_GET['eMail']; } if (checkEmail($eMail)) { $dbc = new dbc(); $dbcData = array('eMail' => $eMail); $res = $dbc->query("SELECT * FROM Users WHERE eMail = :eMail", $dbcData); if ($res == 1) { $pass = generatePassword(); $temp = $dbc->getResult(); $uName = $temp["uName"]; $fName = $temp["fName"]; $dbcData = array('eMail' => $eMail, 'pass' => sha1($pass . UNIQE_SALT)); $dbc->query("UPDATE Users SET pass = :pass WHERE eMail = :eMail", $dbcData); email($pass, $eMail, $uName, $fName); } else { $errorString .= "<li>- You are not a part of arbr.se, but be sure to sign up!</li>"; } } else { $errorString .= "<li>- Your Username/Password has the wrong format, please try agian</li>"; } function checkEmail($eMail) { global $errorString;
if ($pass == "" && $pass2 == "" || !isset($pass) && !isset($pass2)) { $success++; } else { $errorString .= "<li>Your password is not correctly formated.</li>"; } } if (checkBIO($bio)) { $success++; } else { $errorString .= "<li>Your BIO '" . $bio . "', it sounds fishy...</li>"; } if ($success == 2) { $dbc = new dbc(); if ($pass != "" && isset($pass)) { $dbcData = array('pass' => sha1($pass . UNIQE_SALT), 'IDuser' => $IDuser); $dbc->query("UPDATE Users SET pass = :pass WHERE IDuser = :IDuser", $dbcData); } $dbcData = array('bio' => $bio, 'IDuser' => $IDuser); $dbc->query("UPDATE Users SET bio = :bio WHERE IDuser = :IDuser", $dbcData); session_destroy(); header("Location: http://www.arbr.se/signin/signmein.php?pass="******"&uName=" . $eMail); } else { header("Location: http://www.arbr.se/settings/?error=" . $errorString); } /*if($res == 1){ header("Location: index.php") } */ function checkPassword($pass, $pass2) { if ($pass == $pass2) {
function checkUName($uName) { global $errorString; $dbc = new dbc(); $dbcData = array('uName' => $uName); $res = $dbc->query("SELECT * FROM Users WHERE uName = :uName", $dbcData); if ($res > 0) { $errorString .= "<li>- The username '" . $uName . "', is already taken.</li>"; return false; } else { if (!preg_match("/^[A-Za-z0-9_-]{5,25}\$/", $uName)) { $errorString .= "<li>- The username '" . $uName . "', is not correctly formated.</li>"; return false; } } return true; }
<?php if (($route != "" || $route != NULL) && strlen($route) == 3) { $dbc = new dbc(); $dbcData = array('url' => $route); $res = $dbc->query("SELECT urlSrc FROM Links WHERE url LIKE BINARY :url", $dbcData); if ($res == 1) { $dump = $dbc->getResult(); $dbc->query("UPDATE Links SET clicks = clicks + 1 WHERE url LIKE BINARY :url", $dbcData); header("Location: " . $dump["urlSrc"]); } } else { //echo "fail"; //header("Location: http://www.arbr.se"); }
<?php require_once 'signinCheck.php'; if (!$signedin) { header("Location: /signin"); exit; } $IDlink = $_GET['id']; $dbc = new dbc(); $dbcData = array('IDuser' => $IDuser, 'IDlink' => $IDlink); $dbc->query("DELETE FROM Links WHERE IDuser = :IDuser AND IDlink = :IDlink", $dbcData); header("Location: /profile");