function finish($uname, $pwd)
{
global $dbi;
$md5_pwd = md5($pwd);
$l_result = sql_query("select * from jones_user where uname='{$uname}' and pwd='{$md5_pwd}'", $dbi);
if (sql_num_rows($l_result, $dbi) == 0) {
$error = "Incorrect username or password";
Header("Location: login.php?error={$error}");
die;
}
list($uid, $uname, $pwd, $fname, $lname, $email, $privs) = sql_fetch_row($l_result, $dbi);
sendCookie($uid, $uname, $pwd, $fname, $lname, $email, $privs);
Header("Location: index.php");
}
function finish($uid, $uname, $pwd1, $pwd2, $fname, $lname, $email)
{
global $dbi;
# is it a valid email?
if (!$email || $email == "" || !eregi("^[_\\.0-9a-z-]+@([0-9a-z][0-9a-z-]+\\.)+[a-z]{2,6}\$", $email) || strrpos($email, ' ') > 0) {
$error = "Invalid email address!";
Header("Location: user.php?error={$error}&uid={$uid}&uname={$uname}&fname={$fname}&lname={$lname}&email={$email}");
die;
}
if (strlen($pwd1) > 0 || strlen($pwd2) > 0) {
# do the passwords differ?
if (strcmp($pwd1, $pwd2) != 0) {
$error = "The two passwords provided differ!";
Header("Location: user.php?error={$error}&uid={$uid}&uname={$uname}&fname={$fname}&lname={$lname}&email={$email}");
die;
}
# is the pwd longer than 6 chars?
if (strlen($pwd1) < 6) {
$error = "Password cannot be shorter than 6 chars!";
Header("Location: user.php?error={$error}&uid={$uid}&uname={$uname}&fname={$fname}&lname={$lname}&email={$email}");
die;
}
# cypher pwd
$pwd = md5($pwd1);
sql_query("update jones_user set pwd='{$pwd}', fname='{$fname}', lname='{$lname}', email='{$email}' where id='{$uid}'", $dbi);
list($privs) = sql_fetch_row(sql_query("select privs from jones_user where id='{$uid}'", $dbi), $dbi);
sendCookie($uid, $uname, $pwd, $fname, $lname, $email, $privs);
} else {
sql_query("update jones_user set fname='{$fname}', lname='{$lname}', email='{$email}' where id='{$uid}'", $dbi);
}
Header("Location: index.php");
}
